Accessing roles and authorities inside resource server

pradeepkumarl · September 30, 2021, 1:10pm

I am using Okta as my Authorization server and have configured the groups. Below is the output of my jwt token

{
  "ver": 1,
  "jti": "AT.MLATzoDXQohRjfDJ1tooFQAxolmncR1PputIxk4tm2c",
  "iss": "https://dev-7858070.okta.com/oauth2/default",
  "aud": "api://default",
  "iat": 1633006480,
  "exp": 1633010080,
  "cid": "0oa3mz4mtisXjRJf85d6",
  "uid": "00u3myy5sOl9SDbv35d6",
  "scp": [
    "openid"
  ],
  "sub": "pradeep.kumar44@gmail.com",
  "groups": [
    "Everyone",
    "admins"
  ]
}

The groups is a custom claim that I have configured in my Auth server.

I am using a Spring boot application as my resource server. I am not aware of how to use the groups claims and map it to authorities so that I can add the authorization checks in my resource server.

okra-okta · September 30, 2021, 4:18pm

Looks like you will have to add custom code to map the groups claim to Spring security authorities.

Alternatively, the okta-spring-boot-starter will do this for you.

Post		Replies	Views
Can not mapping the groups to Spring Security Authorities OAuth/OIDC spring , java	6	6790	April 25, 2018
How to convert spring boot app with Okta to read okta groups OAuth/OIDC	1	1648	February 15, 2024
Authorities for rest client service Questions spring	4	5059	October 11, 2018
Spring Security Authorization to an url based on Claim Value OAuth/OIDC spring , java	3	7683	June 25, 2018
Okta-spring-boot-starter: How to read authorities from multiple claims? Questions spring , java	2	4331	January 23, 2024

Accessing roles and authorities inside resource server

Related topics