Hands-On Spring Security 5.x

Hands-On Spring Security 5.x

image description

What you will learn

  • Get to know Spring Security and its concepts

  • Explore Spring Security Advanced configuration tips

  • Distinguish between Authorization and Authentication

  • Implement a custom Authentication mechanism

  • Integrate OAuth2 mechanism with your application to make it more secure

  • Define roles with Spring Security Authorization

  • Prevent common attacks such as CORS and CSRF with proper spring-security configuration


Section 1: Starting Application Guarded by Spring Security

Section 2: Create Custom Authentication and Integrate It with Spring MVC

Section 3: Using OAuth 2 with Spring Boot Microservice

Section 4: Custom Authorization with Servlet API and Reactive API

Section 5: Preventing Common Attacks with Spring Security

Course Description

A hands-on guide to secure and prevent your web apps and RESTful services from being hacked using Spring Security 5.1.1


  • No previous experience with Spring Security is assumed.


Securing your application from hackers is the most high-pressure concerns for developers. In this course, you’ll learn how to protect your Java application from malicious attacks and users with the Spring Security framework.

You’ll integrate Spring Security into your application using the Spring frameworks through practical, hands-on examples. You’ll see how to secure your web application, integrate authentication and authorization mechanisms, and restrict access to your application. You’ll discover how to integrate it with popular frameworks such as Spring Web MVC, Spring-Boot, Spring-Data, Servlet API injection, and more.

We’ll cover the security challenges with Reactive web apps built for the cloud, RESTful web services, and microservice architectures with the Spring framework. You’ll also implement techniques for protection against attacks such as session fixation, clickjacking, cross-site request forgery, and more.

By the end of the course, you’ll understand common security vulnerabilities and be able to prevent them with Spring Security, with an empirical approach to securing your web applications.

About the Author

Tomasz Lelek is a Software Engineer who programs mostly in Java and Scala. He has worked with Spring Applications and Microservices for the past 5 years. He is passionate about nearly everything associated with software development and believes we should always try to consider different solutions and approaches before solving a problem.

Recently, he was a speaker at conferences in Poland: Confitura and JDD (Java Developers Day), and at Krakow’s Scala User Group. He has also conducted a live coding session at Geecon Conference. He is a co-founder of initlearn, an e-learning platform that was built with the Spring Framework and Java Language. He has also written articles about everything related to the Java and Spring world

Who this course is for:

  • This course is for Java and Kotlin developers who can build applications using Java and Spring Framework and now want to secure their applications.