Spring Framework 5: Securing Spring Applications against Common Security Threats
Spring Security is one of the most popular frameworks for securing Java applications. This course will teach you how to add and configure Spring Security to your applications to protect your users against some common security threats.
What you'll learn
Spring Security protects your application from many common security threats right out of the box, in fact the increased adoption of such frameworks has resulted in significant declines in occurrences of many of these threats. In this course, Spring Framework 5: Securing Spring Applications against Common Security Threats, you’ll learn about these threats and how Spring Security protects your application against them. First, you will learn how to configure Spring Security with Spring Boot to get security up and running from the very get-go of your project, so that it can evolve alongside your architecture. Next, you’ll discover some of the various authentication strategies supported by Spring Security, their pros and cons, and how to implement them for single-page and multi-page applications. Finally, you’ll learn how to deal with secret and exception management in your application. When you’re finished with this course, you’ll have the skills and knowledge of Spring Security needed to effectively secure your application against common security threats.
Table of contents
- Module Introduction 1m
- HTTP Headers: The First Line of Defense 1m
- The Cache Control Header 2m
- MIME Type Sniffing and Browser XSS Protection 3m
- Understanding Spring Security Cross Site Request Forgery 4m
- Default Clickjacking Protection 2m
- Additional Optional Security Headers 2m
- Spring Securities HTTP Firewall 2m
- Wrap-up 1m
About the author
Wojciech is a Technical Lead and Scrum Master. He has over 15 years' experience in software development working in a variety of industries from financial services and online gaming. He has extensive experience with anything Java, Spring framework, Microservices and has a passion for developing secure and scalable applications.