Easy JWT Authentication & Authorization with Spring Security | Step-by-Step Guide

Подписаться 1,4 тыс.

Просмотров 41 тыс.

50% 1

JWT Logout: • JWT Logout: The Trick ...
Refresh Token: • Implementing Secure Re...
Welcome to our tutorial where we'll walk you through the seamless integration of JWT (JSON Web Tokens) authentication and authorization into your Spring Boot application using Spring Security and JJWT.
In this step-by-step guide, we'll cover everything you need to know to implement JWT-based security, ensuring your application's data and endpoints are protected with industry-standard authentication and authorization techniques. Whether you're new to Spring Security or looking to enhance your skills, this tutorial is perfect for developers of all levels.
By the end of this video, you'll have a solid understanding of how to set up JWT authentication and authorization in your Spring Boot project, empowering you to build secure and robust applications with ease.
Don't forget to like, share, and subscribe for more insightful tutorials on Spring Boot development! Let's dive in and unlock the power of JWT security with Spring Security and JJWT.
📘 Resources Mentioned:
🧑‍💻 Source Code: github.com/hello-iftekhar/spr...
⛔ Background sound: share.epidemicsound.com/ia954g
🤚 In case you want to contact me:
❌ My LinkedIn profile: / iftekhar-hossain-369bbb6a
❌ Github: github.com/hello-iftekhar
❌ My Fiverr profile: www.fiverr.com/ifte_hsn
I also provide service on Upwork. In case you are interested:
❌ www.upwork.com/freelancers/~0...
Contents:
00:00 Intro
00:14 What are we going to cover
00:55 What is JWT
01:09 JWT like digital passport
01:22 JWT is like Sandwitch
01:35 JWT example
01:38 Header of JWT Token
01:45 JWT Payload
01:59 JWT Signature
02:46 Initialize new Spring Boot Application
03:41 Adding Dependency
05:03 Connecting to database using IntelliJ IDE built-in tool
7:31 Renaming application.properties file
07:46 Configuring Spring Boot for database connection
11:43 Creating user class
15:32 Adding Role class
16:05 Creating Role Class
19:09 Creating UserRepository
23:27 Explanation of Access Modifiers
24:00 Java's Default Access Modifier
27:22 UserDetailsService Implementation
29:45 Add jjwt dependencies in the project
32:05 Creating JwtService
33:42 Generate the token
36:16 Extract Payload/Claim from the token
38:04 Extract username from claim
38:34 Validate the token
40:04 Check if the token is expired
40:55 Creating JWT Filter
47:53 Configuring Spring Security
52:02 Creating AuthenticationController
52:40 Creating AuthenticatinService
59:05 Testing the application

Опубликовано:

2 июн 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 200

@LearnWithIfte 3 месяца назад

When you are sending a request without a token or with the invalid token you will get a 403 status code. But this should be 401. So I make a video demonstrating how to fix it. you can check it from here: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-ucx6wo6dp98.html

@meryemOuyouss2002 18 дней назад

OK sir thank you so much 👍👍

@caiovitor5197 Месяц назад

My man, you're a life saver, I was building a auth-server microservice for my college class and spring security wouldn't work. Threw that all way and followed your tips and guides, now it's running and the authentication is the sweetest thing. Thank you so much for your help!!!!

@geybriyel2416 2 месяца назад

Thank you so much! This is very helpful. I've been struggling a lot with implementing JWT-based security on my api during the last quarter of 2023. Almost all tutorials and guides were already outdated and contained a lot of deprecated methods, and reading the documentations were a pain in the ass too. I got stuck with my personal project cz of it. Until now! You saved a lot of beginners, Iftekhar. Thank you!!!

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@irule10338 3 месяца назад

THANK YOU! Best video because you used up-to-date methods and not many deprecated ones like other videos

@LearnWithIfte 3 месяца назад

I'm glad you found the video helpful!

@user13443fg 2 месяца назад

true

@shadow.youtube 3 месяца назад

Literally I watched lots of videos, didn't understand that much because JWT implementation java a little bit complex and finally got your video sir, this is really amazing for those(like me) who want to understand the architecture behind the implementation and the procedure of implementation. Really appreciate your valuable time and this amazing explanation. Thank a lot sir.

