Understand OAuth2 flow and integration with the Spring application
Make your app secure by preventing CORS and CSRF attacks
Description
Securing your application from hackers is the most high-pressure concerns for developers. In this course, you’ll learn how to protect your Java application from malicious attacks and users with the Spring Security framework.
You’ll integrate Spring Security into your application using the Spring frameworks through practical, hands-on examples. You’ll see how to secure your web application, integrate authentication and authorization mechanisms, and restrict access to your application. You’ll discover how to integrate it with popular frameworks such as Spring Web MVC, Spring-Boot, Spring-Data, Servlet API injection, and more.
We’ll cover the security challenges with Reactive web apps built for the cloud, RESTful web services, and microservice architectures with the Spring framework. You’ll also implement techniques for protection against attacks such as session fixation, clickjacking, cross-site request forgery, and more.
By the end of the course, you’ll understand common security vulnerabilities and be able to prevent them with Spring Security, with an empirical approach to securing your web applications.
The code bundle for this course is available at https://github.com/PacktPublishing/Hands-on-Spring-Security-5.1.1
What you will learn
[*] Get to know Spring Security and its concepts
[*] Explore Spring Security Advanced configuration tips
[*] Distinguish between Authorization and Authentication
[*] Implement a custom Authentication mechanism
[*] Integrate OAuth2 mechanism with your application to make it more secure
[*] Define roles with Spring Security Authorization
[*] Prevent common attacks such as CORS and CSRF with proper spring-security configuration
What do you get with a video?
Download this video in MP4 format
Access this title in our online reader with advanced features
DRM FREE - Read whenever, wherever and however you want
Tomasz Lelek is a Software Engineer who programs mostly in Java and Scala. He is a fan of microservice architectures and functional programming. He dedicates considerable time and effort to being better every day. Recently, he's been delving into big data technologies such as Apache Spark and Hadoop. He is passionate about nearly everything associated with software development.
Tomasz thinks that we should always try to consider different solutions and approaches before solving a problem. Recently, he was a speaker at several conferences in Poland - Confitura and JDD (Java Developer's Day) and also at Krakow Scala User Group. You can find the JDD video here: https://www.youtube.com/watch?v=BnORjQbnZNQ&t - ML Spark talk.
He also conducted a live coding session at Geecon Conference. He is currently working on this website using ML: http://www.allegro.pl
How can I download a video package for offline viewing?
Login to your account at Packtpub.com.
Click on "My Account" and then click on the "My Videos" tab to access your videos.
Click on the "Download Now" link to start your video download.
How can I extract my video file?
All modern operating systems ship with ZIP file extraction built in. If you'd prefer to use a dedicated compression application, we've tested WinRAR / 7-Zip for Windows, Zipeg / iZip / UnRarX for Mac and 7-Zip / PeaZip for Linux. These applications support all extension files.
How can I get help and support around my video package?
If your video course doesn't give you what you were expecting, either because of functionality problems or because the content isn't up to scratch, please mail customercare@packt.com with details of the problem. In addition, so that we can best provide the support you need, please include the following information for our support team.
Video
Format watched (HTML, MP4, streaming)
Chapter or section that issue relates to (if relevant)
System being played on
Browser used (if relevant)
Details of support
Why can’t I download my video package?
In the even that you are having issues downloading your video package then please follow these instructions:
Disable all your browser plugins and extensions: Some security and download manager extensions can cause issues during the download.
Download the video course using a different browser: We've tested downloads operate correctly in current versions of Chrome, Firefox, Internet Explorer, and Safari.