What’s New In Spring Authorization Server 1.3 (SpringOne 2024)

The latest release of Spring Authorization Server 1.3 delivers new security capabilities that are required at the enterprise level. This talk will demonstrate how to configure and customize a new application while exploring some of the new features. Spring Authorization Server can now be configured to support multiple issuers per host in a multi-tenant hosting configuration. We will go over a general pattern for building multi-tenant capable components for Spring Authorization Server. OAuth 2.0 Token Exchange allows Spring Authorization Server to act in the role of a Security Token Service (STS), capable of exchanging security tokens, enabling clients to access protected resources across security domains. We will demonstrate building an STS for a multi-domain microservices architecture. Speaker: Cora Iberkleid, Developer Advocate, Broadcom