Spring Security Fundamentals - Lesson 7 - Method authorization - Part 1

preview_player
Показать описание
In this stream, we discuss Spring Security using the latest available version in 2022. We'll discuss configurations for authentication and authorization, tips and tricks, how to learn Spring Security, vulnerabilities, OAuth 2, and many more.
  1. Laur Spilca
Рекомендации по теме
Spring Security Fundamentals 1:02:00

Spring Security Fundamentals - Lesson 1 - First steps

Spring Security Fundamentals 0:23:25

Spring Security Fundamentals - Lesson 10 - Spring Security configurations with Spring Boot 3

Spring Security Fundamentals 1:12:00

Spring Security Fundamentals - Lesson 2 - Managing users

Spring Security Fundamentals 0:56:06

Spring Security Fundamentals - Lesson 9 - OAuth 2 Fundamentals

Spring Security Fundamentals 0:56:11

Spring Security Fundamentals - Lesson 17 - Multitenancy - Part 1

Remastered Webinar: Spring 1:12:53

Remastered Webinar: Spring Security Fundamentals

Spring Security Fundamentals 0:59:13

Spring Security Fundamentals - Lesson 5 - Endpoint authorization - Part 1

Spring Security Fundamentals 0:36:20

Spring Security Fundamentals - Lesson 19 - CORS

Spring Security Fundamentals 1:04:45

Spring Security Fundamentals - Lesson 8 - Method authorization - Part 2

#3 Spring Security 0:57:59

#3 Spring Security Fundamentals | Basic Authentication Vs Form-Based Authentication | FULL COURSE

Spring Security Fundamentals 0:35:56

Spring Security Fundamentals - Lesson 7 - Method authorization - Part 1

Spring Security Fundamentals 0:59:05

Spring Security Fundamentals - Lesson 14 - The OAuth2 Resource Server - Part 1

Spring Security Fundamentals 1:05:20

Spring Security Fundamentals - Lesson 4 - Multiple authentication providers

What is Spring 0:06:09

What is Spring Security?

Spring Security Tutorial 2:38:19

Spring Security Tutorial | In depth Course

Spring Security Fundamentals 0:02:20

Spring Security Fundamentals Course Launch

What is Spring-Boot 0:04:46

What is Spring-Boot Framework? (explained from scratch)

Spring Security Fundamentals 0:41:40

Spring Security Fundamentals - Lesson 22 - Security Integration Tests - Part 2

Spring Security Fundamentals 0:46:46

Spring Security Fundamentals - Lesson 16 - The OAuth2 Client

Spring Boot 3 2:05:52

Spring Boot 3 + Spring Security 6 - JWT Authentication and Authorisation [NEW] [2023]

Spring Security Fundamentals 0:59:41

Spring Security Fundamentals - Lesson 3 - Custom authentication

Spring Security Fundamentals 0:58:50

Spring Security Fundamentals - Lesson 12 - The OAuth2 Authorization Server - Part 2

Spring Boot Tutorial 1:37:31

Spring Boot Tutorial | Full Course [2023] [NEW]

Spring Security Fundamentals 0:41:50

Spring Security Fundamentals - Lesson 20 - Securing Reactive Apps

Комментарии
Автор

I was just learning Spring and I put authorization in both the filter and on the method level and I was wondering why the method level isn't working. This is what in depth knowledge does. Thank you sir! You just saved me a lot of time with debugging.

gamar
Автор

Thank you for sharing your knowledge with us.

lunatichigh
Автор

thanks to Olga Lugacheva for asking such an important question ! and thanks to laur to explain it clearly
🙂

nimacode
Автор

Hello Laurentiu. Why don't you write `isAuthenticated()` method inside @PreAuthorize annotation? Because probably I don't want to make user authenticated for all the endpoints. And also, is it mandatory to be authenticated to authorize? I would expect 403 in this case as well (If you haven't written `isAuthenticated()` anywhere, but used @PreAuthorize()). Thanks.

jolskey
Автор

Oh, I came back to this series after 1 week break and I was quite confused after this lesson about what I learned before. So I need to double check when and how I should use @EnableGlobalMethodSecurity (in previous lessons it was not used if I remember well) and how to mix configuration of the securityFilterChain with @PreAuthorize on the method level

KamilZgon
Автор

I have a question. Can we have multiple @Configuration classes with which we can configure multiple controllers (for each controller to have SecurityFilterChain bean) or the SecurityFilterChain gets overridden every time we add a new bean of it. Or it just throws an exception if we attempt to have more than one?

Lallushe
Автор

Laur, how we can write tests for PreAuthrize annotations ?

Joseph-oztx
Автор

Hi, when I set permitAll() spesific endpoint, and I sent request with authentication, endpoint, which I set it permitAll, returned 401 code, but if I sent request without authentication returned 200 ok.

how can I handle it?

rozkurt
Автор

Hello, im just interested, are you Java Senior Engineer?

VladShtaiier
Автор

This video looks incomplete somehow. Maybe some issue while uploading?

ArfatBinkileb
Автор

why video did the video cut after 35 min? I feel you was continuing to explain something else.

Joseph-oztx
Автор

As far as I know @EnableGlobalMethodSecurity is also deprecated now. Can I use @EnableMethodSecurity instead with the same parameters?

davidkovacs