Udemy

Platform

English

Language

Web Development

Category

Java Web Services Part 2 - SOAP and REST Security

Master advanced web services concepts and implement them in easy steps

4.64 (530 reviews)

Students

4.5 hours

Content

Jun 2021

Last Update
Regular Price

SKILLSHARE
SkillShare
Unlimited access to all SkillShare courses
EXCLUSIVE 30-DAY FREE TRIAL

What you will learn

Develop a simple SOAP service and client

Learn what WS Security is

Master the four security concepts - Authentication Confidentiality Integrity and Non Repudiation

Implement SOAP Web Services security using Apache CXF and WSS4J

Implement Username Token Profile authentication on client and the provider

Understand Encryption and Decryption

Learn how to use the java keytool

Generate and use keys/certificates

Implement Encryption and Decryption

Sign the SOAP messages and ensure message integrity

Enable Timestamps to prevent replay attacks

And much more in the future on this agile style and incremental course


Description

The ONLY course that covers the SOAP and REST web services Security Comprehensively!

---

Sample of the reviews:

Straight to the point. I was looking for an alternative to axis2/rampart for SOAP ws-security, and I'm glad I found this course. As a nice bonus (for me at least) this course also covers REST security. 5/5. - Ionescu Alexandru

I have done or finished both the courses on Web Services By Bharath and it is so knowledgeable and give me a real time experience,I can even use the same examples in my company.Now I am planning to do the course on Create REST APIs using Spring Data REST by Bharath. Friends go for the course and don't waste your time on thinking too much. - Vivek Kumar Gupta

Awesome, completed up to Encryption & Decryption, clear explanation. So far so good. - Brady Adams

---

All source code is available for download

Responsive Instructor - All questions answered within 24 hours

Professional video and audio recordings (check the free previews)

----


This course is a continuation of my "Java Web Services" course which is the most popular course on that topic on UDemy as well as on the internet.

Are you interested in learning and implementing advanced Web Services concepts such as Security ? Then this course is for you.This is a incremental course.I will adding several new topics such as OAuth,Async Communication and more relevant topics that are not covered in the Java Web Service course.

Do you want to learn the four key security areas and address them in your SOAP Web Services?

This course will simplify things with concepts and step by step implementations . By the end of it you will:

1. Understand the four key security areas

2. Use the WS-Security standard to secure your services

3. Implement Authentication

4. Understand what Encryption is and why it is required

5. Learn how to use the java keytool to generate security key pairs

6. Implement Encryption and Decryption both on the web service client and web service provider

7. Learn what , why and how to sign soap messages 

8. Prevent replay attacks by enabling Timestamps

9. And many more advanced SOAP and REST web services topics in the near future


Screenshots

Java Web Services Part 2 - SOAP and REST Security
Java Web Services Part 2 - SOAP and REST Security
Java Web Services Part 2 - SOAP and REST Security
Java Web Services Part 2 - SOAP and REST Security

Content

Start Here

Instructor and course introduction

How to make the best of this course

Troubleshooting Maven Projects

SOAP Web Service Creation

Simple Usecase

Create the Project

Add Maven Dependencies

Create the WS Endpoint

Mark with JAXB Annotations

Mark with JAX-WS Annotations

Configure the endpoint

Configure the cxf servlet

Deploy and Run

SOAP Web Service Client Creation

Create the client Project

Generate the Stubs

Create the client and test

Enable CXF logging

SOAP WS Standards Concepts

Why WS Standards

SOAP WS Security Introduction

WS Security and Apache CXF

SOAP WS - Standard Concepts

WS Security - Authentication

What is Username Token Profile?

Steps to Configure Username Token Profile

Update the maven dependencies

Configure User Name Token Profile

Create and configure the PasswordCallbackHandler

Run the application on the server

Update Client Maven Dependencies

Retrieve the CXF Client Proxy

Create the WSSJ Interceptors Programmatically

Configure the properties

Run the test

WS Security - Authentication

Encryption and Decryption Concepts

Confidentiality Introduction

The Java keytool

Generate a key pair using the keytool

Export the public certificate

Encryption and Decryption Concepts

WS Security - Confidentiality(Encryption/Decryption)

Steps to enable Encryption

Create the Key Pairs

Export the public keys

Import the certificates

The trustcacerts Flag

Copy the keystores to projects

Configure Encryption Action and Properties

Create the property file

Update the PasswordCallbackHandler

Add decryption action

Create the property file

Update the PasswordCallbackHandler

Test encryption and decryption

What just happened?

Enable encryption on the Server

Enable Decryption on the client

WS Security - Integrity (Signatures)

What are Signatures?

Configure Signature on the client

Run the test and verify the signature

Configure to check for signature on the Server

Sign the message on the server

Verify the signature on the client

Integrity

WS Security - Non Repudiation (Timestamp)

What is a Timestamp?

Enable Timestamp on the Client and Provider

Run a Test

Time to Live

Timestamp

Securing parts of the message

Introduction

Encrypt the Signature Part on the Client

Encrypt the Signature Part on the Provider and Test

Use Timestamp Part in the Signature

Download the completed projects

Implement OAuth 2 Security for REST Using Spring Boot

OAUTH Concepts

OAUTH in REST

What are you going to create?

