Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Learning Path: Spring: Secure Your Apps with Spring Security
Rating: 4.0 out of 5(64 ratings)
597 students
Created byPackt Publishing
Last updated 2/2020
English

What you'll learn

  • Understand the Spring Framework architecture and its components
  • Explore the spring MVC application using java configuration
  • Learn to implement Spring Security in the sample application
  • Get familiar with filter chains and core security filters
  • Understand what is HTTP response headers security and session management
  • Learn to secure object implementations and expression based access control
  • Upgrade built applications from an XML configuration to a Java configuration
  • Learn to integrate your application with Spring Security and the embedded LDAP server
  • Learn to integrate applications with SAML

Course content

2 sections52 lectures9h 23m total length

  • The Course Overview3:50

    This video provides an overview of the entire course.      

  • What Is Spring Security and Advantage?8:33

    The aim of this video is to make you acquainted with Spring Security and the advantages it provides. Cloning a Git repository of a Spring MVC application will also be covered.

  • Introducing the Latest Spring Security Version11:50

    Introduction to the latest Spring Security Version. Understand the Spring MVC java configuration.

  • Getting Spring Security and Core Modules4:54

    Understand Spring Security Modules and how to fetch Spring Security using maven, Run-Time environment.       

  • Core Components/building blocks of Spring Security5:04

    Theoretically understand, how a request is authenticated in Spring Security and how to fetch current user from authentication object       

  • Authentication Basics11:10

    Practical demo/ Code demo of how Authentication works in Spring Security.       

  • Authentication in a Web Application7:51

    Deep dive into the spring security components, which filter the request and create an authentication object out of it.       

  • Web Security Java Configuration16:06

    In this video, we will do session fixation attack on applications. You will also learn to leverage the implicit login page and InMemoryUserDetailService.

  • HttpSecurity4:40

    Get introduced to HttpSecurity and learn to intercept incoming requests to an application.

  • Access Control in Spring Security14:22

    Intercepting requests and selective restriction of access on Application. Adding HTTPS channel security.

  • Form Login and CSRF13:07

    Develop a custom Form Login page and enable CSRF.

  • Authorize Requests7:28

    Deep dive into spring security components which filters the request and authorizes the requests.

  • Basic and Digest Authentication18:31

    In this video, you will be learning two types of authentication mechanism—Basic authentication and Digest authentication.

  • Remember-Me Authentication19:43

    Introduction to the Remember-Me authentication mechanism and its implementation.

  • Handling Logouts16:24

    Customize the access denied page and learn to gracefully log out from the application.

  • Authentication Manager, Provider Manager, and Authentication Providers7:15

    This video details the advance authentication concepts.

  • Authentication Types8:29

    Till this video, only In-memory authentication was used. This video details different types of authentication supported by Spring Security and implementation.

  • The Security Filter Chain13:56

    In this video, we will learn all about Spring Security Filter chain, how filters are created, and the order in which they process the incoming requests.

  • Core Security Filters9:32

    Deep dive into core security filter, which always executes in spring security applications and create and register a custom filter.

  • Method Security4:08

    Introduction and practical implementation of Method Security.

  • Localization4:12

    Introduction and implementation of localization support of Spring Security.

  • User Detail Service Implementation10:30

    In this video, you will be learning how to create the custom user details service.

  • Password Encoding7:03

    Introduction to password encoding mechanism and how to encode password in Spring Security.

  • HTTPResponse Headers9:14

    This video explains the significance of the HTTPresponse header and how User-agent interprets these. Italso explains the ways to customize HTTPresponse headers.

  • Session Management9:01

    This video explains the session management in spring security and the ways to customize.

  • Authorization Architecture6:24

    This video explains the authorization workflow in spring security.

  • Expression Based Access Control4:31

    This video details common Spring EL expressions and different ways to use in web-security and method-security.

  • Test Your Knowledge

Requirements

  • Basic understanding of XML
  • Basic understanding of the Spring Framework.
  • Prior experience of Spring Security is not required.

Description

Knowing that experienced hackers are itching to test your skills makes security one of the most difficult and high-pressure concerns of creating an application. That’s where Spring Security comes into the picture to simplify things for developers. Spring security can be used for authentication and authorization purposes in your application. It provides integration with LDAP as well. So, if you're a Java developer and want to gain skills to secure your applications from hackers, then go for this Learning Path.

Packt’s Video Learning Path is a series of individual video products put together in a logical and stepwise manner such that each video builds on the skills learned in the video before it.

The highlights of this Learning Path are: ●        Explore Spring Security, its architecture and components ●        Integrate your application with Spring Security and the embedded LDAP server ●        Learn and integrate SAML methodologies into your applications

This Learning Path demonstrates how to smoothly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples. You'll first go through a security audit of an insecure application wherein you’ll learn to modify the sample application to resolve the issues found in the audit. Throughout working on this application, you’ll learn to integrate a variety of authentication mechanisms and demonstrate how to properly restrict access to your application. Next, you’ll learn how to utilize session management for administrative functions. As this Learning Path progresses, you’ll be introduced to LDAP and  learn to develop a Spring Security application integrated with Active Directory Lightweight DS and Apache DS. You’ll also be introduced to SAML and its integration with Spring Security. Finally, you’ll learn to integrate JAAS with Spring Security.

By the end of this Learning Path, you will be able to easily secure your applications by LDAP integration and SAML extension.

Meet Your Expert: We have the best works of the following esteemed author to ensure that your learning journey is smooth:

Ankit Mishra is a senior software engineer with extensive IT experience in mission-critical development projects and architecture designs. He has worked for giants such as Ericsson, Fidelity, and others. He has more than four years of experience in managing and delivering Spring MVC and Spring Security projects, Cloud deployment, and PaaS cloud administration. Currently, he is working on Spring micro services, Spring Security, cloud deployment, and tuning.

Who this course is for:

  • This Learning Path is for Java developers who want to gain skills to secure their applications from hackers.

Report abuse