Learning Path: Spring: Secure Your Apps With Spring Security

Learn Spring Security architecture and design to secure your Java applications

What you'll learn

Understand the Spring Framework architecture and its components

Explore the spring MVC application using java configuration

Learn to implement Spring Security in the sample application

Get familiar with filter chains and core security filters

Understand what is HTTP response headers security and session management

Learn to secure object implementations and expression based access control

Upgrade built applications from an XML configuration to a Java configuration

Learn to integrate your application with Spring Security and the embedded LDAP server

Learn to integrate applications with SAML

Requirements

Basic understanding of XML

Basic understanding of the Spring Framework.

Prior experience of Spring Security is not required.

Description

Knowing that experienced hackers are itching to test your skills makes security one of the most difficult and high-pressure concerns of creating an application. That’s where Spring Security comes into the picture to simplify things for developers. Spring security can be used for authentication and authorization purposes in your application. It provides integration with LDAP as well. So, if you're a Java developer and want to gain skills to secure your applications from hackers, then go for this Learning Path.
Packt’s Video Learning Path is a series of individual video products put together in a logical and stepwise manner such that each video builds on the skills learned in the video before it.




The highlights of this Learning Path are:

●        Explore Spring Security, its architecture and components

●        Integrate your application with Spring Security and the embedded LDAP server

●        Learn and integrate SAML methodologies into your applications







This Learning Path demonstrates how to smoothly integrate Spring Security into your application using the latest technologies and frameworks with the help of detailed examples. You'll first go through a security audit of an insecure application wherein you’ll learn to modify the sample application to resolve the issues found in the audit. Throughout working on this application, you’ll learn to integrate a variety of authentication mechanisms and demonstrate how to properly restrict access to your application. Next, you’ll learn how to utilize session management for administrative functions. As this Learning Path progresses, you’ll be introduced to LDAP and  learn to develop a Spring Security application integrated with Active Directory Lightweight DS and Apache DS. You’ll also be introduced to SAML and its integration with Spring Security. Finally, you’ll learn to integrate JAAS with Spring Security.








By the end of this Learning Path, you will be able to easily secure your applications by LDAP integration and SAML extension.



Meet Your Expert:



We have the best works of the following esteemed author to ensure that your learning journey is smooth:








Ankit Mishra is a senior software engineer with extensive IT experience in mission-critical development projects and architecture designs. He has worked for giants such as Ericsson, Fidelity, and others. He has more than four years of experience in managing and delivering Spring MVC and Spring Security projects, Cloud deployment, and PaaS cloud administration. Currently, he is working on Spring micro services, Spring Security, cloud deployment, and tuning.



Overview

Section 1: Secure Your Spring-Based Applications

Lecture 1 The Course Overview

Lecture 2 What Is Spring Security and Advantage?

Lecture 3 Introducing the Latest Spring Security Version

Lecture 4 Getting Spring Security and Core Modules

Lecture 5 Core Components/building blocks of Spring Security

Lecture 6 Authentication Basics

Lecture 7 Authentication in a Web Application

Lecture 8 Web Security Java Configuration

Lecture 9 HttpSecurity

Lecture 10 Access Control in Spring Security

Lecture 11 Form Login and CSRF

Lecture 12 Authorize Requests

Lecture 13 Basic and Digest Authentication

Lecture 14 Remember-Me Authentication

Lecture 15 Handling Logouts

Lecture 16 Authentication Manager, Provider Manager, and Authentication Providers

Lecture 17 Authentication Types

Lecture 18 The Security Filter Chain

Lecture 19 Core Security Filters

Lecture 20 Method Security

Lecture 21 Localization

Lecture 22 User Detail Service Implementation

Lecture 23 Password Encoding

Lecture 24 HTTPResponse Headers

Lecture 25 Session Management

Lecture 26 Authorization Architecture

Lecture 27 Expression Based Access Control

Section 2: Spring Security LDAP Integration and SAML Extension

Lecture 28 The Course Overview

Lecture 29 What is LDAP?

Lecture 30 Using LDAP with Spring Security

Lecture 31 Configuring an LDAP Server

Lecture 32 Integrate Application with Embedded LDAP Server

Lecture 33 Implementation Classes

Lecture 34 Active Directory Authentication

Lecture 35 Getting ApacheDS and Introduction

Lecture 36 Configuring ApacheDS

Lecture 37 Integrate Sample Application with ApacheDS

Lecture 38 Introduction to SAML

Lecture 39 Core Modules

Lecture 40 Configuring Spring Security with SAML

Lecture 41 Configure SAML – Keystore, Discovery, and Logouts

Lecture 42 SAML Profiles and Bindings

Lecture 43 Integrate, Deploy, and Test Single Sign-On/Logout

Lecture 44 Testing Method Security

Lecture 45 Setting Up MockMvc

Lecture 46 RequestPostProcessors

Lecture 47 RequestBuilders

Lecture 48 ResultMatchers

Lecture 49 Introduction to JaaS

Lecture 50 Spring Security JaaS Integration

Lecture 51 Introduction to OAuth2

Lecture 52 OAuth2 with Spring Security

This Learning Path is for Java developers who want to gain skills to secure their applications from hackers.