I have 2 spring boot projects. One is spring boot web project which I am using as my front end client using angular 1. Another spring boot project is spring boot core project which I am using as my backend server.
Server side project contains microservices APIs which I have to secure from direct access from browser. So I have registered my project under OAuth2.0. I am using client_credentials grant type.
I am generating JWT Token from my web project as explained in Test part of my Oauth2 API Dashboard. It is generating JWT which I am passing in my API call under Authorization Header. Now I want to understand what all implementation required at server side.
Do I just need Resource Server and Security Configuration ? Or do I need to implement Authorization server also ?