Securing REST Services Using Spring Security 5

سرفصل های دوره

Learn the best practices to protect HTTP-based APIs using Spring Security. This course will teach you not only how to secure new Spring Boot applications that you are beginning to work on, but also how to add security to existing ones.

1. Course Overview

1. Course Overview

2. Manually Securing a CLI Application

1. Introduction

2. An Overview of the Sample Application - NekoShlink

3. Demo - Getting Familiar with NekoShlink

4. Introducing Spring Security Internals

5. Demo - Securing the NekoShlink CLI

6. Summary

3. Adding Authentication to a RESTful API with Spring Security and Spring Boot

1. Introduction

2. The NekoShlink REST Project

3. Demo - Getting Familiar with the NekoShlink REST

4. Demo - Adding API Key Authentication with a Custo

5. Transport Layer Security (TLS) and Server X.509 C

6. Demo - Adding TLS to NekoShlink

7. Mutual Transport Layer Security (mTLS) and Client

8. Demo - Adding mTLS to NekoShlink

9. Summary

4. Creating and Maintaining a User Base for your RESTful API

1. Introduction

2. User Repositories in Spring Security

3. Demo - A Custom DAO Authentication Provider for NekoShlink

4. Spring Security Login Options

5. Demo - Basic and Form-based Challanges in NekoShlink

6. Summary

5. Implementing OIDC Authentication with KeyCloak

1. Introduction

2. OAuth2 Overview

3. OpenID Connect (OIDC) Overview

4. OAuth2 (and OIDC) Servers

5. Demo - Setting up the Spring Authorization Server

6. OAuth2 Flows

7. Demo - Using the Spring Authorization Server in NekoShlink

8. Demo - Using KeyCloak in NekoShlink

9. Summary

6. Adding Authorization to the RESTful API Endpoints

1. Introduction

2. Authorizing HTTP Endpoints

3. Demo - Role-based Authorization for NekoShlinks REST Endpoints

4. Role Hierarchies

5. Demo - Using Role Hierarchies with NekoShlink Roles

6. Summary

7. Adding Authorization to the Business Logic Services

1. Introduction

2. Applying Method-level Security to Web Endpoints

3. Applying Method-level Security to Service Beans

4. Declaring and Using Custom Security Annotations

5. The Need for RunAs Delegation

6. Demo - Using RunAs Delegation in NekoShlink

7. Summary

08. Auditing Access to the Application

01. Introduction

02. Auditing User Access to a Spring Application

03. Demo - Auditing User Access in NekoShlink with Spring Security and Spring Actuator Event

04. Auditing Access to Data in a Spring Application

05. Demo - Auditing Data Access in NekoShlink with JPA Callbacks and Spring Data Audit

06. Auditing Changes to Data and Storing Historical Data with Hibernate Envers

07. Demo - Integrating Hibernate Envers to NekoShlink

08. Auditing Changes to Data and Storing Historical Data with JaVers

09. Demo - Integrating JaVers to NekoShlink

10. Summary

11. Course Wrap-up

45,900 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight