Secure Authentication for Java Applications

Knowing who a user is in your app is critical, as is knowing how long they can stay. This course will teach you how to implement robust authentication and expiry in Java using TLS, certificates, JWT, OAuth/OIDC, and MFA.

by Josh Cummings

Get started

What you'll learn

Unreliable or missing authentication puts your Java applications at risk of impersonation, data breaches, and lost trust. In this course, Secure Authentication for Java Applications, you’ll learn to implement secure and flexible login flows. First, you’ll explore TLS and session management to keep user data private and prevent session hijacking. Next, you’ll discover how to adopt stateless flows through X.509 certificates and JWT to protect distributed architectures. Finally, you’ll learn how to integrate OAuth 2.0 and OpenID Connect and incorporate multifactor authentication for even stronger user verification. When you’re finished with this course, you’ll have the skills and knowledge of authentication in Java needed to protect your users and systems confidently.

About the author

Josh Cummings

Like many software craftsmen, Josh eats, sleeps, and dreams in code. He codes for fun, and his kids code for fun! Right now, Josh works as a full-time committer on Spring Security and loves every minute.

More Courses by Josh

Secure Authentication for Java Applications

What you'll learn

Table of contents

TLS and the Fundamentals of Authentication 10m

Stateless Authentication with X.509 and JWT 10m

Session Management 8m

Stateful Authentication with OIDC 7m

Multifactor Authentication 11m

About the author