Goals
- Building Secure Java EE Applications with Spring Security
Program
Security aspects in a Java EE
Spring Security application: presentation, functions
Framework architecture
Dependencies, configuration (XML or annotations)
Authentication mechanisms (authenticationProvider):
– users in memory
– link to a database
– link to an LDAP directory
Login / logout pages
Spring objects: SecurityContext, Authentication
Implementation of web filters:
– main filters
– Basic vs Digest authentication
– Implementation of a Remember Me
– anonymous authentications Session
management: information, concurrency
Authorization management:
– on requests
– on objects and methods
– by role and by authentication type
Integration with the Servlet API
Password encoding
Localization of
Taglib Spring Security
Injection messages in a test context
Securing WebSockets
Management of CSRF (Cross Site Request Forgery) attacks
Configuration of http response headers: security, cache
Relational model vs document-oriented model (NoSQL)
MongoDB: presentation, functionalities, configuration
MangoDB infrastructure: definition, optimization
Mongo repositories
Inserting and modifying
Spring data MongoDB data: principle, functionalities
MongoDB – Spring coupling: dependencies, configuration
Queries and results processing
Management errors
Duration
2 days
Price
£ 1241
Audience
Java EE Developers
Prerequisites
Master object-oriented programming in Java
Reference
JAV100309-F
Sessions
Contact us for more informations about session date