Zitadel is a new age sibling of Keycloak, available both as self managed & zitadel managed options. It is straightforward enough to setup and manage. I very recently started using it, along with it I just did integration with the Spring Boot 3 Oauth2 client/ resource server configuration. The present…

Smallstep is an awesome tool for sure and this blog post is about noting down my understanding about it plus sharing the same back with the community Smallstep — one liner definition It is an automated certificate management for devops. It helps issue and renew certificates for your setup of tools, workloads and uses world…

AWS & cloud are the two words you will hear together in the area of cloud. And one awesome thing which I interacted recently with was AWS custom resources for the AWS CloudFormation. This story/ article is going to focus mainly on custom resource for the AWS CloudFormation & AWS…

Overview The problem — MASSL/ 2 way TLS is complex most of the times and certificate/ PKI management is also complex. Creating certificates for clients and servers, then renewing it is quite complex and process oriented. Further, configuring the clients with truststores & keystores is again an added complexity. Complexity with…

Spring Boot 2.x.x sometime back had introduced a WebClient based OAuth2 Client & when we say WebClient that is Reactive & that does not works with a servlets based project out of the box in a go. You will get some errors for sure. Reason for the error is the…

I have been always impressed by JWTs, the concept overall, the usage, the technicalities around it. In fact it is the thing that forced me to learn details about the key pair(private + public keys), cryptography, etc. In this blog post I would love to share the brief(less is good)…

In enterprise world, Mutual TLS, Mutual Authenticated SSL, 2 way TLS, 2 Way SSL all point out to the great concept of mandating requestor to present it’s certificate and key while calling the apis, system, app, etc. …

Spring webflux — the reactive universe of the Spring framework is very interesting place. This post is dedicated to wrapping around the response to a common response that solves the purpose of having common fields which are always required for all API endpoints. The code repository is here — https://github.com/krnbr/spring-webflux-wrap-response …

Spring Boot 3 is just recently launched and one of the attractions with it is the @HttpExhange based declarative HTTP clients. There are ample amount of articles online which share the details of using the @HttpExhange and it is actually a good way of reducing the extra piece of code…