Learn Spring Security: The Master Class
9h 22m 39s
English
Paid
Course description
Robust security for web applications is and has always been a must. But the security landscape has been changing rapidly over the last few years, with REST APIs becoming mainstream, the huge adoption and evolution of OAuth2, single-page apps (SPAs), two-factor authentication (2FA) and so many other security requirements.
And the security market is huge - Gartner puts the numbers at 124 billion in 2019 on the way to 140+ billion now, in 2020. Security work to be done well is abundant and very well paid.
Read more about the course
Simply put, not having a solid, deep understanding of the current security landscape is no longer a good option.
Why Spring Security?
Spring Security has been getting better as well, with the launch of 5.0, 5.1 and now 5.2, full Java configuration with lambdas, fantastic Boot integration, an entirely new OAuth2 stack, and support for pretty much any security mechanism you need. Right now, in 2020, there's no debate. Spring Security is THE framework to properly and intelligently do security if you're working in Java. The framework is fully able to handle everything you throw at it - from simple scenarios to highly complex security requirements. There are some OK alternatives, but nothing really comes close.
Learn Spring Security... Fast
I’ve created this course to help you get to a full security education quickly. That's the whole point in going through a course - it's the fast way to learn the material and give you the Spring Security tools you need to secure your system.
Each module contains exhaustive video lessons along with code, lesson notes and resources to help you put the framework to use immediately in your app.
Watch Online
Watch Online Learn Spring Security: The Master Class
0:00
/ #1: Intro to Spring Security
All Course Lessons (65)
| # | Lesson Title | Duration | Access |
|---|---|---|---|
| 1 | Intro to Spring Security Demo | 06:46 | |
| 2 | A Basic Security Java Config | 09:56 | |
| 3 | URL Authorization | 10:33 | |
| 4 | Building a Login Form | 09:49 | |
| 5 | Implementing Logout | 07:15 | |
| 6 | Anonymous “Authentication” | 05:02 | |
| 7 | A Simple Registration Flow | 06:54 | |
| 8 | Authentication using Real Users | 04:28 | |
| 9 | Activate a New Account via Email | 08:17 | |
| 10 | Deal with “I forgot my password” | 09:01 | |
| 11 | Doing Security Questions Right (NEW) | 10:53 | |
| 12 | Ensure Password Strength during Registration - part 1 (NEW) | 06:32 | |
| 13 | Ensure Password Strength during Registration - part 2 (NEW) | 04:16 | |
| 14 | A Simple Remember Me Flow | 06:06 | |
| 15 | Remember Me with Cookie | 09:32 | |
| 16 | Remember Me with Persistence | 08:09 | |
| 17 | Spring Security with JSP | 08:24 | |
| 18 | The Authentication Tag and Displaying the Current User | 08:01 | |
| 19 | Spring Security with Thymeleaf | 06:14 | |
| 20 | The Authorize Tag | 10:40 | |
| 21 | By URL Authorization with Expressions | 15:03 | |
| 22 | On-method Authorization with Expressions | 10:08 | |
| 23 | Programmatic Expressions and a custom PermissionEvaluator(NEW) | 08:59 | |
| 24 | Introduction to Storing Passwords | 07:14 | |
| 25 | Hashing Passwords (MD5 and SHA-256) | 08:55 | |
| 26 | Why Hashing Isn't Enough - Using Salts | 09:48 | |
| 27 | Key Stretching | 06:36 | |
| 28 | The bcrypt Solution | 05:40 | |
| 29 | Breaking Down the Authentication Flow | 16:26 | |
| 30 | Run As a Different User | 10:18 | |
| 31 | The Security Context | 08:45 | |
| 32 | Configure the Filter Chain | 07:09 | |
| 33 | A Custom Authentication Provider | 09:01 | |
