IT Training

Spring Security

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Voor wie is deze cursus?

Java Developers, Java Application Architects

Vereisten

Participants should have experience with Java and Spring Core development.

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Introduction to Spring Security

  • What is Spring Security?
  • Configuration of Spring security using Spring Boot
  • Getting Started with Spring Security
  • Understanding the default configuration

Spring Security Architecture

  • Spring Security Core Components
  • Authentication
  • Access-Control (Authorization)
  • Web security: FilterChainProxy and the filter chains
  • Method Security
  • HTTPS

Authenticating users

  • The Spring Security API
  • The Filter Chain
  • Authentication Manager and Providers
  • The Security Context
  • Implementing UserDetailsService
  • Password Encoding

Resource Authorization

  • FilterSecurityInterceptor
  • The AccessDecisionManager
  • Voting
  • Access-Decision Strategies
  • Implementing AccessDecisionVoter
  • The Role Prefix
  • Forcing HTTPS

Method Authorization

  • Using Spring AOP
  • XML vs. Annotations
  • @PreAuthorize and @PostAuthorize
  • Spring EL for Authorization
  • @PreFilter and @PostFilter
  • Domain-Object Authorization

OAuth 2 for Spring Security

  • Third-Party Authorization
  • OAuth 2 roles and flows
  • Access Tokens
  • The AuthorizationEndpoint
  • The TokenEndpoint
  • Integration with Google OAuth API

Praktische informatie

Duur

3 Days

Talen

EN

Prijs

€1450,00 + 21% VAT

Locatie

Classroom Courses

Planning

Guaranteed to run

Engelse cursussen
30/1 - 01/2Boek
22/5 - 24/5Boek
11/10 - 13/10Boek
04/12 - 06/12Boek

Deel deze cursus op

Boek je training

Vul uw gegevens in om uw boeking te bevestigen.

    Voorkennistest

    Op zoek naar een oplossing op maat?