Microsoft AD implementation in spring application(non springbboot) - spring

I am working in spring mvc project where spring security-3.2 has implemented for login.I need to implement microsoft azure ad in existing spring project. I have register our web application in microsoft AD portal.I got applicationId, tenantId, SecretValue now. Could you please help me to implement AD in spring mvc application.
I have seen many examples for implementation of oauth2 in springboot.but there is no implementation sample for spring+jsp+oauth2.

Related

Get swagger to authenticate with Azure AD + spring boot configuration

I have a spring boot REST service which is protected with Azure AD, so I'm using the Spring Boot Starter for Azure AD.
I'm also using the springdoc-openapi library to generate the API documentation. For now I'm hand writing the yaml file to describe the documentation.
I'm looking for help with getting swagger to authenticate with Azure AD so that I can try out the endpoints in the backend.
Is there someway to do this by either editing the yaml file or with the springdoc-openapi library?
For getting swagger to authenticate with Azure AD you need to create registered two web application one is for webAPI and another is for your swagger.Then you shoukd require Delegated Permissions for your Swagger Web Site to ‘Access’ your WebAPI.As swagger is in-built configured in the .Net 5.0 template so that we don't need to take care of documenting our APIs in this latest .Net 5.0.
You can refer this Document here they have given in steps how to authenticate swagger with azuread.
You can also refer this document for how Setup Swagger to authenticate against Azure Active Directory is provided by devloper community of .net

Azure AD B2C with Spring 4

I have Spring application with Spring Security version 3.2.5 and spring version 4.3.7.
I want to remove the old fashioned login page and integrate it with Azure AD B2C. For the B2C part, I have the B2C tenant and necessary policies in place. I tried finding something on this for Spring, but all the examples and samples I found were based on spring boot.
Is it feasible to achieve B2C authentication & authorization integration with Spring?
Unfortunately there is no proper document where we have entire information for Spring to integrate with Azure AD B2C.
This sample demonstrates a Java web application that is secured using Azure AD B2C. And this sample demonstrates a Java Servlet webapp that signs in users with Azure AD B2C. You could refer to them.

Jcaptcha integration with spring

I wanted to implement captcha (jcaptcha) integrated with my spring framework can anyone please help me out to establish it in my web mvc project.

How to implement Spring Security on my Spring 4.0 RestFul web service?

I just developed a simple restful web service by using Spring 4.0 and Hibernate 4.0, so it is without beans.xml file.
I would like to implement a Spring Security on the web service, since the roles will be performed on the HTTP functions GET, POST and DELETE, i.e. only admin who is allowed to DELETE, manager is allowed to do both POST and GET and the user can only GET data.
I'm looking for a detailed tutorial with example to implement Spring Security? or Do you think there is an easier security mechanism regardless it's strength?
I just found that they in Spring.io added a detailed tutorial with real example developed by Java 8 in their own website, so it is completely annotation-based, which helps for building a RESTful webservice with Spring, testing it and also securing it.
It is really awesome, located HERE

Spring Portlet MVC and Mobile Portal Accelerator

I have some portlets developed using Spring Portlet MVC framework. Currently they're deployed in a WebSphere Portal Server v7 and the work like a charm, but now the client has purchased Mobile Portal Accelerator for the Portal and wants to mobile-enable all the developed portlets using that technology.
Does anyone has any experience using that technology, specially combined with Spring Portlet MVC? IBM published some articles about exposing existing JSR-168 portlets, but I'm not sure how this will work with Spring Portlet and JSR-286 API.

Resources