| 34 | Multiple Providers and the Authentication Manager | 07:03 | |
| 35 | In-Memory, JDBC and Hibernate/JPA User Storage | 08:44 | |
| 36 | Tracking Logged-in Users | 09:05 | |
| 37 | How Authorization Works | 10:31 | |
| 38 | The Topology of Roles and Privileges - Part 1 | 09:14 | |
| 39 | The Topology of Roles and Privileges - Part 2 | 06:33 | |
| 40 | Secure Method Invocations with AOP | 09:15 | |
| 41 | A Custom AccessDecisionVoter | 11:21 | |
| 42 | The Basics of API Security | 07:02 | |
| 43 | Basic Authentication for the API | 06:13 | |
| 44 | How OAuth2 Works for REST - Part 1 | 07:06 | |
| 45 | How OAuth2 Works for REST - Part 2 | 05:04 | |
| 46 | Certificates and HTTPS for Tomcat | 06:58 | |
| 47 | Introduction ACL and Domain Object Security | 06:33 | |
| 48 | The Data Structure of ACL | 09:13 | |
| 49 | ACL with Spring Security - part 1 | 10:10 | |
| 50 | ACL with Spring Security - part 2 | 09:21 | |
| 51 | Setup OAuth2 with Spring Security | 12:46 | |
| 52 | Tokens, OAuth2 and JWT | 09:23 | |
| 53 | Refreshing a Token | 09:20 | |
| 54 | The OAuth2 Implicit Flow and the Authorization Code Flow | 07:13 | |
| 55 | Using the Authorization Code Flow in OAuth2 | 11:15 | |
| 56 | Confidential Clients and the Client Credentials Flow | 10:12 | |
| 57 | A Simple Two-Factor Implementation with a Soft Token | 14:27 | |
| 58 | A Two-Factor Impl with SMS | 08:59 | |
| 59 | Spring Security for a non-Spring Application | 08:41 | |
| 60 | Multi-Tenancy with Spring Security | 13:05 | |
| 61 | Session Management with spring-session | 07:59 | |
| 62 | Spring Security with LDAP | 09:22 | |
| 63 | A Basic Reactive Security Example (NEW) | 08:57 | |
| 64 | Reactive Method Security (NEW) | 05:56 | |
| 65 | The State of OAuth2 in Spring Security 5 (NEW) | 04:48 |
Unlock unlimited learning
Get instant access to all 64 lessons in this course, plus thousands of other premium courses. One subscription, unlimited knowledge.
Learn more about subscriptionComments
0 commentsWant to join the conversation?
Sign in to commentSimilar courses
Learn Spring 5 and Spring Boot 2
Sources: baeldung
Spring is, by far, the most popular framework for application development in the Java ecosystem. By a wide margin. The reason is actually quite simple - it does a lot of things ...
4 hours 57 minutes 32 seconds
Master Spring Boot 3 & Spring Framework 6 with Java
Sources: udemy
This is THE COURSE you need to learn everything you need to know about building real world Java applications and deploying them to the cloud using Spring and Spring Boot Framewo...
37 hours 34 minutes 14 seconds
Learn Spring Security OAuth: The Master Class
Sources: baeldung
The canonical reference for securing a Spring application. The 21 modules cover everything from the basics of Spring Security in an MVC application to advanced use-cases such as...
57 minutes 51 seconds
![[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners](https://cdnq.courseflix.net/course/thumbnail/new-spring-boot-3-spring-6-hibernate-for-beginners-320x180.webp "[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners")
[NEW] Spring Boot 3, Spring 6 & Hibernate for Beginners
Sources: udemy
Spring is an enterprise Java framework. It was designed to simplify Java EE development and make developers more productive. Spring makes use of Inversion of Co
33 hours 41 minutes 4 seconds
RESTful Web Services, Java, Spring Boot, Spring MVC and JPA
Sources: udemy
This video course also covers the H2 in-memory database and teaches how to build RESTful Web Service that stores data in a database without a need to install My
25 hours 8 minutes 11 seconds