Этот материал находится в платной подписке. Оформи премиум подписку и смотри или слушай Spring Security 6 Zero to Master along with JWT,OAUTH2, а также все другие курсы, прямо сейчас!
Премиум
  1. Урок 1. 00:08:24
    Course Introduction
  2. Урок 2. 00:09:50
    Creating a simple Spring Boot app with out security - Part 1
  3. Урок 3. 00:09:13
    Creating a simple Spring Boot app with out security - Part 2
  4. Урок 4. 00:15:05
    Securing Spring Boot basic app using Spring Security & static credentials
  5. Урок 5. 00:05:43
    Funny memes on Security
  6. Урок 6. 00:12:37
    What is Security & Why it is important
  7. Урок 7. 00:06:34
    Quick introduction to Servlets & Filters
  8. Урок 8. 00:16:02
    Introduction to Spring Security Internal flow - Theory
  9. Урок 9. 00:09:36
    Demo of Spring Security internal flow - Part 1
  10. Урок 10. 00:15:01
    Demo of Spring Security internal flow - Part 2
  11. Урок 11. 00:04:26
    Sequence flow of the Spring Security default behaviour
  12. Урок 12. 00:05:07
    Understanding on how multiple requests work with out credentials
  13. Урок 13. 00:09:21
    Understanding about UI part of the EazyBank application
  14. Урок 14. 00:12:35
    Creating backend services needed for the EazyBank application
  15. Урок 15. 00:08:30
    Checking the default configuration inside the spring security framework
  16. Урок 16. 00:11:26
    Modifying the security config code as per our custom requirements
  17. Урок 17. 00:12:40
    How to disable formLogin and httpBasic authentication
  18. Урок 18. 00:10:16
    httpBasic authentication testing using postman
  19. Урок 19. 00:15:04
    Configuring users using InMemoryUserDetailsManager
  20. Урок 20. 00:12:46
    Configuring PasswordEncoder using PasswordEncoderFactories
  21. Урок 21. 00:08:38
    Demo of CompromisedPasswordChecker
  22. Урок 22. 00:15:01
    Deep Dive of UserDetailsService & UserDetailsManager Interfaces
  23. Урок 23. 00:17:05
    Deep Dive of UserDetails & Authentication interfaces
  24. Урок 24. 00:01:43
    Quick revision of enhancements done so far
  25. Урок 25. 00:10:08
    Creating MySQL Database using Docker
  26. Урок 26. 00:09:36
    Understanding JdbcUserDetailsManager & creating Users inside the DB
  27. Урок 27. 00:11:26
    Using JdbcUserDetailsManager to perform authentication
  28. Урок 28. 00:05:59
    Creating our own custom tables for Authentication
  29. Урок 29. 00:14:15
    Creating JPA Entity and repository classes for new table
  30. Урок 30. 00:14:31
    Creating our own custom implementation of UserDetailsService
  31. Урок 31. 00:17:02
    Building a new REST API to allow the registration of new User
  32. Урок 32. 00:07:47
    How our passwords validated with out PasswordEncoders
  33. Урок 33. 00:08:04
    What is Encoding, Decoding & why it is not suitable for passwords management
  34. Урок 34. 00:10:30
    What is Encryption, Decryption & why it is not suitable for passwords management
  35. Урок 35. 00:05:52
    Demo of Encryption, Decryption
  36. Урок 36. 00:09:44
    Introduction to Hashing
  37. Урок 37. 00:13:16
    Drawbacks of Hashing & what are Brute force attacks, Dictionary or Rainbow tab
  38. Урок 38. 00:14:19
    How to overcome Hashing drawbacks, Brute force and Dictionary table attacks
  39. Урок 39. 00:08:16
    Introduction to PasswordEncoders in Spring Security
  40. Урок 40. 00:15:15
    Deep dive of PasswordEncoder implementation classes
  41. Урок 41. 00:10:33
    Demo of registration and login with Bcrypt password encoder
  42. Урок 42. 00:08:53
    Why should we consider creating our own AuthenticationProvider
  43. Урок 43. 00:10:30
    Understanding AuthenticationProvider methods
  44. Урок 44. 00:13:15
    Implementing and Customizing the AuthenticationProvider inside our application
  45. Урок 45. 00:04:04
    Environment specific Security configurations using Profiles - Part 1
  46. Урок 46. 00:13:16
    Environment specific Security configurations using Profiles - Part 2
  47. Урок 47. 00:07:02
    Environment specific Security configurations using Profiles - Part 3
  48. Урок 48. 00:09:10
    Accepting only HTTPS Traffic using Spring Security
  49. Урок 49. 00:12:27
    Exception Handling in Spring Security framework
  50. Урок 50. 00:14:00
    Defining Custom AuthenticationEntryPoint - Part 1
