eConsulting Group, Inc.eConsulting Group YouTube VideoseConsulting Group on FacebookAgile Experts Meetup GroupAgile and Project Management Training and Consulting Experts in LinkedIn
WDE14005 - Spring Security Training

WDE14005 - Spring Security Training

Duration: 2 days

Price: $997.5

Description

This in-depth course introduces the Java web developer to the Spring Security framework. We start with an overview and practical exercises in basic usage: XML configuration for authentication and URL-based authorization. Then we start to dig into Spring Security as a Java model, and develop advanced techniques including custom user realms, custom authorization constraints, method-based authorization, and instance-based authorization.

We then explore two increasingly popular extensions to Spring Security. We consider the Security Assertions Markup Language, or SAML, and the wide range of identity and security features it offers -- but quickly focus on it's support for single sign-on (SSO), and learn how the Spring Security SAML Extension enables applications to interact with SAML identity providers to implement SSO and single logout. And we look at OAuth for Spring Security, which enables third-party authorization scenarios, and learn how to implement both the server and client sides of the OAuth 2.0 flow.

Learning Objectives

• Configure Spring Security for HTTP BASIC authentication.
• Implement form-based authentication.
• Configure other authentication features including remember-me, anonymous users, and logout.
• Apply authorization constraints to URLs and URL patterns.
• Bind authorization roles to user accounts in relational databases.
• Plug application-specific user realms into Spring Security by implementing UserDetailsService.
• Implement application-specific authorization constraints as AccessDecisionVoters.
• Fix authorization constraints over individual methods of service beans, in lieu of URL authorization or in tandem with it.
• Express user identity in terms of SAML <Subject>s.
• Implement SAML SSO from the service-provider side.
• Implement OAuth 2.0 authorization-server and resource-server roles.
• Implement an OAuth 2.0 client.

Method of Delivery

• Onsite/Live class instructions or Online web conference
• Lectures
• Open discussion
• Case studies
• Surveys

eCG Logo XS

Chicago Downtown Location:
20 N. Wacker Dr. Suite 1200
Chicago, IL 60606

Direct: +1 (312) 804-9992
Office: +1 (312) 804-0772
Fax: +1 (312) 803-2223
Toll Free: (866) 482 8275

E-mail: info@ecgmn.com

 

All names and logos are registered trademarks of their respective owners.

eConsulting Group®, Agile Expert™, Business Analyst Expert™, Database Management Expert™, Hands On Project Management™, Healthcare IT Expert™, Human Resource Expert™, Link2Task™, Link2Project™, Management Expert™, Network Security Expert™, Office Management Expert™, Programming Expert™, Project Book™, Project Management Expert™, Project Management Specialist™, Project Manager Master Level™, Project2Market™, Renewable Energy Management Expert™, Six Sigma Expert™, Social Media Expert™, We Build Project Managers™, and Web Development Expert™ are registered certificates and trademarks of eConsulting Group, Inc.

PMI-ACP, PMI, CAPM, PMP, Project Management Professional, and PMBOK® Guide are registered marks of the Project Management Institute, Inc.

GI Bill® is a registered trademark of the U.S. Department of Veterans Affairs (VA). More information about education benefits offered by VA is available at the official U.S. government Web site at https://www.benefits.va.gov/gibill.

Copyright © 2019 eConsulting Group, Inc. All Rights Reserved. Please read our Privacy Policy.

Search