@LearnWithIfte 3 месяца назад

I'm glad my video could help you understand the complex topic of JWT implementation in Java! It's always great to hear that my explanations are helpful to viewers like you. Thank you for watching and taking the time to leave such a positive comment!

@Dulan_M_Herath 2 месяца назад

same here, watched tons of videos but this one is the best of the best. everything is explained. short and sweet

@eneser401 2 месяца назад

This tutorial is awesome, i didn't code for 2 years, now i'am back at it, it was very difficult, but this video was everything i needed, thank you so much.

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@naumtinga 20 дней назад

Thank you for the updated and detailed tutorial on this subject

@HemantKumar-xl5dv 20 дней назад

Sir, I understood the concepts well because of your teachings.

@robertbiro1538 5 дней назад

Thanks! It was perfect, ! It really helped me!

@user-vs8px9dl4i 3 месяца назад

Love the way you teach simple and perfect keep doing it

@LearnWithIfte 3 месяца назад

Thank you so much for your kind words! I'm glad you find my teaching style helpful.

@user13443fg 2 месяца назад

Thankyou, it really worked for me! learned something new 👍

@LearnWithIfte 2 месяца назад

Thank you for watching.

@saravanankaliyamoorthy49 2 месяца назад

This really helped me a lot. Thanks for such a tutorial

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@UsamaKhan-ct4bc 3 месяца назад

Best video so far on Spring Boot security.Respect!

@LearnWithIfte 3 месяца назад

Thank you for the kind words, glad you enjoyed the video!

@zarroukkoussay6455 3 месяца назад

Great video!! It really helped me, I found difficulties since a long time in security but thanks for help

@LearnWithIfte 3 месяца назад

Thank you so much! I'm glad the video was helpful for you in overcoming your security difficulties. Keep up the good work!

@MahadiHasan-qb9zw 6 дней назад

Its really an amazing detailed video. Will you please enhance it by securing multiple microservices with this JWT authentication ?

@HabiburRahman-dm5yt 11 дней назад

thanks a lot. Jajakallah khairan

@saravogelin 2 месяца назад

I really thank you for this tutorial. After searching for a long time this is the first one I found that is no using deprecated mothods for JWT version 12.

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@ruzibayevich1693 3 месяца назад

bro great job, thank you so much

@kutlinho 2 месяца назад

That was very useful. Thank you.

@manoharanrajendiran568 22 дня назад

❤You are making complex to very easy with your professional explanations. 🙌 ❤

@iRozdobudko 2 месяца назад

Great job! You have helped me a lot!

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@amodahegde2386 6 дней назад

Such a good video and very clear explanation!

@l0gical998 3 месяца назад

Love this! Keep going brother!

@LearnWithIfte 3 месяца назад

Thank you so much for the support! Glad you enjoyed the video!

@andialdryan8470 2 месяца назад

Perfect video sir, this very help full for me. Thank you for make this video!

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@ASIAZH Месяц назад

very easy to understand. thank you!!

@LearnWithIfte Месяц назад

Thank you for watching.

@WoodPig Месяц назад

Your video has been incredibly beneficial to me, and I want to express my sincere gratitude. At around 58:30, wouldn't it be better to use the HTTP status code 201 Created for the /register endpoint?

@erfannavab9805 3 месяца назад

Great explanation. Thanks

@LearnWithIfte 3 месяца назад

Thank you so much for your kind words! I'm glad I could provide a clear explanation for you.

@atomichub5049 Месяц назад

hello sir , I implemented jwt using your way for my USER entity class but ! there is one more class i.e VISITOR to that entity I also want to generate and validate token , how can i do so . let me remind you both these classes are two different entity classes and have different tables. hope you understand what i mean and I dont use roles and permission

@SekharBabuBodipudi 3 месяца назад

Keep Going, You are going a long way. All the best

@LearnWithIfte 3 месяца назад

Thank you for the encouragement!

