Autoplay
Autocomplete
Previous Lesson
Complete and Continue
Spring Security
Lets Bootstrap
Join the Community
Quick word before we start (0:41)
Course Links
Newsletter
Lets Bootstrap the app (3:07)
Running Application with IntelliJ (4:27)
Lets Build an API (6:49)
Getting Started with Spring Security
Installing Spring Boot Security (2:58)
Form Based Auth Overview (5:06)
Understanding Basic Auth (3:06)
Basic Auth (5:27)
Postman (3:49)
Ant Matchers (4:27)
Users Roles and Authorities
Application Users Overview (3:07)
InMemoryUserDetailsManager (4:43)
PasswordEncoder (5:21)
Roles and Permissions (2:55)
Creating an Admin User (1:39)
Implement Role and Permissions Using enums (9:12)
Role Base Authentication (6:09)
Permission Based Authentication
Permission Based Authentication Overview (2:48)
Build Management API (5:38)
Test API and Disable CSRF (7:45)
hasAuthority (3:55)
Setting authorities to users (8:27)
Permission Based Authentication in Action (3:10)
Order does matter with Ant Matchers (2:29)
preAuthorize (5:40)
Cross Site Request Forgery
Understanding CSRF (6:24)
CSRF Token (4:39)
How Token Generation works (4:13)
Disable CSRF Again (1:45)
Form Based Authentication
Intro to Form Based Authentication (2:50)
Enable Form Based Authentication (3:19)
SESSION ID (3:34)
Custom Login Page (8:20)
Redirect After Success Login (2:15)
Remember Me (5:16)
Remember Me Cookie and Extra Options (4:49)
Logout (8:16)
Logout Button (4:14)
password, username and remember-me parameters (2:23)
Database Authentication
Database Authentication Overview (3:47)
ApplicationUser Model (4:50)
ApplicationUserService (2:21)
ApplicationUserDao Interface (3:33)
FakeApplicationUserDaoService (9:51)
DaoAuthenticationProvider (4:12)
Testing Database Authentication (4:13)
Quick word on Database Authentication (1:25)
JSON Web Tokens
Introduction to JWT (6:55)
Java JWT Library (3:46)
JwtUsernameAndPasswordAuthenticationFilter attemptAuthentication (8:12)
JwtUsernameAndPasswordAuthenticationFilter successfulAuthentication (7:11)
Request Filters (2:09)
Filters and Stateless Sessions (3:51)
JwtUsernameAndPasswordFilter in action (7:29)
JwtTokenVerifier Filter (14:08)
JwtTokenVerifier in action (9:15)
JWT Config Class (10:09)
JWT Config in action (5:30)
Quick work on JWT (1:15)
Lets wrap up
Final say (1:12)
Next steps
Database Authentication Overview
Lesson content locked
If you're already enrolled,
you'll need to login
.
Enroll in Course to Unlock