You can use this guide to understand what Spring Security is and how its core features like authentication, authorization or common exploit protect...
For further actions, you may consider blocking this person and/or reporting abuse
I'm halfway through, will read everything for sure since I believe security is way too important for us developers to not understand how it works... but I felt the need to come here and congratulate you for this comprehensive, complete and "unicorn-worthy" content!
Not only the content is complete but it's so much well written that i didn't even notice the last forty minutes I spent reading this article and two others linked here.
Man, I envy your writing skills! =)
Thank you very much for your kind words, Bruno!
That’s a really extensive guide, well done! I’ve had my fair share with almost everything that’s in this article, so I really appreciate you writing everything down! Nice job.
I will bookmark this and share it among my colleagues! :)
Thanks!
TLDR;
Kidding. Went through all of it only to find the one useful section missing 😂. Waiting for OAuth2 article now.
Great work on the in depth article here though. It's quite extensive and well writ.
Everyone seems to be waiting for Oauth ...:D Will keep you posted.
Thanks!
Wouldn't surprise me. A lot of companies are using to it.
Didn't read everything, as it is too long for me.
But I bookmarked it.
I got through everything quickly and it just looks like a complete training about these topics.
Thank you for sharing that and to write all of it (I'm sure it takes you so much time).
If you ever feel bored...feel free to get back to it :)
I did a course on spring security and i felt lost after I was just copying code. I wanted to stop security completely. This article is amazing I understand completely and cannot wait to do a full project with front end.
In my opinion Spring Security is one of the most complicated Spring's module. So I'm happy that you wrote in depth article.
In my company we are using keycloak to simplify user management (integrations, reseting password, "remember me", etc), highly recomented.
Yup, Keycloak is a pretty popular choice nowadays.
Hey, habe gerade deinen detaillierten Blog Post zu Spring Security und Authentication/Authorization gelesen. Echt sehr gut geschrieben und konnte eine Menge mitnehmen. Habe mich selbst in den letzten Monaten näher mit WebAuthn / Passkeys als Authentication-Möglichkeit beschäftigt - hast Du das mit Spring auch mal implementiert?
do you have any example repos for your code?
Great write up! Kudos!
Sorry, there's no example code repo at the moment.
Someone sent me a link to the cyber symposium that's going on now. See it here: trunews.com/stream/mike-lindells-c.... What do you guys think about that?