@bhargavmamidi7716 29 дней назад

Sir could you please add the refresh token as well to this lecture?? That would be really helpful.. thank you.

@goutamnamdev1304 3 месяца назад

Thank u sir for amazing explanation all concept is Crystal clear 🙌 so Thank you❤❤

@LearnWithIfte 3 месяца назад

I'm glad the explanation was helpful! Thank you for your kind words.

@inhhoang1542 Месяц назад

thanks for your video its very helpful

@LearnWithIfte Месяц назад

You are welcome

@swannhs 3 месяца назад

Please consider a tutorial spring boot with keycloak. Your explanation is really great ❤

@LearnWithIfte 3 месяца назад

Thank you for the suggestion! I'll definitely consider making a tutorial on Spring Boot with Keycloak.

@user-re1eu1rp7h 3 месяца назад

it's a good one. clean explanation. It would be great if you could include refresh token as well.

@LearnWithIfte 3 месяца назад

Thank you for your comment! I'm glad you found the explanation helpful. I'll definitely keep your suggestion in mind for future videos.

@CarlosGarcia-ll8zc 3 месяца назад

Amazing video!!!🤙

@LearnWithIfte 3 месяца назад

Thanks!!

@ikac11 Месяц назад

thank you so much!!!!!

@LearnWithIfte Месяц назад

You're welcome!

@leovelcamiloneto3608 3 месяца назад

Simple and clean... 👍👍👍

@LearnWithIfte 3 месяца назад

Thank you for your comment! I'm glad you appreciate the simplicity and cleanliness of the video. It's always great to hear positive feedback from viewers like you.

@pritambala4471 2 месяца назад

Love your content. Sir please post a video in a week🧡🧡

@LearnWithIfte 2 месяца назад

Thank you for yout support. I will try my best to do this.

@TheStarboyVlog 3 месяца назад

I'm impressed🎉, Just for a suggestion when you write something can you please explain it's purpose so we can also understand it more clearly and it will be helpful for future audiences. ❤

@LearnWithIfte 3 месяца назад

Thank you. I'll definitely consider explaining the code and its purpose in my future videos.

@mika-if5wh Месяц назад

hello, i am able to log in and register but when i use the token to login i receive this error ".HttpMessageNotReadableException: Required request body is missing" and i am unable to log in. any ideas?

@MeuMundoTech 13 дней назад

Thanks from Brazil 🎉

@ramazanmashanlo3432 3 месяца назад

Thanks for video, and what about cors? If we will call this api from frontend.

@LearnWithIfte 3 месяца назад

Thanks a lot for watching my video. I will write a blog on this and will share with you here. Hopefully, it will be helpful for you.

@abdur8312 3 месяца назад

Thank you for the latest JWT video. I've a doubt, when I try to access the "/demo" page with the bearer token. it's giving 404 error. I've done exactly the same steps you've done in the video. Do you have any idea what could be wrong.

@LearnWithIfte 3 месяца назад

Can you please share your code?

@screwyouguysimgoinghome9835 3 месяца назад

I was facing the same issue. But I sorted it out.

@rahulpatil6871 3 месяца назад

best explanation and its new methods uimplemented in this video .can you make any end to end project with all validations for learning purpose can you please make it. It will help to lots of students .

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@Selvin_raja 25 дней назад

Thalaiva your great 💥💥

@arunsara2183 3 месяца назад

Great Explanation. I also got problem in using @PreAutorize like how can we use it in latest versions of spring

@LearnWithIfte 3 месяца назад

Thanks for your comment! I'm glad you found the explanation helpful. To use @PreAuthorize in the latest versions of Spring, you can simply annotate your method or class with @PreAuthorize and provide the necessary permissions or roles as arguments. Make sure you have the necessary dependencies added to your project as well. Let me know if you have any specific questions!

@arunsara2183 3 месяца назад

@@LearnWithIfte yeah but that's the problem i was facing while using @PreAuthorize I got 403 but while setting up role authorization in config file it works fine.

@LearnWithIfte 3 месяца назад

@@arunsara2183 can you please share your code via github?

