Update README.md

ReLive27 · ReLive27 · commit 959a887dbcf9 · 2023-03-11T21:13:43.000+08:00
diff --git a/README.md b/README.md
@@ -18,17 +18,17 @@ Server.
 
 - [Using JWT with Spring Security OAuth2](https://relive27.github.io/blog/spring-security-oauth2-jwt)
 - [Custom OAuth2 Authorization Consent Page](https://relive27.github.io/blog/custom-oauth2-consent-page)
-- [Spring Security persistent OAuth2 client](https://relive27.github.io/blog/persisrence-oauth2-client)
+- [Spring Security Persistent OAuth2 Client](https://relive27.github.io/blog/persisrence-oauth2-client)
 - [Spring Security OAuth2 Client Credentials Authorization](https://relive27.github.io/blog/oauth2-client-model)
-- [Spring Security OAuth2 Authorization Code Flow with Proof Key for Code Exchange (PKCE)](https://relive27.github.io/blog/oauth2-pkce)
+- [Authorization Code Flow with Proof Key for Code Exchange (PKCE)](https://relive27.github.io/blog/oauth2-pkce)
 - [Spring Security OAuth2 Login](https://relive27.github.io/blog/oauth2-login)
 - [Spring Security and OpenID Connect](https://relive27.github.io/blog/springn-security-oidc)
 - [Spring Cloud Gateway Combined with the Security Practice of OAuth2.0 Protocol](https://relive27.github.io/blog/spring-gateway-oauth2)
 - [Spring Security OAuth2 implements simple key rotation and configures resource server JWK cache](https://relive27.github.io/blog/jwk-cache-and-rotate-key)
 - [Using Spring Security OAuth2 Authorization Service JWK with Consul Configuration Center](https://relive27.github.io/blog/oauth2-jwk-consul-config)
 - [A Simple Guide to Using Spring Security OAuth2 Opaque Tokens](https://relive27.github.io/blog/oauth2-opaque-token)
 - [Spring Security OAuth2 Introspection Protocol in conjunction with JWT Guide](https://relive27.github.io/blog/oauth2-introspection-with-jwt)
-- [Spring Security OAuth 2.0 authorization server combined with Redis implements access to accessToken rate limits](https://relive27.github.io/blog/oauth2-token-access-restrictions)
+- [Spring Security OAuth 2.0 Authorization Server Combined with Redis implements Access to AccessToken Rate Limits](https://relive27.github.io/blog/oauth2-token-access-restrictions)
 - [(Coming soon)OAuth2.0 Security Practices for Single Page Applications (SPA)]()
 - ...
 
diff --git a/oauth2-custom-consent-authorizationserver/README.md b/oauth2-custom-consent-authorizationserver/README.md
@@ -1,11 +1,12 @@
-### 相关信息:
+## Relevant Information:
 
-在该模块中我们使用 Spring Authorization Server 创建了一个 OAuth2.0
-授权服务器，当我们在浏览器中测试访问 [http://localhost:8080/oauth2/authorize?response_type=code&client_id=relive-client&scope=message.write%20message.read%20profile&state=some-state&redirect_uri=http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code](http://localhost:8080/oauth2/authorize?response_type=code&client_id=relive-client&scope=message.write%20message.read%20profile&state=some-state&redirect_uri=http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code)
-, 在输入用户名密码（admin/password）通过认证后，我们将看到如下自定义授权页面：<br />
+In this module we use Spring Authorization Server to create an OAuth2.0 authorization server, When we test
+access [http://localhost:8080/oauth2/authorize?response_type=code&client_id=relive-client&scope=message.write%20message.read%20profile&state=some-state&redirect_uri=http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code](http://localhost:8080/oauth2/authorize?response_type=code&client_id=relive-client&scope=message.write%20message.read%20profile&state=some-state&redirect_uri=http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code)
+in the browser After entering the username and password(admin/password) to pass the authentication, we will see the
+following custom authorization page: <br />
 
 ![](./image/custom-page.png)
 
-### 相关文章:
+## Relevant Articles:
 
-- [自定义OAuth2授权同意页面](https://relive27.github.io/blog/custom-oauth2-consent-page)
+- [Custom OAuth2 Authorization Consent Page](https://relive27.github.io/blog/custom-oauth2-consent-page)
diff --git a/oauth2-introspection-with-jwt/README.md b/oauth2-introspection-with-jwt/README.md
@@ -1,20 +1,21 @@
+## Relevant Information:
 
