Spring Security - Lesson 10 - (Cross-Origin Resource Sharing) CORS

preview_player
Показать описание
The Spring Security stream will teach you how to use Spring Security, from the basic authentication and authorization architecture to using OAuth 2.

Рекомендации по теме
Комментарии
Автор

⭐ Timestamps ⭐

- 2:22 CORS
- 21:00 QA on Controller vs Rest Controller
- 28:00 what CORS can't protect as opp. to CSRF
- 35:00 How to relax CORS for some Origins
- 47:35 CORS Summary, It protects Client, not Server(ie Website2)

cooool
Автор

Thanks you sir. I watched your few videos of spring security and liked those.

arvindsinha
Автор

thanks for all clarifications.explanation very clear

lieutneautnacer
Автор

your lectures are awesome, thanks very much and God bless you for making these courses free. Mean while what about the course on microservices ?

ugochukwu.chigozie
Автор

Hi
You used to play guitar also that is nice and your lectures are awesome. I am waiting for the micro-service streaming.

amitkushwaha
Автор

Hey. But what if I create a @Bean of type CorsFilter in my main class in which I create a CorsConfiguration object and use it to set all the headers/origins/credentials/methods/etc, then I create a object and use it to register a configuration which will be the CorsConfiguration from earlier, then return a new ? Is this something that I should write in every project like a so-called "boilerplate code" to get rid of the CORS related problems? Thanks!

mihaicosminmavrodin
Автор

Hello, you said you should make a seperate configuration class for the CORS, but how do you suggest doing this? I am having trouble understanding how to define a Bean for this when the signature of cors() is "public HttpSecurity corsCustomizer)"

SophieExMachina
Автор

Hey sir, thank you for the video, I had followed the code that you explained and try it with Front End, buat why my Front End still got Cors Policy? I also had tried another code like used @CrossOrigin but it doesn't work. Thank you

vinncentalexanderwong
Автор

THANKS A LOT, could i have roadmap or which playlist to be a java developer with spring and angular

abusafiaayman
Автор

Hello Laurentiu. I could not understand why should we avoid using @CrossOrigin in real world applications having multiple profiles? Can you please elaborate?

knowledgeseeker
Автор

What if 2nd website is malicious and allows all origins and hacker injects a script to fetch data from this malicious website ? Can SORS prevent this or it's beyond scope of CORS

cooool
Автор

How will i manage DELETE? DELETE not working with @CrossOrigin or setAllowedMethods().

emrozk
Автор

what's the main reason for rewriting the auth server? what would the new improvements be?

acronis
Автор

Sir angular I get error cross origin.backend code or server side code springboot security i used i enal @crossorigin not work for me .I add application.proprty file access origin, header, methods not work and you write chain methods look like headeacess origin methods like that not worked and also get 401 unauthorized sir I create user name and password along with url include header also username and password serviside also application.proprty file same username and password our own username and password not raw password spring generated password not work cross origin error or 401 error I see different way you do cross origin error fix tomorrow I do work or not for me

krishnashauzshenikala
Автор

who decide if the preflight request will be sent first or the request will be sent directly ?

abdullarazeq
Автор

Sir use eclipse ide very comfortable to all persons

krishnashauzshenikala