Install Spring Tool Suite

Configure JDK in STS

Install Postman

Create the Spring Boot REST Application

Completed Project For Your Reference

Create the REST Project

Create the Controllers

Run the application

Loading users and roles

Create the User and Role Entities

Mark entities with JPA annotations

Define the JPA Relationsships

Implement the GrantAuthority Interface

Create the UserRepository

Create the Authorization Server and Resource Server

Create the WebSecurityConfiguration

Create and use the UserDetailsService

Expose the AuthenticationManager Bean

Create the AuthorizationServerConfiguration

Configure the Services

Create and Expose the TokenServices bean

Configure Client Information

Configure the ResourceId

Create the ResourceServerConfiguration

Map the Roles to REST URIs

Change the Spring Security Filter Order

Some Refactoring

Test the application

Create Users and Roles

Launch the application

Authenticate and receive the token

Access the REST Endpoints

Debug and Step Through the Application

Swagger Quick Start

Introduction

CXF Swagger Feature

Swagger Java Annotations

Download and Import the Project

Step1 - Add Maven Dependency

Step 2 - Configure the Swagger CXF Feature

Step 3 - Use the Swagger API

Swagger in Action

Enable Swagger UI

CRUD Using Swagger UI

Wrap Up

Discounts on my other courses


Reviews

D
Daniel10 December 2019

Very organized, objective and didactic explanations... and also good overview about the theory being implemented. For what was announced, the course delivers what is expected. People should take the two Web Services courses, I and II... there's a lot to get from both.

I
Ionescu22 July 2019

Straight to the point. I was looking for an alternative to axis2/rampart for SOAP ws-security, and I'm glad I found this course. As a nice bonus (for me at least) this course also covers REST security. 5/5.

B
B19 May 2019

Instructor has covered the most useful topics for Web Services Development. The lectures are short and to the point (I agree with the instructor). The troubleshooting parts are the most important parts in this tutorial because as developer we run into issues and we need help so this tutorial can be referred to for fixing issues. I wish that the instructor makes course exclusively on troubleshooting, identifying and fixing bugs in Java based applications.

V
Vivek29 August 2018

I have done or finished both the courses on Web Services By Bharath and it is so knowledgeable and give me a real time experience,I can even use the same examples in my company.Now I am planning to do the course on Create REST APIs using Spring Data REST by Bharath. Friends go for the course and don't waste your time on thinking too much.

P
P11 May 2018

Very Disappointed. Did not cover the main concepts like CRUD Operations for SOAP Webservices. Does not answer your questions clearly.

J
Jyotirmaya7 February 2018

Content is good for spring security but initial some videos are repetitive from Webservice- 1 and I am expecting some more security features in Spring Rest such as SSL connection and how to encrypt the content of request and response in Rest WS like Soap WS.

Y
Yoogesh5 January 2018

Really impressed by the effort that the lecturer has done for this course. Of course the security on SOAP is not a simple topic. But the way lecturer tried his best to put it in a simple way is really an appreciable. You may decide to escape this course thinking that there are many other courses similar to this online. But If you do that , I am Sure you will loose the big part of your knowledge.

S
Shobhawati19 December 2017

I really learned lot of new things related to security. It will be really more helpful if u can add more real projects example. Thanks

s
srinivas9 November 2017

I have been struggling in the interviews to explain this security feature. You have explained the concept in a lucid manner. Thank you so much bharat sir

K
Kirill10 October 2017

Really good course and really good instructor with deep knowledges and very pleasant teaching manner. I was interested in security issues. Among a number of different courses that I have taken Bharath gives the best clear explanations about this really difficult issue. All details are discribed in depth very simple and clear, no white spaces. Thanks him a lot.

S
Sudeep17 July 2017

I have some other Premium Web Services videos of different premium websites, but this course is incomparable.

F
Fabián8 July 2017

As an additional material for SOAP and Rest is excellent. I really appreciate the effort Bharath puts in all his courses.

E
Elias19 May 2017

Bharath is one my favorite instructors. His explanations are to the point and very clear. I was in need of a detailed course about WS Security and I found this course the best on the net.

D
D25 March 2017

Great course to learn advanced SOAP features . Enjoyed this course as well as the first part of this series.

S
Subhobroto2 March 2017

I really want to give five star, as because such an awesome and in brief explanation about web service never I have seen in any site in internet, so this course as well as other courses of Bharath are highly recommendable to beginners as well as experience people also. Thank you Bharath for this awesome course, as this is ongoing course, hope so some good content you will add soon about security of RESTful web services as well. Thank you !!!


Related Courses

SKILLSHARE
Develop RESTful Java Web Services using JAX-RS and Jersey
Develop RESTful Java Web Services using JAX-RS and Jersey
SKILLSHARE
Developing RESTful Java Web Services using Spring boot
Developing RESTful Java Web Services using Spring boot

1053406

Udemy ID

12/28/2016

Course created date

11/20/2019

Course Indexed date
Bot
Course Submitted by

Twitter
Telegram