@Rajnish089 3 месяца назад

Beautifuly explained

@LearnWithIfte 3 месяца назад

Thank you so much! I'm glad you found the explanation helpful.

@PatrickPulfer Месяц назад

Thank you @LearnWithIfte!!!! Really helpful for my studies.

@LearnWithIfte Месяц назад

Thank you.

@akadeadahot7067 Месяц назад

hey buddy its like a harry potter stick just wow .... because i have been doing this on today from early morning and stucked at debugging the code why some request permited but still not working and after seeing this tutorial with a source code i just have to change appplication.properties file nothing else and code runs fine. Many thanks for sharing video with us along with latest spring security filter chain implementation without any deprecated warning code. 🙂

@LearnWithIfte Месяц назад

Wow. Thank you for watching. I am glad to know that it was helpful for you.

@russellandrady 16 дней назад

Tutorial was good sir. Everything worked. But I would be happier if those configurations and other security implementations explained a bit better. I have to find them separately.

@LearnWithIfte 16 дней назад

Thanks for watching. I will try to add explanation in my future tutorials.

3 месяца назад

Very helpfull video! Could you please tell me what Theme you use for IntelliJ? I really like the colors of your editor :)

@LearnWithIfte 3 месяца назад

I'm glad you found the video helpful! The theme I use for IntelliJ is called Material Theme UI, it's one of my favorites too!

@rouclecasonganyi3084 2 месяца назад

I had a hard time finding a tutorial that uses version 12.x.x This one solved my problems Thanks so much

@LearnWithIfte 2 месяца назад

Thank you for watching. I am glad to know that it was helpful for you.

@Luthfihadi666 19 дней назад

damn brooo thanks 😁

@dinhhuy9714 2 месяца назад

hey, ur video has helped me a lot, but i got an eror 'ERROR: column "role" is of type roleenum but expression is of type character varying Hint: You will need to rewrite or cast the expression.' when i tried to insert user into database, pls help, i already altered the column role in database to enum. Tks a lot

@LearnWithIfte 2 месяца назад

Can you please share your code? You can share your github link. learnwithiftekhar@gmail.com

@user-ss9sn6zr5t 3 месяца назад

Thank you for your work! I have a question. When you are accessing "/demo" without a token, you get a 403 error. But shouldn't it be a 401 in this case? A 403 means that you are authorized but do not have access, while a 401 means that your token is invalid/empty. How can this issue be solved?

@LearnWithIfte 3 месяца назад

Thank you so much for your support and for bringing up this question! It's great to see that you're paying attention to the details. You're right, there seems to be a mismatch in the error codes. I'll look into it and work on finding a solution. Your feedback is truly appreciated!

@LearnWithIfte 3 месяца назад

Hi, I have figured out the solution. We need to add a CustomAccessDeniedHandler to provide 403 error for appropriate cases and also need to add an exception handler in the SecurityFilterChaing method to handle both 401 and 403 status. I have pushed the update to the git. you can check it from github.com/hello-iftekhar/springJwt

@LearnWithIfte 3 месяца назад

I have made a video fixing this issue. You can check it from here: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-ucx6wo6dp98.html

@kriperek31 2 месяца назад

Great video, great job

@LearnWithIfte 2 месяца назад

Thank you!

@muhammedkerek9615 22 дня назад

Hello , thank you for the explanation when i register the token is generated , but when i try to login it's forbidden and in the database , the password is not hashed it's written as it is do you know why this might be happenning ?

@LearnWithIfte 22 дня назад

Hey, thanks for watching. Unfortunately I don't have any idea why this is happening. Please check my code on github.

@InternationalNewsbd 3 месяца назад

clean explanation

@LearnWithIfte 3 месяца назад

Thank you for watching! I'm glad you found the explanation helpful.

@meryemOuyouss2002 21 день назад

Thank you sir ,but I have a question when I do register I found thé 401 code but i dont know why???

@meryemOuyouss2002 21 день назад

It's my fault, thank you so much for this video, now it's working very well

@krylok989 3 месяца назад

Amazing, good english, good explain

@LearnWithIfte 3 месяца назад

Thank you so much for the kind words, I really appreciate it!

@user-re1eu1rp7h 3 месяца назад

celan explanation. It would be great if you could include refresh token as well.

@LearnWithIfte 3 месяца назад

Thank you for your comment! I'm glad you found the explanation helpful. I'll definitely keep your suggestion in mind for future videos.

@user-nj5to9yz6p 3 месяца назад

Thanks for the great video! I completely copied your project, a new user registers, a token is issued, but when I try to authorize the user on /demo or amine I get 403, by the way, the same in your previous example, the /login page opens, and on /user and /admin I get 403. Tell me what could be the problem? I’m creating a new project, the dependencies are the same, I copy your code completely, I don’t add anything, but I get 403. Thank you in advance!!!!

@LearnWithIfte 3 месяца назад

Can you please share your code?

@user-nj5to9yz6p 3 месяца назад

Oh, I added the code from your repository and it worked! Thank you! Now I’m thinking about how to combine this with thymeleaf)))@@LearnWithIfte

@LearnWithIfte 3 месяца назад

With thymeleaf you do not need this jwt token. You can check this video ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-jPmkcFjbQCM.htmlsi=u-KrMMBnNBmdu2KD

@berkegurel6836 2 месяца назад

Great tutorial however after ı wrtie the config class ı get 403 for my any POST request include login and register to (yes i disabled csrf)

@LearnWithIfte 2 месяца назад

Please check if you are sending request with proper request body. Request is case sensitive. You can check the code in my GitHub. Link is in the description.

@berkegurel6836 2 месяца назад

@@LearnWithIfte I found my issue(my 168 bits key does not enough for jwt. I found it when i debugging @EnableWebSecurity(debug = true)) thanks

@jeevaathecoder 3 месяца назад

Great work sir, if possible make videos on chat applaication suing web socket

@LearnWithIfte 3 месяца назад

Thanks for the heads up! I'll definitely make a tutorial on this. Keep an eye on my channel for more updates!

@abhishek_67 3 месяца назад

In company also security services build like this or any difference is there?

@LearnWithIfte 3 месяца назад

It depends on the requirement. In this video, I have shown the fundamental thing. In the real world companies may require an extra level of security. If you can understand the fundamental level, then you will be able to do the advanced levels of work. But you need to study a lot.

@zayedh8089 4 месяца назад

greate work ,could you do a curd of anything with role (admin and user )with spring angular and token i have some issues in that

@LearnWithIfte 4 месяца назад

Sure. I will make a tutorial on that soon.

@Kamilek96 4 месяца назад

@@LearnWithIfte Refresh tokens and external auth providers would be awesome too! :) Great tutorial

@LearnWithIfte 3 месяца назад

Thank you for your feedback! I'm glad you found the tutorial helpful. I'll definitely consider covering refresh tokens and external auth providers in future videos.

@alexkoren7648 3 месяца назад

👍 Thank you

@LearnWithIfte 3 месяца назад

Thank you so much for your kind words! I really appreciate your support.

@uiyasser Месяц назад

brother, thank you for the video. i did everything as you did from what i understand. using postman, login/registration works. but when i log in and generate a jwt token and use that token to login in i get 401 error. i also get 401 error on every page other than the login/register pages. ive been looking at the source code trying to find a difference but i cant.

@LearnWithIfte Месяц назад

Please double-check the return value of *isValid* method in *JwtService class.* There is a _ "!"_ symbol, you have may missed.

@uiyasser Месяц назад

@@LearnWithIfte i have the "!" symbol, its in "!isTokenExpired" im not sure what else it could be

@LearnWithIfte Месяц назад

Please share your code. learnwithiftekhar@gmail.com

@uiyasser Месяц назад

@@LearnWithIfte i just sent the email, the subject is "github source code of jwt". thank you brother this means a lot

@anjakovacevic2996 Месяц назад

Hello, could you make a video on how to connect this with Angular app on front?