  51. Урок 51. 00:04:28
    Defining Custom AuthenticationEntryPoint - Part 2
  52. Урок 52. 00:07:18
    Defining Custom AccessDeniedHandler
  53. Урок 53. 00:11:01
    Session Timeout & invalid session configurations
  54. Урок 54. 00:09:46
    Concurrent Session Control configurations
  55. Урок 55. 00:15:44
    Session Fixation Attack protection with Spring Security
  56. Урок 56. 00:04:22
    Listening Authentication Events - Theory
  57. Урок 57. 00:10:17
    Listening Authentication Events - Demo
  58. Урок 58. 00:07:04
    Form Login Configurations for MVC or monolithic apps - Part 1
  59. Урок 59. 00:10:26
    Form Login Configurations for MVC or monolithic apps - Part 2
  60. Урок 60. 00:11:15
    Form Login Configurations for MVC or monolithic apps - Part 3
  61. Урок 61. 00:12:13
    Form Login Configurations for MVC or monolithic apps - Part 4
  62. Урок 62. 00:05:30
    Logout Configurations for MVC or monolithic apps
  63. Урок 63. 00:10:46
    Spring Security Thymeleaf integration
  64. Урок 64. 00:11:33
    Role of SecurityContext & SecurityContextHolder
  65. Урок 65. 00:05:16
    Load login user details in Spring Security
  66. Урок 66. 00:11:16
    Setting up the EazyBank UI project
  67. Урок 67. 00:16:06
    Understanding and walkthrough of the Angular code - Part 1
  68. Урок 68. 00:15:31
    Understanding and walkthrough of the Angular code - Part 2
  69. Урок 69. 00:11:42
    Creating new DB schema for EazyBank scenarios
  70. Урок 70. 00:19:14
    Updating Backend project based on the latest DB schema
  71. Урок 71. 00:07:21
    Testing registration of the new user with latest changes
  72. Урок 72. 00:05:44
    Taste of CORs error
  73. Урок 73. 00:08:19
    Introduction to CORs
  74. Урок 74. 00:09:13
    Possible options to fix the CORs issue
  75. Урок 75. 00:08:28
    Fixing CORs issue using Spring Security
  76. Урок 76. 00:05:15
    Demo of default CSRF protection inside Spring Security
  77. Урок 77. 00:08:38
    Introduction to CSRF attack
  78. Урок 78. 00:08:12
    Solution to handle CSRF attacks
  79. Урок 79. 00:12:09
    Implementing CSRF token solution inside backend application - Part 1
  80. Урок 80. 00:10:59
    Implementing CSRF token solution inside backend application - Part 2
  81. Урок 81. 00:09:47
    Implementing CSRF token solution inside UI application
  82. Урок 82. 00:06:14
    Ignoring CSRF protection for public APIs
  83. Урок 83. 00:08:17
    Authentication Vs Authorization
  84. Урок 84. 00:07:36
    How Authorities stored inside Spring Security
  85. Урок 85. 00:04:16
    Creating new table authorities to store multiple roles or authorities
  86. Урок 86. 00:12:07
    Making backend changes to load authorities from new DB table
  87. Урок 87. 00:12:33
    Configuring Authorities inside web application using Spring Security
  88. Урок 88. 00:06:53
    Authority Vs Role in Spring Security
  89. Урок 89. 00:06:30
    Configuring Roles Authorization inside web application using Spring Security
  90. Урок 90. 00:07:46
    Listening to the Authorization events
  91. Урок 91. 00:12:47
    Demo of Inbuilt Filters of Spring Security framework
  92. Урок 92. 00:13:18
    How to create and configure our own custom filter
  93. Урок 93. 00:14:42
    Adding a custom filter using addFilterBefore() method
  94. Урок 94. 00:05:58
    Adding a custom filter using addFilterAfter() method
  95. Урок 95. 00:06:21
    Adding a custom filter using addFilterAt() method
  96. Урок 96. 00:09:01
    Opaque Tokens vs JSON Web Tokens (JWT)
  97. Урок 97. 00:08:33
    Advantages of Token based Authentication
  98. Урок 98. 00:15:06
    Deep dive about JWT Tokens
  99. Урок 99. 00:11:40
    Making project configuration to use JWT tokens
  100. Урок 100. 00:11:51
    Building logic to generate the JWT tokens
  101. Урок 101. 00:08:02
    Building logic to validate the JWT tokens
  102. Урок 102. 00:05:40
    Making changes on the client side for JWT token based authentication
  103. Урок 103. 00:07:32
    Validating the JWT changes made by running the applications
  104. Урок 104. 00:03:03
    Validating the JWT token expiration scenario
  105. Урок 105. 00:12:41
    Publish an AuthenticationManager for custom or manual authentication - Part 1
  106. Урок 106. 00:04:18
    Publish an AuthenticationManager for custom or manual authentication - Part 2
