en
fr
IT Training

Spring Security

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Who should attend this course?

Java Developers, Java Application Architects

Prerequisites

Participants should have experience with Java and Spring Core development.

This course teaches attendees how to secure their applications using Spring security. The course covers all of the fundamentals of Spring Security and its integration with Spring boot. Through hands-on exercises, you’ll practice how to implement authentication and authorization, client integration with taglibs as well as method level permissions, and forcing connections over HTTPS.

Introduction to Spring Security

  • What is Spring Security?
  • Configuration of Spring security using Spring Boot
  • Getting Started with Spring Security
  • Understanding the default configuration

Spring Security Architecture

  • Spring Security Core Components
  • Authentication
  • Access-Control (Authorization)
  • Web security: FilterChainProxy and the filter chains
  • Method Security
  • HTTPS

Authenticating users

  • The Spring Security API
  • The Filter Chain
  • Authentication Manager and Providers
  • The Security Context
  • Implementing UserDetailsService
  • Password Encoding

Resource Authorization

  • FilterSecurityInterceptor
  • The AccessDecisionManager
  • Voting
  • Access-Decision Strategies
  • Implementing AccessDecisionVoter
  • The Role Prefix
  • Forcing HTTPS

Method Authorization

  • Using Spring AOP
  • XML vs. Annotations
  • @PreAuthorize and @PostAuthorize
  • Spring EL for Authorization
  • @PreFilter and @PostFilter
  • Domain-Object Authorization

OAuth 2 for Spring Security

  • Third-Party Authorization
  • OAuth 2 roles and flows
  • Access Tokens
  • The AuthorizationEndpoint
  • The TokenEndpoint
  • Integration with Google OAuth API

Practical information

Duration

3 Days

Languages

EN

Price

€1450,00 + 3% VAT

Location

Classroom Courses

Schedule

Guaranteed to run

Sessions in English
30/1 - 01/2Book
22/5 - 24/5Book
11/10 - 13/10Book
04/12 - 06/12Book

Share this course on

Book your training

Enter your information to confirm your booking.

    You might also be interested in

    Java, SpringJava, Spring
    Java Design Patterns
    20/3 - 22/3, 07/6 - 09/6, 13 ...
    This training provides a deep understanding of the most common object oriented design patterns. It covers the most useful patterns…
    Java, SpringJava, Spring
    Java Web Security
    08/2 - 10/2, 15/5 - 17/5, 18 ...
    This training provides the skills necessary to develop secure web applications in Java. It teaches developers common security vulnerabilities (OWASP…
    Java, SpringJava, Spring
    Programming in Java 11
    23/1 - 27/1, 24/4 - 28/4, 04 ...
    This training is a comprehensive study of core Java 11. It teaches the object-oriented programming concepts, the utilities and APIs…
    Java, SpringJava, Spring
    Upgrade from Java 8 to Java 11
    06/2 - 08/2, 08/5 - 10/5, 04 ...
    In this training, you will learn about the new Java 8 to Java 11 features and how to use them…

    Prerequisite test

    Take the test

    Looking for a tailor made solution?

    Get started with personal training