-### 相关信息:
-1.`oauth2-server-introspction-with-jwt`是一个使用*spring-security-oauth2-authorization-server*构建的授权服务器。
+1. `oauth2-server-introspction-with-jwt` is an authorization server built with *
+   spring-security-oauth2-authorization-server*.
+2. `oauth2-server-introspction-with-jwt` registered an OAuth2.0 client:
+    - clientId: relive-client
+    - clientSecret: relive-client
+    - redirectUri: http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code
 
-2.`oauth2-server-introspction-with-jwt`注册了一个 OAuth2.0 客户端：
-- clientId: relive-client
-- clientSecret: relive-client
-- redirectUri: http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code
 
-3.`oauth2-server-introspction-with-jwt`注册了一个用户，用户名密码为：`admin`/`password` 。
+3. `oauth2-server-introspction-with-jwt` has registered a user, the username and password are: `admin`/`password`.
 
-4.`resourceserver-introspection-with-jwt`是一个SpringBoot的资源服务，您可以修改`application.yml`数据库配置以连接您的MySQL数据库。
+4. `resourceserver-introspection-with-jwt` is a SpringBoot resource service, you can modify the `application.yml`
+   database configuration to connect to your MySQL database.
+5. `oauth2-client-introspection-with-jwt` is an OAuth2.0 client service.
+6. After starting all SpringBoot services, the browser
+   visits [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test) for testing.
 
-5.`oauth2-client-introspection-with-jwt`是一个 OAuth2.0 客户端服务。
+## Relevant Articles:
 
-6.启动所有SpringBoot服务后，浏览器访问 http://127.0.0.1:8070/client/test 进行测试。
-
-### 相关文章:
-
-- [Spring Security OAuth2 内省协议与 JWT 结合使用指南](https://relive27.github.io/blog/oauth2-introspection-with-jwt)
+- [Spring Security OAuth2 Introspection Protocol in conjunction with JWT Guide](https://relive27.github.io/blog/oauth2-introspection-with-jwt)
diff --git a/oauth2-jwk-consul-config/README.md b/oauth2-jwk-consul-config/README.md
@@ -1,8 +1,11 @@
-### 相关信息:
+## Relevant Information:
 
-该模块演示了 OAuth2.0 授权服务通过 Consul 实现密钥轮换，如果您并不了解 Consul，请利用一些时间阅读 [Consul](https://www.consul.io/) 官网提供的信息。 Consul KV Store
-提供了一个分层的KV存储， 能够存储分布式键值，我们将利用 Consul KV Store 使资源服务器发现授权服务器的公钥信息， 授权服务器轮换密钥后将公钥通过HTTP API更新到 KV Store。
+This module demonstrates that the OAuth2.0 authorization service implements key rotation through Consul. If you don't
+know Consul, please take some time to read the information provided by [Consul]((https://www.consul.io/) )'s official
+website. Consul KV Store provides a hierarchical KV store that can store distributed key values. We will use Consul KV
+Store to enable the resource server to discover the public key information of the authorization server. After the
+authorization server rotates the key, the public key will be updated to KV Store.
 
-### 相关文章:
+## Relevant Articles:
 
-- [将Spring Security OAuth2授权服务JWK与Consul 配置中心结合使用](https://relive27.github.io/blog/oauth2-jwk-consul-config)
+- [Using Spring Security OAuth2 Authorization Service JWK with Consul Configuration Center](https://relive27.github.io/blog/oauth2-jwk-consul-config)
diff --git a/oauth2-jwk-redis/README.md b/oauth2-jwk-redis/README.md
@@ -1,10 +1,13 @@
-### 相关信息:
+## Relevant Information:
 
-该模块提供支持密钥轮换策略的`JWKSource`。 RotateJwkSource 是一种JWKSource利用 JWKSetCache 来支持密钥轮换实现。
+This module provides a `JWKSource` that supports key rotation strategies. RotateJwkSource is a JWKSource implementation
+that utilizes JWKSetCache to support key rotation.
 
-除了工程中默认 Redis 实现方式，还支持本地内存和Caffeine实现方式。
+In addition to the default Redis implementation in the project, it also supports local memory and Caffeine
+implementations.
 
