Spring Authorization Server is a community-driven project led by the Spring Security team and is focused on delivering OAuth 2.0 Authorization Server support to the Spring community.
The project will start in Spring’s experimental projects as an independent project so that it can evolve more rapidly.
The ultimate goal of this project is to replace the Authorization Server support provided by Spring Security OAuth.
With the much needed help from our community, this project will grow in the same way that the original Spring Security OAuth project did.
This project uses ZenHub to prioritize the feature roadmap and help organize the project plan. The project board can be accessed here. It is recommended to install the ZenHub browser extension as it integrates natively within GitHub’s user interface.
This project adheres to the Contributor Covenant code of conduct. By participating, you are expected to uphold this code. Please report unacceptable behavior to spring-code-of-conduct@pivotal.io.
See downloading Spring artifacts for Maven repository information.
Be sure to read the Spring Security Reference, as well as the OAuth 2.0 Reference, which describes the Client and Resource Server features available.
Extensive JavaDoc for the Spring Security code is also available in the Spring Security API Documentation.
We recommend that you review the OAuth 2.0 Authorization Framework to gain a deep understanding of the framework.
The OAuth 2.0 website, maintained by Aaron Parecki, provides links to learning resources as well as the various extension specifications.
Spring Authorization Server uses a Gradle-based build system.
In the instructions below, ./gradlew is invoked from the root of the source tree and serves as
a cross-platform, self-contained bootstrap mechanism for the build.
Git and the JDK8 build.
Be sure that your JAVA_HOME environment variable points to the jdk1.8.0 folder extracted from the JDK download.
git clone git@github.com:spring-projects-experimental/spring-authorization-server.git
Check out the Spring Security tags on Stack Overflow. Commercial support is available too.
Pull requests are welcome; see the contributor guidelines for details.
Spring Authorization Server is Open Source software released under the Apache 2.0 license.