Keycloak provides simple integration with Spring applications. As a result, we can easily configure our Spring Boot API security to delegate authentication and authorization to a Keycloak server.
Angular provides a built-in support for sending requests secured with the XSRF-TOKEN header. However, it won’t add the token to absolute URLs for security reasons. One way to solve the “Invalid CSRF token found” issue is to use relative links in all mutable requests and apply a custom proxy.
SonarQube is a well known, high quality tool utilized by many prominent companies such as Audible, Porsche, Bosch, and HP for advanced code analysis. However, you can easily use it for free to see what can be done to improve project security and reduce maintenance costs. One way to do that is to install a local copy on your development environment.