O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Spring Security

Video Description

An empirical approach to securing your web applications

About This Video

  • Fully secure your web application with Spring Security

  • Implement authentication and registration with the database as well as with LDAP

  • Utilize authorization examples that help guide you through the authentication of users step-by-step

  • Learn with precise and practical examples for advanced security scenarios such as ACL, REST, and Remember Me

  • See how to integrate with your choice of technology and framework

  • In Detail

    Secure a standard Java web application with Spring Security by implementing registration and authentication processes and setting up the Remember Me mechanism. This course shows you how to leverage the powerful authorization mechanisms available and allows you to grasp the full flexibility of Spring expressions. Learn how to secure the REST API of this application and how to set up the advanced ACL Authorization for practical application.

    This video course will help you secure your web application with the use of highly practical examples. You will also learn how to implement security checks, thus enabling you to create a staunch authentication mechanism that will prevent spoofing. Integrate with LDAP and progress on to more advanced security techniques such as Remember Me or the powerful ACL mechanism.

    These pragmatic videos will help you learn how to implement various techniques for securing your web application through the use of simple to advanced use cases that follow the development of a web application using practical, step-by-step examples.

    Each video section shows different ways to empower Spring Security for the web. The authentication techniques comprising of login, registration, and logout are implemented in this course. Moreover, the Remember Me functionality is added to the web app in addition to integration with a production-ready LDAP server. Further on, the authorization method is used and discussed in detail with simple roles, before moving on to the more flexible Spring expressions and finally the extremely powerful Access Control Lists mechanism, which allow security rules per object.

    Ultimately, this video course is meant to help you hit the ground running with proper security for your web applications. The primary goal of the course is to be efficient, utilitarian, and immediately applicable for a web application.

    Table of Contents

    1. Chapter 1 : Spring Security Setup
      1. Introduction to the Course 00:05:21
      2. The Spring Security Setup and Form-based Authentication 00:05:46
      3. Authentication – Log in and Log Out 00:06:48
      4. Authorization – URL 00:03:31
      5. Authorization – Security Expressions 00:06:13
      6. Authorization – in Page 00:02:34
    2. Chapter 2 : Registration
      1. The Registration Process with an In-memory Authentication Provider 00:03:53
      2. The Registration Process with a JDBC-backed Authentication Provider 00:04:06
      3. The Registration and Authentication Process with JPA 00:07:02
    3. Chapter 3 : The Remember Me Authentication
      1. The Remember Me Mechanism with a Cookie - The Basic Setup 00:03:22
      2. The Remember Me Mechanism with a Cookie - Advanced Analysis 00:03:43
      3. The Remember Me Mechanism with Persistence 00:04:19
      4. The Remember Me Mechanism with More Advanced Scenarios 00:02:46
    4. Chpater 4 : Spring Security with LDAP
      1. Authentication with LDAP 00:05:08
      2. Authorization with LDAP 00:04:15
      3. Authentication and Authorization with an External LDAP Server 00:04:11
    5. Chapter 5 : Authorization with Spring Expressions
      1. Authorization With Expressions - URL 00:06:29
      2. Authorization With Expressions - in Page 00:04:02
      3. Authorization With Expressions - on Methods 00:05:46
    6. Chapter 6 : REST Authentication and Authorization
      1. The REST Service and Its Setup 00:09:12
      2. REST with Basic Authentication 00:05:24
      3. REST with Digest Authentication 00:05:00
    7. Chapter 7 : Spring Security ACL
      1. Introduction to Domain Object Security and ACL 00:03:10
      2. The ACL Data Structure 00:04:57
      3. The ACL Setup and Configuration with Spring Security 00:08:27
      4. Advanced ACL 00:04:52