  107. Урок 107. 00:07:58
    Introduction to method level security in Spring Security
  108. Урок 108. 00:10:00
    Details about method invocation authorization in method level security
  109. Урок 109. 00:07:26
    Demo of method level security using @PreAuthorize and @PostAuthorize
  110. Урок 110. 00:04:48
    Details about filtering authorization in method level security
  111. Урок 111. 00:08:04
    Demo of @PreFilter annotation
  112. Урок 112. 00:06:33
    Demo of @PostFilter annotation
  113. Урок 113. 00:13:01
    Problems that OAUTH2 trying to solve
  114. Урок 114. 00:09:17
    Introduction to OAUTH2
  115. Урок 115. 00:05:07
    OAuth2 terminologies or jargons
  116. Урок 116. 00:10:43
    Demo of OAuth2 Sample flow
  117. Урок 117. 00:11:27
    Deep dive on Authorization code grant type flow in OAUTH2
  118. Урок 118. 00:07:21
    Demo of Authorization code grant type flow in OAUTH2
  119. Урок 119. 00:06:43
    Deep dive & Demo of implicit grant flow in OAUTH2
  120. Урок 120. 00:13:08
    Deep dive & demo of Authorization code grant type with PKCE
  121. Урок 121. 00:04:12
    Deep dive of password grant type flow in OAUTH2
  122. Урок 122. 00:03:19
    Deep dive of client credentials grant type flow in OAUTH2
  123. Урок 123. 00:08:17
    Deep dive of refresh token grant type flow in OAUTH2
  124. Урок 124. 00:06:31
    How resource server validates the tokens issued by Auth server
  125. Урок 125. 00:14:15
    Introduction to OpenID Connect
  126. Урок 126. 00:02:43
    Introduction to the agenda of OAUTH2 implementations and demos
  127. Урок 127. 00:06:20
    Demo of OAUTH2 using social logins - Part 1
  128. Урок 128. 00:10:01
    Demo of OAUTH2 using social logins - Part 2
  129. Урок 129. 00:09:01
    Demo of OAUTH2 using social logins - Part 3
  130. Урок 130. 00:08:38
    Demo of OAUTH2 using social logins - Part 4
  131. Урок 131. 00:05:44
    Demo of OAUTH2 using social logins - Part 5
  132. Урок 132. 00:05:52
    Introduction to OAUTH2 flow inside EazyBank web App
  133. Урок 133. 00:04:50
    Introduction to KeyCloak Auth Server
  134. Урок 134. 00:08:23
    Installation of KeyCloak server, setup admin account & realm
  135. Урок 135. 00:06:52
    Creating Client Credentials inside KeyCloak for API-API secured invocations
  136. Урок 136. 00:10:48
    Setup of EazyBank Resource Server - Part 1
  137. Урок 137. 00:12:15
    Setup of EazyBank Resource Server - Part 2
  138. Урок 138. 00:10:02
    Client credentials grant type flow demo in eazybank
  139. Урок 139. 00:06:42
    Demo of Opaque Tokens - Part 1
  140. Урок 140. 00:09:25
    Demo of Opaque Tokens - Part 2
  141. Урок 141. 00:09:41
    Creating Client and User details inside KeyCloak for Auth code grant flow
  142. Урок 142. 00:10:00
    Testing Authorization code & refresh grant types using Postman App
  143. Урок 143. 00:06:36
    Testing Authorization code PKCE grant types using Postman App
  144. Урок 144. 00:12:02
    Implementing PKCE Authorization code grant type inside Angular UI App - Part 1
  145. Урок 145. 00:07:39
    Implementing PKCE Authorization code grant type inside Angular UI App - Part 2
  146. Урок 146. 00:07:08
    Testing PKCE flow inside Eazy Bank Angular UI application
  147. Урок 147. 00:06:24
    Configuring MFA using KeyCloak
  148. Урок 148. 00:05:47
    Social Login integration with the help of KeyCloak
  149. Урок 149. 00:05:48
    Introduction to Spring Authorization Server
  150. Урок 150. 00:13:39
    Set up of Spring Authorization Server
  151. Урок 151. 00:11:23
    Creating Client Credentials inside Spring Auth Server for API-API invocation
  152. Урок 152. 00:06:35
    Client credentials grant type flow demo with Spring Auth Server
  153. Урок 153. 00:06:55
    OAuth2 Token Customization in Spring Auth Server
  154. Урок 154. 00:08:47
    Creating clients inside Spring Auth Server for Auth Code & PKCE grant type flows
  155. Урок 155. 00:02:59
    Updating Spring Auth Server to authenticate the end user using DB
  156. Урок 156. 00:07:29
    Auth Code & PKCE grant type flows demo with Spring Auth Server
  157. Урок 157. 00:03:11
    Refresh token grant type flow demo with Spring Auth Server
  158. Урок 158. 00:09:22
    Demo of Opaque Tokens with Spring Auth Server
  159. Урок 159. 00:01:37
    Thank You and Congratulations