Securing JavaEE REST API with Keycloak

In this video, we will secure a JavaEE REST API using Keycloak. This is a companion video of my previous tutorial available at https://gtw15...


In this video, we will secure a JavaEE REST API using Keycloak.

This is a companion video of my previous tutorial available at https://gtw1526.blogspot.com/2019/08/how-to-secure-angular-app-with-keycloak.html.

Needless to say, we first need to go through that tutorial before this one. Things to remember:
  • Make sure that the environment is correctly set (take note of base and API URL). Remember that I’m running Keycloak on another machine, thus I’m using a network IP and port 8080. You can run Keycloak on the same machine by updating the standalone configuration, port-offset value at the end of the file (do message me if you need help)
  • The API call is in the home component.
  • Http interceptor is at secure-http-interceptor.ts file.
  • Keycloak server must be running
If you watched that video, at the end I left an exercise where the Angular app will call a secured REST API. The code in the Angular project is already configured, bearer token is correctly set so all we need to do is configure the REST project.

Before we can run the app we first need to configure the Wildfly server where we will deploy the API project. I’m using version 15.
  1. Download Keycloak’s client from their website that matches your Keycloak installation, in our case keycloak-wildfly-adapter-dist-6.0.1.
  2. Extract and copy into the Wildfly folder. It should have 3 folders: bin, docs, and modules.
  3. Go to the bin folder and run jboss-cli.bat --file=adapter-install-offline.cli. Your keycloak subsystem should’ve been installed on standalone.xml. If you need to work on another configuration like standalone-full then edit adapter-install-offline.cli and change the server.config parameter.
Let’s check the API project.
  1. There should be a keycloak.json configuration that we can download from the Keycloak server in the project’s src/main/webapp/WEB-INF folder.
  2. JaxRsActivator, where we define the package location of the REST API and configure a cors filter.
  3. AnimeRs, which is an interface annotated with @Path, that tells us this is a REST endpoint. In here, we have a GET method that returns a list of string.
  4. AnimeRsImpl, the implementation class.
Let’s deploy the application in the Wildfly server, run the client and call the API.

COMMENTS

Nome

angular,1,bigdata,1,course-spring,27,courses,6,database,2,docker,1,java,17,kafka,1,keycloak,4,microservices,4,mysql,1,neworking,1,pinned,1,react,2,server management,3,shared drive,1,spring,7,synology,1,
ltr
item
Get to Work: Securing JavaEE REST API with Keycloak
Securing JavaEE REST API with Keycloak
https://i.ytimg.com/vi/poCU4df2WLk/0.jpg
https://i.ytimg.com/vi/poCU4df2WLk/0.jpg
Get to Work
https://gtw1526.blogspot.com/2019/08/securing-javaee-rest-api-with-keycloak.html
https://gtw1526.blogspot.com/
https://gtw1526.blogspot.com/
https://gtw1526.blogspot.com/2019/08/securing-javaee-rest-api-with-keycloak.html
true
27950497214016359
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content