Robust security for web applications is and has always been a must. But the security landscape has been changing rapidly over the last few years, with REST APIs becoming mainstream, the huge adoption and evolution of OAuth2, single-page apps (SPAs), two-factor authentication (2FA) and so many other security requirements.
And the security market is huge - Gartner puts the numbers at 124 billion in 2019 on the way to 140+ billion now, in 2020. Security work to be done well is abundant and very well paid.
Learn Spring Security: The Master Class
9h 22m 39s
English
Paid
Learn Spring Security: The Master Class is a 65-lesson 9 hours 22 minutes self-paced course by Baeldung. Robust security for web applications is and has always been a must.
Course facts
- Lessons
- 65
- Duration
- 9 hours 22 minutes
- Level
- All levels
- Language
- English
- Updated
- Instructor
- Baeldung
- Price
- Premium
Simply put, not having a solid, deep understanding of the current security landscape is no longer a good option.
Why Spring Security?
Spring Security has been getting better as well, with the launch of 5.0, 5.1 and now 5.2, full Java configuration with lambdas, fantastic Boot integration, an entirely new OAuth2 stack, and support for pretty much any security mechanism you need. Right now, in 2020, there's no debate. Spring Security is THE framework to properly and intelligently do security if you're working in Java. The framework is fully able to handle everything you throw at it - from simple scenarios to highly complex security requirements. There are some OK alternatives, but nothing really comes close.
Learn Spring Security... Fast
I’ve created this course to help you get to a full security education quickly. That's the whole point in going through a course - it's the fast way to learn the material and give you the Spring Security tools you need to secure your system.
Each module contains exhaustive video lessons along with code, lesson notes and resources to help you put the framework to use immediately in your app.
Who teaches Learn Spring Security: The Master Class? Baeldung
Baeldung is a Romania-origin technical-tutorial site that has grown into one of the largest English-language reference sources for Java, Spring, and the broader JVM ecosystem. The site publishes thousands of short tutorials and a smaller paid course catalog focused specifically on Spring Security and the Spring Framework deep dives.
The CourseFlix listing carries four Baeldung courses focused on Spring: Learn Spring 5 and Spring Boot 2, Build Your REST API with Spring 5, Learn Spring Security: The Master Class, and the OAuth-focused Learn Spring Security OAuth. Material is paid and aimed at Java developers working on production Spring applications, particularly on the security and authentication side.
What lessons are included in Learn Spring Security: The Master Class?
0:00
/ #1: Intro to Spring Security
All Course Lessons (65)
| # | Lesson Title | Duration | Access |
|---|---|---|---|
| 1 | Intro to Spring Security Demo | 06:46 | |
| 2 | A Basic Security Java Config | 09:56 | |
| 3 | URL Authorization | 10:33 | |
| 4 | Building a Login Form | 09:49 | |
| 5 | Implementing Logout | 07:15 | |
| 6 | Anonymous “Authentication” | 05:02 | |
| 7 | A Simple Registration Flow | 06:54 | |
| 8 | Authentication using Real Users | 04:28 | |
| 9 | Activate a New Account via Email | 08:17 | |
| 10 | Deal with “I forgot my password” | 09:01 | |
| 11 | Doing Security Questions Right (NEW) | 10:53 | |
| 12 | Ensure Password Strength during Registration - part 1 (NEW) | 06:32 | |
| 13 | Ensure Password Strength during Registration - part 2 (NEW) | 04:16 | |
| 14 | A Simple Remember Me Flow | 06:06 | |
| 15 | Remember Me with Cookie | 09:32 | |
| 16 | Remember Me with Persistence | 08:09 | |
| 17 | Spring Security with JSP | 08:24 | |
| 18 | The Authentication Tag and Displaying the Current User | 08:01 | |
| 19 | Spring Security with Thymeleaf | 06:14 | |
| 20 | The Authorize Tag | 10:40 | |
| 21 | By URL Authorization with Expressions | 15:03 | |
| 22 | On-method Authorization with Expressions | 10:08 | |
| 23 | Programmatic Expressions and a custom PermissionEvaluator(NEW) | 08:59 | |
| 24 | Introduction to Storing Passwords | 07:14 | |
| 25 | Hashing Passwords (MD5 and SHA-256) | 08:55 | |
| 26 | Why Hashing Isn't Enough - Using Salts | 09:48 | |
| 27 | Key Stretching | 06:36 | |
| 28 | The bcrypt Solution | 05:40 | |
| 29 | Breaking Down the Authentication Flow | 16:26 | |
| 30 | Run As a Different User | 10:18 | |
| 31 | The Security Context | 08:45 | |
| 32 | Configure the Filter Chain | 07:09 | |
| 33 | A Custom Authentication Provider | 09:01 | |
| 34 | Multiple Providers and the Authentication Manager | 07:03 | |
| 35 | In-Memory, JDBC and Hibernate/JPA User Storage | 08:44 | |
| 36 | Tracking Logged-in Users | 09:05 | |
| 37 | How Authorization Works | 10:31 | |
| 38 | The Topology of Roles and Privileges - Part 1 | 09:14 | |
| 39 | The Topology of Roles and Privileges - Part 2 | 06:33 | |
| 40 | Secure Method Invocations with AOP | 09:15 | |
| 41 | A Custom AccessDecisionVoter | 11:21 | |
| 42 | The Basics of API Security | 07:02 | |
| 43 | Basic Authentication for the API | 06:13 | |
| 44 | How OAuth2 Works for REST - Part 1 | 07:06 | |
| 45 | How OAuth2 Works for REST - Part 2 | 05:04 | |
| 46 | Certificates and HTTPS for Tomcat | 06:58 | |
| 47 | Introduction ACL and Domain Object Security | 06:33 | |
| 48 | The Data Structure of ACL | 09:13 | |
| 49 | ACL with Spring Security - part 1 | 10:10 | |
| 50 | ACL with Spring Security - part 2 | 09:21 | |
| 51 | Setup OAuth2 with Spring Security | 12:46 | |
| 52 | Tokens, OAuth2 and JWT | 09:23 | |
| 53 | Refreshing a Token | 09:20 | |
| 54 | The OAuth2 Implicit Flow and the Authorization Code Flow | 07:13 | |
| 55 | Using the Authorization Code Flow in OAuth2 | 11:15 | |
| 56 | Confidential Clients and the Client Credentials Flow | 10:12 | |
| 57 | A Simple Two-Factor Implementation with a Soft Token | 14:27 | |
| 58 | A Two-Factor Impl with SMS | 08:59 | |
| 59 | Spring Security for a non-Spring Application | 08:41 | |
| 60 | Multi-Tenancy with Spring Security | 13:05 | |
| 61 | Session Management with spring-session | 07:59 | |
| 62 | Spring Security with LDAP | 09:22 | |
| 63 | A Basic Reactive Security Example (NEW) | 08:57 | |
| 64 | Reactive Method Security (NEW) | 05:56 | |
| 65 | The State of OAuth2 in Spring Security 5 (NEW) | 04:48 |
Unlock unlimited learning
Get instant access to all 64 lessons in this course, plus thousands of other premium courses. One subscription, unlimited knowledge.
