Packt+ | Advance your knowledge in tech

0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Hands-On Spring Security 5 for Reactive Applications

You're reading from Hands-On Spring Security 5 for Reactive Applications Learn effective ways to secure your applications with Spring and Spring WebFlux

Product type Paperback

Published in Jul 2018

Publisher

ISBN-13 9781788995979

Length 268 pages

Edition 1st Edition

Languages

Java

Tools

Spring

Concepts

Reactive Programming

Author (1):

Tomcy John

View More author details

Table of Contents (9) Chapters

Preface

1. Overview of Spring 5 and Spring Security 5 FREE CHAPTER

2. Deep Diving into Spring Security

3. Authentication Using SAML, LDAP, and OAuth/OIDC

4. Authentication Using CAS and JAAS

5. Integrating with Spring WebFlux

6. REST API Security

7. Spring Security Add-Ons

8. Other Books You May Enjoy

Leave a review - let other readers know what you think

CSP

Content Security Policy (CSP) (https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware.

A proper CSP setup in your application can handle content injection vulnerabilities, and is a great way to reduce XSS. XSS stands at number two in the OWASP Top 10.

A CSP is not a solution to handling all injection vulnerabilities, but can be used as one of the tools to reduce injection attacks to a reasonable level.

CSP is a declarative policy, implemented using HTTP headers. It can be run in an application in two modes:

Production mode (declared as CSP)
Report-only mode (used for testing and are declared as Content-Security-Policy-Report-Only)

CSP contains a set of security policy directives responsible for putting appropriate restrictions on a web resource...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

John

John

Tomcy John lives in Dubai (United Arab Emirates), hailing from Kerala (India), and is an enterprise Java specialist with a degree in Engineering (B Tech) and over 14 years of experience in several industries. He's currently working as principal architect at Emirates Group IT, in their core architecture team. Prior to this, he worked with Oracle Corporation and Ernst & Young. His main specialization is in building enterprise-grade applications and he acts as chief mentor and evangelist to facilitate incorporating new technologies as corporate standards in the organization. Outside of his work, Tomcy works very closely with young developers and engineers as mentors and speaks at various forums as a technical evangelist on many topics ranging from web and middleware all the way to various persistence stores.

See other products by John

Other recommended products

Related to this chapter

OAuth 2.0 Cookbook

OAuth 2.0 Cookbook

OAuth 2.0 is a standard protocol for authorization and focuses on client development simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and so on. This book also provides useful recipes for solving real-life problems using Spring Security and creating Android applications.

Oct 2017 14h 0m

OAuth 2.0 Cookbook

OAuth 2.0 Cookbook

OAuth 2.0 is a standard protocol for authorization and focuses on client development simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and so on. This book also provides useful recipes for solving real-life problems using Spring Security and creating Android applications.

Oct 2017 14h 0m

OAuth 2.0 Cookbook

OAuth 2.0 Cookbook

OAuth 2.0 is a standard protocol for authorization and focuses on client development simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and so on. This book also provides useful recipes for solving real-life problems using Spring Security and creating Android applications.

Oct 2017 14h 0m

Spring Security

Spring Security

Spring Security 4.2 is an incremental guide that will teach you how to protect your application from malicious users. Through this book, you will learn how to cleanly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples.

Nov 2017 18h 4m

Spring Security

Spring Security

Spring Security 4.2 is an incremental guide that will teach you how to protect your application from malicious users. Through this book, you will learn how to cleanly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples.

Nov 2017 18h 4m

Spring Security

Spring Security

Spring Security 4.2 is an incremental guide that will teach you how to protect your application from malicious users. Through this book, you will learn how to cleanly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples.

Nov 2017 18h 4m

Spring Security

Spring Security

Spring Security 4.2 is an incremental guide that will teach you how to protect your application from malicious users. Through this book, you will learn how to cleanly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples.

Nov 2017 18h 4m

Spring 5.0 Projects

Spring 5.0 Projects

Spring makes it simple to create RESTful applications, interact with social services, communicate with modern databases, secure your system, and make your code modular and easy to test. This book will show you how to build various projects in Spring 5.0, using its various features as well as third party tools.

Feb 2019 14h 44m

Spring 5.0 Projects

Spring 5.0 Projects

Spring makes it simple to create RESTful applications, interact with social services, communicate with modern databases, secure your system, and make your code modular and easy to test. This book will show you how to build various projects in Spring 5.0, using its various features as well as third party tools.

Feb 2019 14h 44m

Spring: Microservices with Spring Boot

Spring: Microservices with Spring Boot

Microservices helps in dissolving applications into small services and helps in building systems that are scalable, flexible, and resilient. Spring Boot helps in building REST-oriented, production-grade microservices. This book will help on how to build, monitor, and deploy microservices with Spring Boot.

Mar 2018 4h 40m

Spring Boot 2.0 Projects

Spring Boot 2.0 Projects

Spring is one of the best tools to develop web, enterprise, and cloud ready software in the market. The goal of Spring Boot is to provide a set of tools for building Spring applications that run production-grade based applications. This book will teach you features of Spring Boot 2.0 by building interesting real-world projects.

Jul 2018 11h 12m

Spring Boot 2.0 Projects

Spring Boot 2.0 Projects

Spring is one of the best tools to develop web, enterprise, and cloud ready software in the market. The goal of Spring Boot is to provide a set of tools for building Spring applications that run production-grade based applications. This book will teach you features of Spring Boot 2.0 by building interesting real-world projects.

Jul 2018 11h 12m

Personalised recommendations for you

Based on your interests and search pattern

Pragmatic Microservices with C# and Azure

Pragmatic Microservices with C# and Azure

This book empowers you with in-depth knowledge of microservices architecture using .NET and Azure. Through hands-on tutorials, you'll be able to build, deploy, and manage scalable applications, gaining crucial skills for modern software development.

May 2024 16h 56m

Mastering Python Design Patterns

Mastering Python Design Patterns

Unlock the power of design patterns to build maintainable and scalable software and applications using Python. Authored by Python veterans, this book is your guide to mastering design patterns in Python.

May 2024 9h 52m

System Programming Essentials with Go

System Programming Essentials with Go

From file operations to process management and network programming, this hands-on guide equips software engineers with the skills to build efficient, reliable applications and optimize their performance.

Jun 2024 13h 36m

Modern Python Cookbook

Modern Python Cookbook

The new edition of Modern Python Cookbook provides over 130 recipes for solving real-world problems with Python. Updated for Python 3.12 with new recipes and chapters. This practical guide will enhance your skills and teach you advanced techniques.

Jul 2024 27h 16m

The Ultimate Zoom Cookbook

The Ultimate Zoom Cookbook

This cookbook is an in-depth guide to using Zoom effectively. You'll be able to follow each recipe easily to harness the power of the communication and collaboration tools in Zoom.

May 2024 11h 20m

Enterprise Architecture with .NET

Enterprise Architecture with .NET

This book will help you create applications that integrate correctly into complex and ever-changing information systems. You'll execute this by using industry standards that reduce the app's technical debt and elevate software development practices.

May 2024 25h 44m

Salesforce B2C Solution Architect's Handbook

Salesforce B2C Solution Architect's Handbook

Discover how Salesforce Customer 360 unifies Marketing Cloud, B2C Commerce, Data Cloud, and Service Cloud into one solution, and learn the capabilities, integration options, limitations, and workflows to create value for your organization.

May 2024 15h 28m

Systems Programming with C# and .NET

Systems Programming with C# and .NET

Unlock the full potential of C# and .NET Core in systems programming to secure, deploy, and maintain robust applications. With this book, you'll focus on low-level APIs, memory management, and performance optimization.

Jul 2024 15h 48m

Technical Program Manager's Handbook

Technical Program Manager's Handbook

Unlock the full potential of your career as a TPM with this comprehensive guide, featuring new chapters on AI and more. Learn advanced techniques and gain insights from industry leaders. Elevate your skills and thrive in the Big Five tech companies.

Sep 2024 12h 16m

Microsoft Power Pages in Action

Microsoft Power Pages in Action

Packed with real-world examples, low-code coding techniques, and insights into crafting responsive pages, automating apps, and enhancing virtual agents, Microsoft Power Pages in Action is a valuable resource for building feature-rich web apps.

Jun 2024 11h 40m