-以下代码显示了如何配置本地内存密钥轮换策略的`RotateJwkSource`提供支持的示例：
+The following code shows an example of how to configure the `RotateJwkSource` of the local in-memory key rotation
+strategy to provide support:
 
 ```
     @Bean
@@ -13,7 +16,7 @@
     }
 ```
 
-`RotateJwkSource`还支持使用Caffeine的密钥轮换策略，可以按如下方式配置：
+`RotateJwkSource` also supports using Caffeine's key rotation strategy, which can be configured as follows:
 
 ```
     @Bean
@@ -22,6 +25,6 @@
     }
 ```
 
-### 相关文章:
+## Relevant Articles:
 
-- [Spring Security OAuth2实现简单的密钥轮换及配置资源服务器JWK缓存](https://relive27.github.io/blog/jwk-cache-and-rotate-key)
+- [Spring Security OAuth2 implements simple key rotation and configures resource server JWK cache](https://relive27.github.io/blog/jwk-cache-and-rotate-key)
diff --git a/oauth2-jwt/README.md b/oauth2-jwt/README.md
@@ -1,9 +1,10 @@
-### 相关信息:
+## Relevant Information:
 
-该模块演示了如何让我们的 Spring Authorization Server 实现使用 JSON Web 令牌。在启动工程前，你需要更改`oauth2-server`中`application.yml`文件 MySQL
-的用户名和密码，SQL表的创建使用 [Flyway](https://flywaydb.org) 数据库版本控制组件。
+This module demonstrates how to get our Spring Authorization Server implementation to use JSON Web Token. Before
+starting the project, you need to change the username and password of MySQL in the `application.yml` file
+in `oauth2-server`. SQL tables are created using the [Flyway](https://flywaydb.org) database versioning component.
 
-你可以使用 Docker 快速启动一个MySQL数据库：
+You can use Docker to quickly start a MySQL database:
 
 ```
 docker run -p 3306:3306 --name mysql \
@@ -14,8 +15,9 @@ docker run -p 3306:3306 --name mysql \
 -d mysql:5.6
 ```
 
-启动服务后，浏览器访问 [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test) ,通过输入 admin/password 认证成功后，最终将返回资源信息。
+After starting the service, the browser visits [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test).
+After successful authentication by entering admin/password, the resource information will eventually be returned.
 
-### 相关文章:
+## Relevant Articles:
 
-- [将JWT与Spring Security OAuth2结合使用](https://relive27.github.io/blog/spring-security-oauth2-jwt)
+- [Using JWT with Spring Security OAuth2](https://relive27.github.io/blog/spring-security-oauth2-jwt)
diff --git a/oauth2-login/README.md b/oauth2-login/README.md
@@ -1,33 +1,38 @@
+## Relevant Information:
 
-### 相关信息:
-1.`authorizationserver`作为授权服务器，提供自定义/userInfo用户信息端点。
-<br><br>
-2.`authorizationserver`注册了一个客户端：
-- clientId: relive-client
-- clientSecret: relive-client
-- redirectUri: http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code
-- scope: profile
-
-3.`authorizationserver`使用Form表单认证，用户名密码：admin/password。
-<br><br>
-4.`oauth2-login-client`是一个OAuth2客户端，它包含Form表单登录和OAuth2登录。
-<br><br>
-5.`oauth2-login-client`Form登录用户（admin/password）赋予*ROLE_SYSTEM*角色，拥有该角色的用户登录成功将在页面看到以下内容：
-
-**Article List**
-- Java
-- Python
-- C++
-
-<br><br>
-6.`oauth2-login-client`还将支持OAuth2登录，使用*GrantedAuthoritiesMapper*将`authorizationserver`授权服务角色*ROLE_ADMIN*映射为客户端服务*ROLE_OPERATION*角色，
-登录成功后拥有*ROLE_OPERATION*角色的用户将在页面看到以下内容：
-  
-**Article List**
-- Java
-
-<br><br>
-7.启动服务，访问http://127.0.0.1:8070/home ,首先使用Form表单登录，其次退出登录，使用OAuth2登录，您将看到不同的展示信息。
-
-### 相关文章:
-- [Spring Security OAuth2登录](https://relive27.github.io/blog/oauth2-login)
+1. `authorizationserver` acts as an authorization server and provides a custom /userInfo user information endpoint.
+
+2. The `authorizationserver` registers a client:
+    - clientId: relive-client
+    - clientSecret: relive-client
+    - redirectUri: http://127.0.0.1:8070/login/oauth2/code/messaging-client-authorization-code
+    - scope: profile
+
+3. `authorizationserver` uses *Form authentication*, username and password: admin/password.
+
+4. `oauth2-login-client` is an OAuth2 client, which includes *Form login* and OAuth2 login.
+ 
+5. The `oauth2-login-client` *Form* *login* user (admin/password) is assigned the ROLE_SYSTEM role, and users with this
+   role will see the following content on the page after successful login:
+
+   **Article List**
+   
+   - Java
+   - Python
+   - C++
+
+6. `oauth2-login-client` will also support OAuth2 login. Make GrantedAuthoritiesMapper map the `authorizationserver`
+   authorization service role **ROLE_ADMIN** to the client service **ROLE_OPERATION** role. Users with the **
+   ROLE_OPERATION** role will see the following content on the page after successful login:
+
+   **Article List**
+   
+   - Java
+
+
+7. Start the service, visit [http://127.0.0.1:8070/home](http://127.0.0.1:8070/home). First use the username to log in,
+   then log out, and use OAuth2 to log in, you will see different display information.
+
+## Relevant Articles:
+
+- [Spring Security OAuth2 Login](https://relive27.github.io/blog/oauth2-login)
diff --git a/oauth2-opaque-token/README.md b/oauth2-opaque-token/README.md
@@ -1,4 +1,3 @@
+## Relevant Articles:
 
