وب سایت تخصصی شرکت فرین
دسته بندی دوره ها

[NEW] Spring Security 6 Zero to Master along with JWT,OAUTH2

سرفصل های دوره

Spring Security 6 , SpringBoot 3 Security, CORs, CSRF, JWT, OAUTH2, OpenID Connect, KeyCloak


01 - Getting Started
  • 001 Course Introduction
  • 002 Details of Source Code, PDF Content & other instructions for the course
  • 002 Spring-Security-Zero-to-Master-along-with-JWT-OAUTH2.pdf
  • 003 What is Security & Why it is important
  • 004 Creating a simple Spring Boot app with out security
  • 005 Securing Spring Boot basic app using Spring Security
  • 006 Configure static credentials inside application properties file
  • 007 Why should we use Spring Security framework
  • 008 Quick introduction to Servlets & Filters
  • 009 Introduction to Spring Security Internal flow
  • 010 Demo of Spring Security internal flow
  • 011 Sequence flow of the Spring Security default behaviour
  • 012 Understanding on how multiple requests work with out credentials
  • external-links.txt

  • 02 - Changing the default security configurations
  • 001 Understanding about UI part of the EazyBank application
  • 002 Backend REST services required for EazyBank app
  • 003 Creating backend services needed for the EazyBank application - Part 1
  • 004 Creating backend services needed for the EazyBank application - Part 2
  • 005 Checking the default configuration inside the spring security framework
  • 006 IMPORTANT NOTE.html
  • 007 Modifying the code as per our custom requirements
  • 008 Denying all the requests
  • 009 Permit all the requests

  • 03 - Defining & Managing Users
  • 001 Introduction to the agenda of the section
  • 002 Configuring users using InMemoryUserDetailsManager - Approach 1
  • 003 Configuring users using InMemoryUserDetailsManager - Approach 2
  • 004 Understanding User Management interfaces and Classes
  • 005 Deep Dive of UserDetails Interface & User class
  • 006 Deep Dive of UserDetailsService & UserDetailsManager Interfaces
  • 007 Deep Dive of UserDetailsManager Implementation classes
  • 008 Creating MySQL Database in the cloud
  • 009 Connecting to DB & Creating Users inside the DB as per JdbcUserDetailsManager
  • 010 Using JdbcUserDetailsManager to perform authentication
  • 011 Creating our own custom tables for Authentication
  • 012 Creating JPA Entity and repository classes for new table
  • 013 Creating our own custom implementation of UserDetailsService
  • 014 Building a new REST API to allow the registration of new User

  • 04 - Password Management with PasswordEncoders
  • 001 How our passwords validated in Spring Security by default
  • 002 Encoding Vs Encryption Vs Hashing - Part 1
  • 003 Encoding Vs Encryption Vs Hashing - Part 2
  • 004 How Our passwords will be validated with hashing & PasswordEncoders
  • 005 Deep dive of PasswordEncoder interface
  • 006 Deep dive of PasswordEncoder implementation classes - Part 1
  • 007 Deep dive of PasswordEncoder implementation classes - Part 2
  • 008 Demo of registration of new user with Bcrypt password encoder
  • 009 Demo of login with Bcrypt password encoder

  • 05 - Understanding Authentication Provider and Implementing it
  • 001 Why should we consider creating our own AuthenticationProvider
  • 002 Understanding AuthenticationProvider methods
  • 003 Implementing and Customising the AuthenticationProvider inside our application
  • 004 Testing our custom AuthenticationProvider implementation
  • 005 Spring Security Sequence flow with custom AuthenticationProvider

  • 06 - Understanding CORs & CSRF
  • 001 Setting up the EazyBank UI project
  • 002 Understanding the UI project and walkthrough of the Angular code
  • 003 Creating new DB schema for EazyBank scenarios
  • 004 Updating Backend project based on the latest DB schema
  • 005 Testing registration of the new user with latest changes
  • 006 Taste of CORs error
  • 007 Introduction to CORs
  • 008 Possible options to fix the CORs issue
  • 009 Fixing CORs issue using Spring Security
  • 010 Demo of default CSRF protection inside Spring Security
  • 011 Introduction to CSRF attack
  • 012 Solution to handle CSRF attacks
  • 013 Ignoring CSRF protection for public APIs
  • 014 Implementing CSRF token solution inside our web application
  • 015 Testing the CSRF related changes

  • 07 - Understanding & Implementing Authorization
  • 001 Authentication Vs Authorization
  • 002 How Authorities stored inside Spring Security
  • 003 Creating new table authorities to store multiple roles or authorities
  • 004 Making backend changes to load authorities from new DB table
  • 005 Configuring Authorities inside web application using Spring Security-Theory
  • 006 Configuring Authorities inside web application using Spring Security - Coding
  • 007 Authority Vs Role in Spring Security
  • 008 Configuring Roles Authorization inside web app using Spring Security-Theory
  • 009 Configuring Roles Authorization inside web app using Spring Security-Coding

