How To Secure Your Spring App With Multi-factor Authentication

Показать описание

Hey friends! This is the long overdue follow-up to my TOTP tutorial. Using the latest Spring Boot and Spring Security versions, I show you how to implement Multi-Factor Authentication (MFA) based on time-based one-time passwords in this tutorial.

⚡ *Danger Zone*
This code disables some sensitive defaults in Spring Security. Don't just blindly copy the code as is! Make sure you know what you are doing and understand the implications. Also, if you spot any mistakes or you see me saying the wrong things, call me out for it in the comments!

🍃 *Code & Resources*

🙌 *Get in Touch*

🎙 *Gear & Links*

_I may earn a small commission for purchases made through the following links at no additional cost to you._

🍿 *Subscribe*
Want to see more tech tutorials? Subscribe now!

Рекомендации по теме

Комментарии

Thanks for the video! It`s very cool and useful =)

АлександрБугримов-ое

You have a very good content in here, I must say this is one of the best spring security tutorial on YouTube... But you didn't cover a case where the user removed the application from the authenticator. e.g I have been authenticated by application xyz and mistakenly removed xyz from my authenticator, how can one be reauthenticate so xyz is added again to the authenticator?

adeleyejeremiah

for me the application is not working as expected. Can you tell me what is the username password you are using and how to use spring mfa screen with ip address?

madhuppandey

Any pointer on what changes would be required when having a login page and (optionally) requesting the otp on the following page ?

what if a user lost his mobile phone and wants to reset mfa?

bharathimohan

How To Secure Your Spring App With Multi-factor Authentication

HOW to SECURE your SPRING BOOT app | Live Coding with Greg

Spring Security JWT: How to secure your Spring Boot REST APIs with JSON Web Tokens

SPRING BOOT + SPRING SECURITY: Learn how to SECURE a Spring Boot app in this tutorial!

Spring boot 3.0 - Secure your API with JWT Token [2023]

Spring Boot with Spring Security - How to secure your Spring Boot web services using Spring Security

How to secure your spring app with oauth2 and spring security.

10 Excellent Ways to Secure Your Spring Boot Application by Brian Vermeer & Matt Raible

Easily secure and add Identity Management to your Spring Boot applications by Sebastien Blanc

Spring Boot Microservices (Part 3): JWT Authentication & Secure API Endpoints

How to use OAuth2 for authentication and authorization to secure your Spring applications

Use Jwt and the Roles to Secure Your Fullstack ReactJS and Spring Boot / Spring Security

54 - Spring Boot : How to secure our REST API using Spring Security in Spring Boot? | Almighty Java

How To Secure Your Spring App With Multi-factor Authentication

Brooks England | How to secure your spring assembly

Spring Security Course Preview | Learn to secure your Web Apps | spring security course free

How to Easily Secure Your Fullstack ReactJS - Spring Boot Application With the JWT Authentication

Secure your REST APIs with Spring Security & Symmetric Key Encryption

10 Excellent Ways to Secure Your Spring Boot Application

...and HOW does OAUTH help SECURE my SPRING BOOT 3 app?

Easily secure your Spring Boot applications with Keycloak - Part 2

[VDZ19] How to secure your Spring apps with Keycloak by Thomas Darimont

How to Secure Spring Rest API in Spring Boot 3 | Spring Boot 3 Security Configuration

[Spring Boot Security] #13 Secure REST Controllers

How to secure your Web Application in Spring Security Configuration with Database and REST API