@LearnWithIfte Месяц назад

Thank you for your suggestion! I'll definitely consider making a on that. Stay tuned for future content!

@ndjouenkeudikaabelrudy9994 2 месяца назад

Hello, what if I want to add more than the username in the JWT payload ?

@LearnWithIfte 2 месяца назад

You need to some tweak. First inside jwt service class you need to create a method to generate other property. below is an example of the method: Map getMyClaimsMap() { Map extraClaims = new HashMap(); extraClaims.put("hello", "world"); return extraClaims; } then you need to update generateToken method as follows: public String generateToken(User user) { Map claims = getMyClaimsMap(); //get extra properties String token = Jwts .builder() .subject(user.getUsername()) .issuedAt(new Date(System.currentTimeMillis())) .expiration(new Date(System.currentTimeMillis() + 24*60*60*1000 )) .claims(claims) // set extra properties in token payload .signWith(getSigninKey()) .compact(); return token; } Hopefully It will help.

@rafaelalfonsocorredorgambi1893 3 месяца назад

Hello friend, I need help with the code, it allows me to register and login but when I access the endpoint it gives me a 200, however it does not return anything, but when the token is correct, it may be that it doesn't matter at all.

@LearnWithIfte 3 месяца назад

Please share your code. You can send me your GitHub link via email. You can find my email in my channel

@prashupandey1304 Месяц назад

Sir my auth header is coming null how to debug it

@sonnees 3 месяца назад

47:03 | 'Reactive' not use "new WebAuthticationDetailsSource", because ServerHttpRequest. pls!

@LearnWithIfte 3 месяца назад

Please check the source code from github. You will find it in the description.

@nadetdevfullstack7041 3 месяца назад

Excellent

@LearnWithIfte 3 месяца назад

Thank you so much for your kind words! I'm glad you enjoyed the video.

@user-tr9eb3kr6j 2 месяца назад

It would be interesting to see how to host a spring project)

@LearnWithIfte 2 месяца назад

Thank you for your suggestion! I'll definitely consider making a video on hosting spring boot. Stay tuned for future content!

@abdul-razaktwaha1287 2 месяца назад

Sir, what theme are you using please?

@LearnWithIfte 2 месяца назад

Material UI theme

@dineshkumarsah130 2 месяца назад

Nice 👍

@LearnWithIfte 2 месяца назад

Thanks ✌

@whiteboardDSA 21 день назад

why do we need to save JWT token into database?

@LearnWithIfte 21 день назад

Please check this video. Here I have explained the reason. ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-OpSU0VgfkL4.html

@imadyasin238 3 месяца назад

Can we Login without adding the Jwt filter?

@LearnWithIfte 3 месяца назад

Without JWT filter the full application will become useless. This filter is responsible for filtering out unauthenticated user.

@imadyasin238 3 месяца назад

@@LearnWithIfte Thankyou . I know that. I just want to know is that possible?

@ruzibayevich1693 3 месяца назад

can't we continue this project ? I would like to add some stuff that user could do after authorization

@LearnWithIfte 3 месяца назад

Sure. Just give some suggestions of what tasks you want to do. I will try to make a tutorial on that.

@ruzibayevich1693 3 месяца назад

@@LearnWithIfte let's say just a simple project, a user could buy a book from a store which sales only books, I think we don't need to add the payment system and etc, just a user should authorize and buy a book

@ruzibayevich1693 3 месяца назад

that would be great if you make a tutorial for that @learnwithiftekhar

@enescagrbayraktutan6329 3 месяца назад

Excellent explanation

@LearnWithIfte 3 месяца назад

Thank you for your kind words! I'm thrilled that my explanation resonated with you.

@enescagrbayraktutan6329 3 месяца назад

@@LearnWithIfte I would loved to see fullstack guide with react to fully cover spring security, like you did in Auth0. Keep up the good work man!

@makamemawe1072 2 месяца назад

Thank you allah bless you

@LearnWithIfte 2 месяца назад

Thank you for watching.

@sujitkumar2196 23 дня назад

Awesome but the way you implemented is not correct, 1.First user registre then server will send a success response your registration is success now you can login. 2.Then user will login will crendetial now server will send a access token.