-### 相关文章:
-
-- [Spring Security OAuth2 Opaque 令牌的简单使用指南](https://relive27.github.io/blog/oauth2-opaque-token)
+- [A Simple Guide to Using Spring Security OAuth2 Opaque Tokens](https://relive27.github.io/blog/oauth2-opaque-token)
diff --git a/oauth2-persistence-client/README.md b/oauth2-persistence-client/README.md
@@ -1,7 +1,8 @@
-### 相关信息:
+## Relevant Information:
 
-本例`persistence-client`服务中我们通过实现 ClientRegistrationRepository 接口自定义持久化存储库 *JdbcClientRegistrationRepository*
-。在我们启动服务测试之前，你需要拥有一个MySQL数据库。 你可以使用 Docker 快速启动一个MySQL数据库：
+In this example `persistence-client` service, we implement the custom persistence repository
+JdbcClientRegistrationRepository. Before we start the service test, you need to have a MySQL database. You can quickly
+start a MySQL database using Docker:
 
 ```
 docker run -p 3306:3306 --name mysql \
@@ -12,9 +13,10 @@ docker run -p 3306:3306 --name mysql \
 -d mysql:5.6
 ```
 
-在你将`application.yml`中数据库用户名密码修改后，使用浏览器访问 [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test)
-，其中登录所需用户名密码为 admin/password 。
+After you modify the database username and password in `application.yml`, use a browser to
+visit [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test). The username and password required for
+login are admin/password.
 
-### 相关文章:
+## Relevant Articles:
 
-- [Spring Security 持久化OAuth2客户端](https://relive27.github.io/blog/persisrence-oauth2-client)
+- [Spring Security Persistent OAuth2 Client](https://relive27.github.io/blog/persisrence-oauth2-client)
diff --git a/oauth2-pkce/README.md b/oauth2-pkce/README.md
@@ -1,10 +1,13 @@
-### 相关信息:
+## Relevant Information:
 
-该模块演示了代码交换证明密钥（PKCE）的授权码流，值得注意的是我们在授权服务注册客户端时`ClientAuthenticationMethod`选择的是`none`方式。我们将
-服务启动完成后，浏览器访问 [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test) 测试完整流程。
+This module demonstrates the authorization code flow of the code exchange proof key (PKCE). It is worth noting that when
+we register the client with the authorization service, the `ClientAuthenticationMethod` selects the `none` method. After
+we start the service, the browser visits [http://127.0.0.1:8070/client/test](http://127.0.0.1:8070/client/test) to test
+the complete process.
 
-> 记得认证所使用的用户名密码为 admin/password
 
-### 相关文章:
+> Remember that the username and password used for authentication are admin/password
 
-- [Spring Security OAuth2 带有用于代码交换的证明密钥 (PKCE) 的授权码流](https://relive27.github.io/blog/oauth2-pkce)
+## Relevant Articles:
+
+- [Authorization Code Flow with Proof Key for Code Exchange (PKCE)](https://relive27.github.io/blog/oauth2-pkce)
diff --git a/oauth2-token-access-restrictions/README.md b/oauth2-token-access-restrictions/README.md
@@ -1,4 +1,3 @@
+## Relevant Articles:
 
-### 相关文章:
-
-- [Spring Security OAuth 2.0授权服务器结合Redis实现获取accessToken速率限制](https://relive27.github.io/blog/oauth2-token-access-restrictions)
+- [Spring Security OAuth 2.0 Authorization Server Combined with Redis implements Access to AccessToken Rate Limits](https://relive27.github.io/blog/oauth2-token-access-restrictions)
