Spring Security Architecture Principles by Daniel Garnier-Moiroux @ Spring I/O 2024

preview_player
Показать описание
Spring I/O 2024 - Barcelona, 30-31 May

When you need to secure your application, you use Spring Security. It’s the de-facto standard, it’s robust, extensible, and brings sensible defaults to your application. But newcomers can feel lost as soon as they step out of the “Getting Started” guides and need to fine-tune the configuration to their specific use-cases. Developers can find themselves frantically copy-pasting from Stack Overflow until it kinda-sorta works.

Spring Security only uses a handful of core building blocks, and they are present everywhere in the library. Knowing what those are, how they are meant to be used, and how to effectively leverage them will give you the keys you need to implement all your custom needs.

This session aims to provide a useful method for understanding Spring Security’s architecture, and how to customize it. Through some theory (diagrams!) and practice (live coding!), you will get familiar with the general architecture, foundational patterns and common abstractions. No more foraging StackOverflow in despair!
  1. Spring I/O
Рекомендации по теме
Spring Security Architecture 0:48:25

Spring Security Architecture Principles by Daniel Garnier-Moiroux @ Spring I/O 2024

Spring Security From 0:10:40

Spring Security From Beginner to Pro: A Journey Through Spring Security Architecture

Spring Security: The 0:45:09

Spring Security: The Good Parts by Daniel Garnier-Moiroux

Spring Security: The 0:49:33

Spring Security: The Good Parts by DANIEL GARNIER-MOIROUX

Spring Security, demystified 2:36:00

Spring Security, demystified by Daniel Garnier Moiroux

Spring Security explained 0:16:51

Spring Security explained with no code

Spring Security: Authentication 1:08:44

Spring Security: Authentication Architecture Explained in Depth

Spring security architecture 0:31:34

Spring security architecture overview | for web apps

How does Spring 0:20:17

How does Spring Security Authentication work internally | JavaTechie

Architecture Deep Dive 0:52:22

Architecture Deep Dive in Spring Security - Joe Grandja @ Spring I/O 2017

Spring Security Patterns 0:54:26

Spring Security Patterns

Architecture Deep Dive 0:47:44

Architecture Deep Dive in Spring Security

Architecting Spring 5 0:09:51

Architecting Spring 5 Applications: Spring Security and Its Architectural Design|packtpub.com

Spring security filter 0:08:35

Spring security filter chain explained | Architecture

Building Layers of 0:55:43

Building Layers of Defense for Your Application Using Spring Security Framework

Spring Security 6: 0:40:23

Spring Security 6: The Next Generation

Don't Let the 0:20:25

Don't Let the BAD GUYS In: How to Use Spring Security

Spring Security Core 0:04:56

Spring Security Core Concepts | Principal, Granted Authority and Roles In Simplest Explanation

Spring Boot Security 0:11:49

Spring Boot Security - UserDetailsService & AuthenticationManager

Spring Boot 3.0 1:52:12

Spring Boot 3.0 + Spring Security 6 | JWT Authentication & Authorization

Spring Security - 0:57:37

Spring Security - How to implement both roles & authorities in the DB?

OAuth2, OpenID: live 0:49:07

OAuth2, OpenID: live coding SSO, from first principles By Daniel Garnier Moiroux

Unraveling The Mystery 6:22:45

Unraveling The Mystery : Spring security Internals and Architecture step - by - step | EP: #8 - #13

Spring Boot and 2:06:49

Spring Boot and Spring Security with JWT including Access and Refresh Tokens 🔑

Комментарии
Автор

the best thing about this session is that i learned spring security and Spanish both in best way

knight
Автор

This session is fantastic! It simplifies and condenses the essence of Spring Security into one brief session. Love it!

ShubhamYadav-ltdt
Автор

This session is great because it simplifies and condenses the core of Spring Security in one short session. Love it! Great session!

jesprotech
Автор

it is a very interesting presentation of the material, you do not fall asleep in the first minute of the story. That's how the presentation should be! thank you

johnsandwich
Автор

You oversimplified things, many thanks

aminesafi
Автор

This is a great talk and it's been featured in the last issue of Tech Talks Weekly newsletter 🎉
Congrats Daniel! 👏

TechTalksWeekly
Автор

excellent explanation. been struggling to really get it and this just made it so accessible. the info just passed all my brain's filters and is all sending back 200's! ;)

gkswtgg
Автор

the most interesting presentation that I have seen.

huythong
Автор

Really nice security essentials lecture

deolexx
Автор

my best part is how fast the project is recompiled and can be tested on the browser, vite but for backend dev haha
I wonder if it recompiles as fast when the project is massive 🤔

ilkou
Автор

13:16 a question. If we are using Client Credentials flow, should we put the same filter or ti will be something like

djoleezcool
Автор

I don’t get why people hate Spring Security. Whenever I learn a new language, I wish it had something close to Spring Security.

xdeama
Автор

at 27:47 he said to pretend that there is no existing solution and built a custom one. so, is there any existing solution?

alzamer
Автор

It's simple if you get it and it's not if you don't. This security model is really not beginner friendly. These are a lot of concepts

davidtheprogrammer
Автор

spring security configuration.. shudder

marcux
Автор

the whole thing is kinda overcomplicated and keep carrying the decades old baggages.

tashi
Автор

What about the Reactive web stack? We don’t have a “filter” there right?

samuelvishesh