Securing your application from hackers is the most high-pressure concerns for developers. In this course, you’ll learn how to protect your Java application from malicious attacks and users with the Spring Security framework.
You’ll integrate Spring Security into your application using the Spring frameworks through practical, hands-on examples. You’ll see how to secure your web application, integrate authentication and authorization mechanisms, and restrict access to your application. You’ll discover how to integrate it with popular frameworks such as Spring Web MVC, Spring-Boot, Spring-Data, Servlet API injection, and more.
We’ll cover the security challenges with Reactive web apps built for the cloud, RESTful web services, and microservice architectures with the Spring framework. You’ll also implement techniques for protection against attacks such as session fixation, clickjacking, cross-site request forgery, and more.
By the end of the course, you’ll understand common security vulnerabilities and be able to prevent them with Spring Security, with an empirical approach to securing your web applications.
What You Will Learn
- Get to know Spring Security and its concepts
- Explore Spring Security Advanced configuration tips
- Distinguish between Authorization and Authentication
- Implement a custom Authentication mechanism
- Integrate OAuth2 mechanism with your application to make it more secure
- Define roles with Spring Security Authorization
- Prevent common attacks such as CORS and CSRF with proper spring-security configuration
This course is for Java and Kotlin developers who can build applications using Java and Spring Framework and now want to secure their applications. No previous experience with Spring Security is assumed.
About The Author
Tomasz Lelek: Tomasz Lelek is a Software Engineer who programs mostly in Java and Scala. He is a fan of microservice architectures and functional programming. He dedicates considerable time and effort to being better every day. Recently, he's been delving into big data technologies such as Apache Spark and Hadoop. He is passionate about nearly everything associated with software development.
Tomasz thinks that we should always try to consider different solutions and approaches before solving a problem. Recently, he was a speaker at several conferences in Poland - Confitura and JDD (Java Developer's Day) and also at Krakow Scala User Group. You can find the JDD video here: https://www.youtube.com/watch?v=BnORjQbnZNQ&t - ML Spark talk.
He also conducted a live coding session at Geecon Conference. He is currently working on this website using ML: http://www.allegro.pl
Table of contents
- Chapter 1 : Starting Application Guarded by Spring Security
- Chapter 2 : Create Custom Authentication and Integrate It with Spring MVC
- Chapter 3 : Using OAuth 2 with Spring Boot Microservice
- Chapter 4 : Custom Authorization with Servlet API and Reactive API
- Chapter 5 : Preventing Common Attacks with Spring Security
- Title: Hands-On Spring Security 5.x
- Release date: January 2019
- Publisher(s): Packt Publishing
- ISBN: 9781789802931
You might also like
Securing Java Web Applications with Spring Security
In this Securing Java Web Applications with Spring Security training course, expert author Kevin Bowersox will …
8+ Hours of Video Instruction Overview In Spring Security LiveLessons, learn from Spring experts Rob Winch, …
Hands-On Spring Security 5 for Reactive Applications
Secure your Java applications by integrating the Spring Security framework in your code Key Features Provide …
Pro Spring Security: Securing Spring Framework 5 and Boot 2-based Java Applications
Build and deploy secure Spring Framework and Spring Boot-based enterprise Java applications with the Spring Security …