Protect a Spring Boot Microservice with XtremeCloud Single Sign-On (SSO)

Understand one of the many adapters that work with **XtremeCloud SSO**

Background

Applying security to any application is crucial. The penalty for doing it wrong can be devastating.

Unfortunately, historically, an implementation is often difficult with a myriad of moving parts to get it right. Additionally, it is often late in the development process before authentication and authorization is considered. That “bolt-on” mentality is a productivity killer. If indeed it is bolted on near the end of the software development lifecycle (SDLC), it is poorly implemented and intrusive to the code. It is not the developer’s fault whose focus has been on business functionality and security got pushed out because it was just hard.

We are showcasing XtremeCloud SSO for its ability to outsource and delegate all the authentication and authorization aspects of an application. We have an open-source and flexible solution that is neutral of almost any technology.

Moreover, XtremeCloud SSO is far more than just an authentication server, it also provides a complete Identity and Access Management (IAM) system, user federation for third parties like Microsoft Active Directory (LDAP), authentication delegation to OpenID Connect (OIDC) providers like Google, and much more.

Spring Boot and XtremeCloud SSO

XtremeCloud SSO provides adapters for applications that need to interact with a XtremeCloud SSO instance. There are adapters for WildFly/EAP, NodeJS, JavaScript, and Thorntail. As you will see in this tutorial, there is also an adapter for Spring Boot.

Log into XtremeCloud SSO - click image to enlarge