Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Hands-On Spring Security 5 for Reactive Applications
  • Table Of Contents Toc
  • Feedback & Rating feedback
Hands-On Spring Security 5 for Reactive Applications

Hands-On Spring Security 5 for Reactive Applications

By : John
3 (2)
Buy this Book
close
close
Hands-On Spring Security 5 for Reactive Applications

Hands-On Spring Security 5 for Reactive Applications

3 (2)
By: John
Buy this Book

Overview of this book

Spring Security enables developers to seamlessly integrate authorization, authentication, and a range of security features for complex enterprise applications. This book provides a hands-on approach to developing reactive applications using Spring and will help you get up and running in no time. Complete with step-by-step explanations, practical examples, and self-assessment questions, the book begins by explaining the essential concepts of reactive programming, Spring Framework, and Spring Security. You’ll then learn about a variety of authentication mechanisms and how to integrate them easily with a Spring MVC application. You’ll also understand how to achieve authorization in a Spring WebFlux application using Spring Security. Furthermore, the book will take you through the configuration required to implement OAuth2 for securing REST APIs, and guide you in integrating security in microservices and serverless applications. Finally, you’ll be able to augment add-ons that will enhance any Spring Security module. By the end of the book, you’ll be equipped to integrate Spring Security into your Java enterprise applications proficiently.
Table of Contents (9 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Free Chapter
1
Overview of Spring 5 and Spring Security 5
Icon
Overview of Spring 5 and Spring Security 5
Icon
How examples are structured
Icon
New-generation application requirements
Icon
Reactive programming
Icon
Reactive applications
Icon
Spring Framework
Icon
Reactive Landscape in Java
Icon
Spring Framework and reactive applications
Icon
Application security
Icon
Spring Security
Icon
Spring Security's core features
Icon
Spring Security 5's new features
Icon
Working of Spring Security
Icon
Core Spring Security modules
Icon
Summary
2
Deep Diving into Spring Security
Icon
Deep Diving into Spring Security
Icon
Authentication
Icon
Sample application
Icon
Authorization
Icon
Other Spring Security capabilities
Icon
Summary
3
Authentication Using SAML, LDAP, and OAuth/OIDC
Icon
Authentication Using SAML, LDAP, and OAuth/OIDC
Icon
Security Assertion Markup Language
Icon
Lightweight Directory Access Protocol
Icon
OAuth2 and OpenID Connect
Icon
Summary
4
Authentication Using CAS and JAAS
chevron up
Icon
Authentication Using CAS and JAAS
Icon
CAS
Icon
Java Authentication and Authorization Service
Icon
Kerberos
Icon
Custom AuthenticationEntryPoint
Icon
PasswordEncoder
Icon
Custom filters
Icon
Summary
5
Integrating with Spring WebFlux
Icon
Integrating with Spring WebFlux
Icon
Spring MVC versus WebFlux
Icon
Reactive support in Spring 5
Icon
Spring WebFlux
Icon
Spring WebFlux authentication architecture
Icon
Spring WebFlux authorization
Icon
Sample project
Icon
Customization
Icon
Summary
6
REST API Security
Icon
REST API Security
Icon
Important concepts
Icon
Modern application architecture
Icon
Reactive REST API
Icon
Simple REST API security
Icon
Advanced REST API security
Icon
Spring Security OAuth project
Icon
OAuth2 and Spring WebFlux
Icon
Spring Boot and OAuth2
Icon
Sample project
Icon
Summary
7
Spring Security Add-Ons
Icon
Spring Security Add-Ons
Icon
Remember-me authentication
Icon
Session management
Icon
CSRF
Icon
CSP
Icon
Channel security
Icon
CORS Support
Icon
The Crypto module
Icon
Secret management
Icon
HTTP Data Integrity Validator
Icon
Custom DSL
Icon
Summary
8
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

PasswordEncoder

Before Spring Security 5, the framework allowed only one PasswordEncoder throughout the application and also had weak password encoders such as MD5 and SHA. These encoders also didn't have dynamic salt, rather it had more static salt which had to be supplied. With Spring Security 5, there have been huge changes in this area and with the new version, the password encoding concept employs delegation and allows multiple password encoding within the same application. The password which has been encoded has a identifier prefixed to indicate what algorithm has been used (see the following example):

{bcrypt}$2y$10$zsUaFDpkjg01.JVipZhtFeOHpC2/LCH3yx6aNJpTNDOA8zDqhzgR6

This approach enables multiple encoding as needed within the application to be employed. If no identifier is mentioned, this means it uses the default encoder, which is StandardPasswordEncoder.

...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 6
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY