Free Trial
Video
Jan 2019
1hr 16mins
1st Edition
-
Use Spring Security to secure your Spring service
-
Understand OAuth2 flow and integration with the Spring application
-
Make your app secure by preventing CORS and CSRF attacks
Securing your application from hackers is the most high-pressure concerns for developers. In this course, you’ll learn how to protect your Java application from malicious attacks and users with the Spring Security framework.
You’ll integrate Spring Security into your application using the Spring frameworks through practical, hands-on examples. You’ll see how to secure your web application, integrate authentication and authorization mechanisms, and restrict access to your application. You’ll discover how to integrate it with popular frameworks such as Spring Web MVC, Spring-Boot, Spring-Data, Servlet API injection, and more.
We’ll cover the security challenges with Reactive web apps built for the cloud, RESTful web services, and microservice architectures with the Spring framework. You’ll also implement techniques for protection against attacks such as session fixation, clickjacking, cross-site request forgery, and more.
By the end of the course, you’ll understand common security vulnerabilities and be able to prevent them with Spring Security, with an empirical approach to securing your web applications.
The code bundle for this course is available at https://github.com/PacktPublishing/Hands-on-Spring-Security-5.1.1
This course is for Java and Kotlin developers who can build applications using Java and Spring Framework and now want to secure their applications. No previous experience with Spring Security is assumed.
-
Get to know Spring Security and its concepts
-
Explore Spring Security Advanced configuration tips
-
Distinguish between Authorization and Authentication
-
Implement a custom Authentication mechanism
-
Integrate OAuth2 mechanism with your application to make it more secure
-
Define roles with Spring Security Authorization
-
Prevent common attacks such as CORS and CSRF with proper spring-security configuration