You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Sambo Chea 7d3acd887a Merge branch 'master' of 10 months ago
.github Update gh issue template config.yml 10 months ago
buildSrc Add Gradle Lock Plugin 1 year ago
docs/manual Add to reference build 1 year ago
etc Add plugin io.spring.nohttp 1 year ago
gradle Use nimbus-jose-jwt and oauth2-oidc-sdk versions from spring-security 11 months ago
oauth2-authorization-server Use nimbus-jose-jwt and oauth2-oidc-sdk versions from spring-security 11 months ago
samples/boot/oauth2-integration Add and custom auth server base url for issuer 11 months ago
scripts Add 12 months ago
.editorconfig Add .editorconfig 2 years ago
.gitignore Update .gitignore 2 years ago
CODE_OF_CONDUCT.adoc Add Code of Conduct 2 years ago
CONTRIBUTING.adoc Update CONTRIBUTING with link to Getting Started 2 years ago
Jenkinsfile Add artifactory credentials to build environment 1 year ago
LICENSE.txt Add LICENSE.txt 2 years ago
README.adoc Fix download artifacts link 10 months ago
build.gradle Use artifactoryUsername/Password for plugin repositories 12 months ago Use nimbus-jose-jwt and oauth2-oidc-sdk versions from spring-security 11 months ago
gradlew Add Empty Boot sample 2 years ago
gradlew.bat Add Empty Boot sample 2 years ago
settings.gradle Upgrade to Gradle Enterprise Plugin 3.5.1 1 year ago


<html lang="en"> <head> </head>

Build Status

Spring Authorization Server

Spring Authorization Server is a community-driven project led by the Spring Security team and is focused on delivering OAuth 2.0 Authorization Server support to the Spring community.

The project will start in Spring’s experimental projects as an independent project so that it can evolve more rapidly.

The ultimate goal of this project is to replace the Authorization Server support provided by Spring Security OAuth.

With the much needed help from our community, this project will grow in the same way that the original Spring Security OAuth project did.

Feature Planning

This project uses ZenHub to prioritize the feature roadmap and help organize the project plan. The project board can be accessed here. It is recommended to install the ZenHub browser extension as it integrates natively within GitHub’s user interface.

The completed and upcoming feature list can be viewed in the wiki.

Getting Started

The first place to start is to read the OAuth 2.0 Authorization Framework to gain an in-depth understanding on how to build an Authorization Server. It is a critically important first step as the implementation must conform to the specification defined in the OAuth 2.0 Authorization Framework and the related specifications.

The second place to start is to become very familiar with the codebase in the following Spring Security modules:

A significant amount of effort was put into developing the Next Generation OAuth 2.0 Support in Spring Security. The goal is to leverage all the knowledge learned thus far and apply the same to the development of Spring Authorization Server.

Submitted work via pull requests should follow the same coding style/conventions and adopt the same or similar design patterns that have been established in Spring Security’s OAuth 2.0 support.


Be sure to read the Spring Security Reference, as well as the OAuth 2.0 Reference, which describes the Client and Resource Server features available.

Extensive JavaDoc for the Spring Security code is also available in the Spring Security API Documentation.

Code of Conduct

This project adheres to the Contributor Covenant code of conduct. By participating, you are expected to uphold this code. Please report unacceptable behavior to

Downloading Artifacts

See downloading Spring artifacts for Maven repository information.

Building from Source

Spring Authorization Server uses a Gradle-based build system. In the instructions below, ./gradlew is invoked from the root of the source tree and serves as a cross-platform, self-contained bootstrap mechanism for the build.


Git and the JDK8 build.

Be sure that your JAVA_HOME environment variable points to the jdk1.8.0 folder extracted from the JDK download.

Check out sources

git clone

Install all spring-\* jars into your local Maven cache

./gradlew install

Compile and test; build all jars, distribution zips, and docs

./gradlew build

Discover more commands with ./gradlew tasks.

Getting Support


Pull requests are welcome; see the contributor guidelines for details.


Spring Authorization Server is Open Source software released under the Apache 2.0 license.