Learning Spring Security Fundamentals

Spring 5, Learn Spring Security, Spring Boot with JWT, Spring Boot with OAuth2 and FormBased Authentication

3.00 (3 reviews)
Udemy
platform
English
language
Web Development
category
Learning Spring Security Fundamentals
31
students
9 hours
content
Mar 2022
last update
$19.99
regular price

What you will learn

Learn the basic flow of the Spring Security

Implement Custom Multiple filters and AuthenticationProviders in your Project

Learn what is the CSRF attacks and how to avoid them

Learn how to resolve invalid CORS request in spring boot application

Learn the thery of OAuth2 and implement a project with Sign In With Google

How to use JWT in the spring boot project

Description

"Learning Spring Security Fundamentals" will help you to understand Spring Security and its architecture, important components such as Authentication Filters, Authentication Manager, Providers, UserDetailsService and more ... This course will also cover the CSRF attacks, CORS specification. In the final lessons, we are going to build basic applications with OAuth2 and JWT.


Below are the important topics that this couse covers:

  • Basic Concepts of the Spring Security

  • UserDetailsService

  • UserDetailsManager, JDBCUserDetailsManager and BCryptPasswordEncoder

  • Custom Authentication Provider

  • Filter Chain, Custom Filter and Authentication Manager

  • SecurityContext and SecurityContextHolder

  • CSFR Attack Simulation and CSRF setup in the Spring Boot Application

  • CORS Setup in the Spring Boot Application

  • JWT Setup with Spring Boot

  • OAuth2 Theory

  • Grant Types for OAuth2

  • Sign In With Google Button with Spring Boot & Thymeleaf


Who this course is for:

You are already using Spring Security in your project without understanding the details. And you want to know details with the architecture as well. Then this course is for you


Requirements

  • Comportable with Java Programming language, (Java 11 ++)

  • Implement already basic Spring Boot application

  • Familiar with JWT, at least you know how it works

  • Worked with JPA or at least you know how to create Entity in the Spring Boot application(Because we are going to use PostgreSQL in this course)

  • It is good to know that there is a template engine called Thymeleaf


Content

Course Introduction

Introduction

Basic Concepts: Architecture

Spring Security Architecture

UserDetailsService, UserDetailsManager and PasswordEncoder

UserDetailsService with Postgresql
JDBC UserDetailManager with using NoOpPassword Encoder (Step 1)
JDBC UserDetailManager with using BcryptPassword Encoder (Step 2 - Final)

Implementing Custom Authentication Provider

Custom AuthenticationProvider

Filter Chain, Custom Filter and Authentication

FilterChain & AuthenticationFilter and overall Architecture (Step 1)
Define AuthenticationManager and create custom Authentication class (Step 2)
Define AuthenticationProvider (Step 3 - Final)

One-Time-Password Authentication withMultiple Authentication Filters & Providers

Demo of the application and introduction for pre-defined classes (Step 1)
Define a Filter for the login endpoint (Step 2)
Implement the Authentication logic for the login endpoint (Step 3)
Define AuthenticationProviders for the filter (Step 4)
Add Filters and Providers in the Security Configuration (Step 5)
Create another Filter and Provider for the OTP (Step 6 - Final)

SecurityContext and SecurityContextHolder

SecurityContext & SecurityContextHolder and its strategies

CSRF Attack Simulation

What is the CSRF Attack? (Step 1)
CSRF Attack Simulation (Step 2 - Final)

CORS Setup for Spring Boot Application

CORS Policy and Definition (Step 1)
Integrate CORS with Spring Boot (Step 2 - Final)

Spring Security with OAuth2 (Theory)

Theory of OAuth2 (Step 1)
OAuth2 Grant Types ( Step 2)
(Continue) OAuth2 Grant Types (Step 3)
Security and Refresh Token OAuth2 (Step 4 - Final)

OAuht2 with Thymeleaf

OAuht2 implementation with Thymeleaf
Reaon for /login/oauth2/code/google

Spring Boot application with OAuth2 and FormBased Authentication

Demo of the application and Security Configuration (Step 1)
Define UserDTO & Repository and Check Logged-In Status (Step 2)
Add OAuth2 (ClientRegistration) into the Application (Step 3)
Add OAuth2 (OAuth2UserService) into the Application (Step 4)
Add OAuth2 (Utility classes) into the Application (Step 5)
Create SecureUser class (Step 6)
Add FormBased Authentication (Step 7 - Final)

Spring Boot application with JWT

Demo of the application and introduction to pre-defined classes (Step 1)
Security Configuration (CSRF) and register endpoint (Step 2)
Implementation for LoginService using AuthenticationManager (Step 3)
Validate JWT and add Cors Filter (Step 4)
Relationship between JWT and LocalStorage (Step 5 - Final)

The End

Thank You !!!

Reviews

Mateusz
April 24, 2023
The course was good and I learn a lot things but the are 2 problems. 1) The voice is too quiet 2) It would be better if you put files in resource sections

Charts

Price

Learning Spring Security Fundamentals - Price chart

Rating

Learning Spring Security Fundamentals - Ratings chart

Enrollment distribution

Learning Spring Security Fundamentals - Distribution chart

Related Topics

4583024
udemy ID
3/6/2022
course created date
3/9/2022
course indexed date
Bot
course submited by