IT Training

Spring Security

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Qui devrait suivre ce cours?

Java Developers, Java Application Architects

Prérequis

Participants should have experience with Java and Spring Core development.

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Introduction to Spring Security

  • What is Spring Security?
  • Configuration of Spring security using Spring Boot
  • Getting Started with Spring Security
  • Understanding the default configuration

Spring Security Architecture

  • Spring Security Core Components
  • Authentication
  • Access-Control (Authorization)
  • Web security: FilterChainProxy and the filter chains
  • Method Security
  • HTTPS

Authenticating users

  • The Spring Security API
  • The Filter Chain
  • Authentication Manager and Providers
  • The Security Context
  • Implementing UserDetailsService
  • Password Encoding

Resource Authorization

  • FilterSecurityInterceptor
  • The AccessDecisionManager
  • Voting
  • Access-Decision Strategies
  • Implementing AccessDecisionVoter
  • The Role Prefix
  • Forcing HTTPS

Method Authorization

  • Using Spring AOP
  • XML vs. Annotations
  • @PreAuthorize and @PostAuthorize
  • Spring EL for Authorization
  • @PreFilter and @PostFilter
  • Domain-Object Authorization

OAuth 2 for Spring Security

  • Third-Party Authorization
  • OAuth 2 roles and flows
  • Access Tokens
  • The AuthorizationEndpoint
  • The TokenEndpoint
  • Integration with Google OAuth API

Informations practiques

Durée

3 Days

Langues

EN

Prix

€1450,00 + 21% VAT

Emplacement

Classroom Courses

Plannings

Guaranteed to run

Cours d'anglais
30/1 - 01/2Réserver
22/5 - 24/5Réserver
11/10 - 13/10Réserver
04/12 - 06/12Réserver

Partagez ce cours sur

Réservez votre formation

Entrez vos informations pour confirmer votre réservation.

    Test de pré-requis

    Vous cherchez une solution sur mesure ?