This is a spring boot application serves list of heroes (as in angular.io) through REST interface. It uses OAuth 2 for authorization. The scope that needed for authorization is heroes. It will serve list of heroes if the access token is valid.
As the authorization server, I have used Keycloak