The current implementation works but
I am planning on adding oauth2 identity providers such as:
Github, Google, Discord and others.
This is a part of an old project and is a good example for
an auth server. The project follows good practises
for code and concepts.
- Access and refresh token
- Refresh token rotation
- Asynchronous encryption (public and private keys)
- Secured Http-Only cookies
- Device authorization
Java
Spring Boot
Spring Security
PostreSQL
Intellij