  • 08 - Writing our own Custom Filters in Spring Security
  • 001 Introduction to Filters in Spring Security and the sample use cases
  • 002 Demo of Inbuilt Filters of Spring Security framework
  • 003 How to create our own custom filter
  • 004 Adding a custom filter using addFilterBefore() method
  • 005 Adding a custom filter using addFilterAfter() method
  • 006 Adding a custom filter using addFilterAt() method
  • 007 Details about GenericFilterBean and OncePerRequestFilter

  • 09 - Token based Authentication using JSON Web Token (JWT)
  • 001 Demo of JSESSIONID and issues with it
  • 002 Advantages of Token based Authentication
  • 003 Deep dive about JWT Tokens - Part 1
  • 004 Deep dive about JWT Tokens - Part 2
  • 005 Making project configuration to use JWT tokens
  • 006 Configuring filters to generate the JWT tokens
  • 007 Configuring filters to validate JWT tokens
  • 008 Making changes on the client side for JWT token based authentication
  • 009 Validating the JWT changes made by running the applications
  • 010 Validating the JWT token expiration scenario

  • 10 - Method Level Security
  • 001 Introduction to method level security in Spring Security
  • 002 Details about method invocation authorization in method level security
  • 003 Demo of method level security using @PreAuthorize
  • 004 Demo of method level security using @PostAuthorize
  • 005 Details about filtering authorization in method level security
  • 006 Demo of @PreFilter annotation
  • 007 Demo of @PostFilter annotation

  • 11 - Deep dive of OAUTH2 & OpenID Connect
  • 001 Problems that OAUTH2 trying to solve
  • 002 Introduction to OAUTH2
  • 003 OAuth2 terminologies or jargons
  • 004 OAuth2 Sample flow - Theory
  • 005 Demo of OAuth2 Sample flow
  • 006 Deep dive on Authorization code grant type flow in OAUTH2
  • 007 Demo of Authorization code grant type flow in OAUTH2
  • 008 Deep dive & Demo of implicit grant flow in OAUTH2
  • 009 Deep dive of password grant type flow in OAUTH2
  • 010 Deep dive of client credentials grant type flow in OAUTH2
  • 011 Deep dive of refresh token grant type flow in OAUTH2
  • 012 How resource server validates the tokens issued by Auth server
  • 013 Introduction to OpenID Connect

  • 12 - Implementing OAUTH2 using spring security
  • 001 Registering the client details with the GitHub to use its OAUTH2 Auth server
  • 002 Building a springboot application that uses GitHub Auth server during OAuth2
  • 003 Running and verifying the sample application using GitHub OAUTH2

  • 13 - Implementing OAUTH2 style login inside EazyBank using KeyCloak
  • 001 Introduction to OAUTH2 flow inside EazyBank web App
  • 002 Introduction to KeyCloak Auth Server
  • 003 Installation of KeyCloak server & setup admin account
  • 004 Setup a Realm inside KeyCloak Server for EazyBank App
  • 005 Creating Client Credentials inside KeyCloak for API-API secured invocations
  • 006 Setup of EazyBank Resource Server
  • 007 Getting Access token from KeyCloak using client credentials grant type
  • 008 Passing Access token to Resource server for response through Postman
  • 009 Understanding Authorization code grant type for EazyBank App
  • 010 Creating Client and User details inside KeyCloak for Auth code grant flow
  • 011 Testing Authorization code grant type using Postman App
  • 012 Deep dive on Authorization code grant type with PKCE
  • 013 Demo of Authorization code grant type with PKCE
  • 014 Creating public facing client details inside KeyCloak server
  • 015 Implementing PKCE Authorization code grant type inside Angular UI App - Part 1
  • 016 Implementing PKCE Authorization code grant type inside Angular UI App - Part 2
  • 017 Testing PKCE flow inside Eazy Bank application
  • 018 Important features of KeyCloak
  • 019 Social Login integration with the help of KeyCloak Server

  • 14 - Thank You and Congratulations
  • 001 Thank You and Congratulations
  • 002 Bonus lectures.html
  • 139,000 تومان
    بیش از یک محصول به صورت دانلودی میخواهید؟ محصول را به سبد خرید اضافه کنید.
    خرید دانلودی فوری

    در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

    ایمیل شما:
    تولید کننده:
    شناسه: 17240
    حجم: 5065 مگابایت
    مدت زمان: 888 دقیقه
    تاریخ انتشار: 12 مرداد 1402
    طراحی سایت و خدمات سئو

    139,000 تومان
    افزودن به سبد خرید