Learn more about subscriptionWhat courses are similar to Learn Spring Security: The Master Class?
-
Updated 2y agoSpring Professional Certification Exam Tutorial - Module 01
By: UdemySpring Professional Exam Tutorial explains and answers all questions from Spring Professional Certification Study Guide.4h 33m -
ClassicMaster Spring Boot 3 & Spring Framework 6 with Java
By: UdemyThis is THE COURSE you need to learn everything you need to know about building real world Java applications and deploying them to the cloud using Spring and.37h 34m5/5 -
![[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners thumbnail](https://cdnq.courseflix.net/course/thumbnail/new-spring-boot-3-spring-6-hibernate-for-beginners-160x90.webp "[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners thumbnail")
Classic[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners
By: UdemySpring is an enterprise Java framework. It was designed to simplify Java EE development and make developers more productive. Spring makes use of Inversion of Co33h 41m5/5 -
ClassicSpring 6 & Spring Boot 3 for Beginners (Includes 5 Projects)
By: UdemyIn this course, you will learn Spring Framework Core 6, Spring Boot 3, REST API, Spring MVC, WebFlux, Spring Security, Spring Data JPA, Docker, Thymeleaf, Intel34h 28m5/5 -
Updated 2y agoRESTful Web Services, Java, Spring Boot, Spring MVC and JPA
By: UdemyThis video course also covers the H2 in-memory database and teaches how to build RESTful Web Service that stores data in a database without a need to install My25h 8m -
Updated 3y agoSpring Framework 5: Beginner to Guru
By: UdemyLearn Spring with the most modern and comprehensive course available for Spring Framework 5 and Spring Boot 2. You will see how to build multiple real world56h 53m5/5 -
Updated 2y agoOAuth 2.0 in Spring Boot Applications
By: UdemyThis video course is for beginner Java developers who are interested in learning how to secure OAuth 2.0 Resources in Spring Security 5. The course covers only10h 54m
More courses by Baeldung
-
Updated 2y agoBuild Your REST API with Spring 5
I published the first REST with Spring tutorials over four years ago, and after 900,000 readers and over a thousand personal questions over email, I've finally12h 41m -
Updated 2y agoLearn Spring 5 and Spring Boot 2
Spring is, by far, the most popular framework for application development in the Java ecosystem. By a wide margin. The reason is actually quite simple - it does4h 57m -
Updated 3y agoLearn Spring Security OAuth: The Master Class
The canonical reference for securing a Spring application. The 21 modules cover everything from the basics of Spring Security in an MVC application to advanced57m
Frequently asked questions
What prerequisites should I have before taking this course?
Before enrolling, students should have a solid understanding of Java and basic web development concepts. Familiarity with Spring Framework will be beneficial as the course builds on these foundations to explore advanced security configurations and implementations.
What projects or applications will I build during the course?
The course includes building several security-related implementations such as a login form, a registration flow with account activation via email, a 'Remember Me' functionality, and a two-factor authentication system using both soft tokens and SMS.
Who is the target audience for this course?
This course is designed for Java developers and software engineers looking to deepen their understanding of security in web applications. It is particularly beneficial for those working with Spring applications or those interested in implementing robust security measures.
How does this course compare in depth and scope to other security courses?
This course provides a comprehensive exploration of security within the Spring ecosystem, covering 65 lessons. It includes advanced topics like OAuth2, two-factor authentication, ACL, and multi-tenancy, making it suitable for those who want an in-depth understanding of modern web security practices.
What specific tools or platforms does the course utilize?
The course focuses on Spring Security within the Java Spring framework. It covers the use of different authentication providers, password hashing techniques like bcrypt, OAuth2 for REST APIs, and integration with web technologies like JSP and Thymeleaf.
What topics are not covered in the course?
While the course covers extensive ground in Spring Security, it does not delve into securing native mobile applications or provide a detailed exploration of security outside the Spring framework, such as Node.js or .NET specific security practices.
What is the expected time commitment to complete the course?
The course comprises 65 lessons. Although the exact runtime is not specified, students should plan for a significant time commitment to fully engage with the materials, practice exercises, and complete the projects involved in mastering Spring Security concepts.