@pedropierolopezmego1363 Месяц назад

Hi good video, but have error 401Unauthorized; i clone your project and same error, can help me pls

@LearnWithIfte Месяц назад

Please, check the request body. Its case sensitive.

@pedropierolopezmego1363 Месяц назад

@@LearnWithIfte JSON parse error: Cannot construct instance of `com.helloIftekhar.springJwt.model.User` (although at least one Creator exists): no String-argument constructor/factory method to deserialize from String value ('firstName')] have that error

@LearnWithIfte Месяц назад

Are you getting this error from my github code?

@pedropierolopezmego1363 Месяц назад

@LearnWithIftekhar Yes, I cloned it and got an error. i dont know how to fix it

@LearnWithIfte Месяц назад

Use this request for register user and let me know the result. { "firstName": "john", "lastName": "doe", "username": "john@gmail.com", "password": "john", "role": "USER" }

@gomezvillegasdaniel 3 месяца назад

I think you are wrong returning 403 instead of 401 while authenticating with bad credentials... because: authentication is the process of checking if the user exists with valid credentials and it should return 401 in case of wrong credentials instead of 403, authorization is the process of checking if the user has the permissions (given by roles) to access certain resources, and it should return 403 in case that the user has no permissions...

@LearnWithIfte 3 месяца назад

Yes, you are right about the status code. I have already recorded a new video on It. I will release it soon. However I have already updated my github repo fixing this issue. You can check the fix there.

@LearnWithIfte 3 месяца назад

Hey, I have made another video where I have shown how to fix this issue. You can check it from here: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-ucx6wo6dp98.html

@MohammadWaseel-pq5py 2 месяца назад

but how can i create multiple roles from database

@LearnWithIfte 2 месяца назад

For that you need to do some curd operations. I wall try to make a video in future for this.

@anshupanda2149 3 месяца назад

Unpopular question: Which theme sir ?

@LearnWithIfte 3 месяца назад

Material Oceanic

@snof7602 4 месяца назад

Soooo cleaaaaaaan 🫡🔥

@LearnWithIfte 3 месяца назад

Thank you for noticing! I put a lot of effort into keeping everything clean and organized for you all.

@eyadhantoly5796 2 месяца назад

1:05:21 Status: 403 Forbidden I did every thing right, why may this happen ?

@madhunt378 2 месяца назад

same to me

@LearnWithIfte 2 месяца назад

please share your code via github. you can send mail to learnwithiftekhar@gmail.com

@tanushachekkapalli5251 Месяц назад

Same to me

@LearnWithIfte Месяц назад

@@tanushachekkapalli5251 please check the isValid method in the JwtService.java class. many people make mistakes while writing return statements of this method. You can follow the source code from the github

@enderutlu791 Месяц назад

Guys i solved my problem. It was on JwtAuthenticationFilter. In the line "if(authHeader == null || !authHeader.startsWith("Bearer "))" i forgot the "!" before the "authHeader.startsWith" function. This causes you to be able to login and register but not use any other endpoint.

@user-et7vb4ju6v 2 месяца назад

Здесь не хватает русского комментария. Спасибо. Сейчас тяжело найти актуальную JWT.

@LearnWithIfte 2 месяца назад

Thank you for watching.

@pe3738 2 месяца назад

I think that i love you.

@soufianch8481 3 месяца назад

@naumtinga 19 дней назад

@romanmanzhula9034 3 месяца назад

Thank you for good video. If somebody see in terminal - "org.hibernate.tool.schema.spi.CommandAcceptanceException: Error executing DDL .....", just add jpa: generate-ddl: true

@newtanagmukhopadhyay4716 2 месяца назад

greatcourse. btw apni ki bengali 😁

@LearnWithIfte 2 месяца назад

Yes

@manish_55 3 месяца назад

@LearnWithlftekhar why do you use personal preference as application.yml please use application. property because a guy who is new in programming can confused

@LearnWithIfte 3 месяца назад

Thank you for your input! I appreciate your concern.