- Joined
- May 24, 2024
- Messages
- 264
- Reaction score
- 133
- Points
- 43
- Thread Author
- #1
Design and develop Spring applications that are secure right from the start.
In Spring Security in Action, Second Edition you will learn essential security skills including how to:
Implement and customize authentication and authorization
Set up all components of an OAuth 2/OpenID Connect system
Utilize CRSF and CORS configurations
Secure Spring reactive applications
Write tests for security configurations
Spring Security in Action, Second Edition is a revised version of the bestselling original, fully updated for Spring Boot 3 and Oauth2/OpenID Connect. This new edition covers the latest patterns for application-level security in Spring apps, demonstrating how Spring Security simplifies every step of the security process. Code samples and useful real-world examples give you hands-on experience of protecting your apps from common threats such as injection attacks and poor monitoring.
About the technology:
Spring Security is essential for any Java developer looking to master authentication and authorization in Spring apps. By adopting "secure by design" principles with Spring Security's out-of-the-box features, you can protect your apps from data theft and unauthorized intrusions.
About the book:
Spring Security in Action, Second Edition reveals the Spring Security techniques and tools you need to defend your apps against attack. In this book, author Laurentiu Spilca, a skilled Java and Spring developer, will teach you how to build your own authorization server, manage system users, configure secure endpoints, and prevent cross-site scripting and request forgery attacks. This new second edition delves into the OAuth 2/OpenID Connect stack and details SecurityFilterChain for security configuration. Don't let security be an afterthought. Start protecting your apps from the first line of code!
Security is paramount in software development, and integrating it from the onset is essential. Spring Security in Action, Second Edition dives deeply into using Spring Security to infuse application-level security into your projects. Mastery of Spring Security and its correct application is indispensable for every developer. Delving into an application's construction without this knowledge is a risk too great to take.
Spring Security is the primary choice for implementing application-level security in Spring applications. Generally, its purpose is to offer you a highly customizable way of implementing authentication, authorization, and protection against common attacks. Spring Security is open source software released under the Apache 2.0 license. You can access its source code on GitHub. I highly recommend that you contribute to the project as well. You can use Spring Security for both standard web servlets and reactive applications, as well as non-web apps. In this book, we'll use Spring Security with the latest Java long-term supported, Spring, and Spring Boot versions (Java 21, Spring 6, and Spring Boot 3). However, all the book's examples also work with Java 17, the previous long-term supported version.
About the reader:
For experienced Java and Spring developers. All examples in this book use Java. Given the widespread adoption of Java in the Spring ecosystem, it's assumed readers have a working knowledge of it. However, while some professionals might use languages like Kotlin, the foundation remains similar. The examples can be conveniently adapted to Kotlin if desired.
About the author:
Laurentiu Spilca is a skilled Java and Spring developer and an experienced technology instructor. He is also the author of Manning's Spring Start Here and Troubleshooting Java.
Develop Spring applications that are secure from the start.
In Spring Security in Action, Second Edition, you'll learn essential security skills, including how to:
Implement and configure authentication and authorization
Configure all components of the OAuth 2/OpenID Connect system.
Use CRSF and CORS configurations
Secure reactive Spring applications
Write tests for security configurations
Spring Security in Action, Second Edition is a revised version of the original best-selling book, completely updated for Spring Boot 3 and Oauth2/OpenID Connect. This new edition explores the latest application-level security patterns in Spring apps, demonstrating how Spring Security simplifies every step of the security process. Code samples and useful real-world examples will help you practice protecting your applications from common threats such as injection attacks and poor monitoring.
About the technology:
Spring Security is essential for any Java developer who wants to master authentication and authorization in Spring apps. By applying "security by design" principles with out-of-the-box Spring Security features, you can protect your applications from data theft and unauthorized intrusion.
About the Book:
Spring Security in Action, Second Edition, reveals the Spring Security techniques and tools you need to protect your applications from attacks. In this book, author Laurentiu Spilca, an experienced Java and Spring developer, teaches you how to create your own authorization server, manage system users, configure secure endpoints, and prevent cross-site scripting and request forgery attacks. This new second edition explores the OAuth 2/OpenID Connect stack and details the SecurityFilterChain for configuring security. Don't leave safety as an afterthought. Start protecting your applications from the first line of code!
Security is of utmost importance when developing software, and it is important to implement it from the very beginning. Spring Security in Action, Second Edition, takes an in-depth look at using Spring Security to provide application-level security in your projects. Knowledge of Spring Security and its correct application is necessary for every developer. Going deeper into app development without this knowledge is too much of a risk to take.
Spring Security is the primary tool for providing application-level security in Spring applications. Generally, its goal is to offer you an easily configurable way to implement authentication, authorization, and protection against common attacks. Spring Security is open source software released under the Apache 2.0 license. You can access its source code on GitHub. I strongly encourage you to contribute to this project as well. You can use Spring Security for both standard web servlets and reactive applications, as well as non-web applications. In this book, we will use Spring Security with the latest long-term support versions of Java, Spring, and Spring Boot (Java 21, Spring 6, and Spring Boot 3). However, all of the examples in the book also work with Java 17, the previous version with long-term support.
About the reader:
For experienced Java and Spring developers. All examples in this book use Java. Given the widespread use of Java in the Spring ecosystem, it is assumed that readers have a working knowledge of it. However, while some professionals may use languages like Kotlin, the fundamentals remain similar. If desired, the examples can be easily adapted to Kotlin.
About the author:
Laurentiu Spilka is an experienced Java and Spring developer and technology instructor. He is also the author of Spring Start Here and Troubleshooting Java.
