Mid Month offer - Upto 25% off | OFFER ENDING IN:

  • Home
  • [email protected]
  • +91 8447121833 / 0120 4326873
  • Thanks for Contacting us Our representative will be in touch with you shortly

    This website uses cookies

    Spring Security Training

    This in-depth course introduces the Java web developer to the Spring Security Training framework. We start with an overview and practical exercises in basic usage: XML configuration for authentication and URL-based authorization. Then we start to dig into Spring Security training as a Java model, and develop advanced techniques including custom user realms, custom authorization constraints, method-based authorization, and instance-based authorization.
    We then explore two increasingly popular extensions to Spring Security. We consider the Security Assertions Markup Language, or SAML, and the wide range of identity and security features it offers — but quickly focus on it’s support for single sign-on (SSO), and learn how the Spring Security SAML Extension enables applications to interact with SAML identity providers to implement SSO and single logout. And we look at OAuth for Spring Security, which enables third-party authorization scenarios, and learn how to implement both the server and client sides of the OAuth 2.0 flow. .Enroll & Get Certified now!

    • ✔ Course Duration : 32 hrs
    • ✔ Training Options : Live Online / Self-Paced / Classroom
    • ✔ Certification Pass : Guaranteed

    Spring Security Training

    This in-depth course introduces the Java web developer to the Spring Security Training framework. We start with an overview and practical exercises in basic usage: XML configuration for authentication and URL-based authorization. Then we start to dig into Spring Security training as a Java model, and develop advanced techniques including custom user realms, custom authorization constraints, method-based authorization, and instance-based authorization.
    We then explore two increasingly popular extensions to Spring Security. We consider the Security Assertions Markup Language, or SAML, and the wide range of identity and security features it offers — but quickly focus on it’s support for single sign-on (SSO), and learn how the Spring Security SAML Extension enables applications to interact with SAML identity providers to implement SSO and single logout. And we look at OAuth for Spring Security, which enables third-party authorization scenarios, and learn how to implement both the server and client sides of the OAuth 2.0 flow.

    What you will Learn

    • Configure Spring Security for HTTP BASIC authentication.
    • Implement form-based authentication.
    • Configure other authentication features including remember-me, anonymous users, and logout.
    • Apply authorization constraints to URLs and URL patterns.
    • Bind authorization roles to user accounts in relational databases.
    • Plug application-specific user realms into Spring Security by implementing UserDetailsService.
    • Implement application-specific authorization constraints as AccessDecisionVoters.
    • Fix authorization constraints over individual methods of service beans, in lieu of URL authorization or in tandem with it.
    • Express user identity in terms of SAML.
    • Implement SAML SSO from the service-provider side.
    • Implement OAuth 2.0 authorization-server and resource-server roles.
    • Implement an OAuth 2.0 client.

    PREREQUISITES

    • Java programming
    • Experience with the Spring framework
    • Basic knowledge of XML
    • Some servlets and/or JSP experience will be beneficial for purposes of understanding the impact of each security feature that we configure. There is no web-application coding involved in the Spring Security Training course.

    CURRICULUM

    Learning Objectives:
    • Acquiring and Integrating Spring Security
    • Relationship to Spring
    • Relationship to Java EE Standards
    • Basic Configuration
    • How It Works
    • Integration: LDAP, CAS, X.509, OpenID, etc.
    • Integration: JAAS
    Learning Objectives:
    • The http Configuration
    • The intercept-url Constraint
    • The form-login Configuration
    • Login Form Design
    • “Remember Me”
    • Anonymous “Authentication”
    • Logout
    • The JDBC Authentication Provider
    • The Authentication/Authorization Schema
    • Using Hashed Passwords
    • Why Hashing Isn’t Enough
    • Using Salts
    • PasswordEncoder and SaltSource
    • Key Lengthening
    • Channel Security
    • Session Management
    Learning Objectives:
    1. URL Authorization
    2. Programmatic Authorization: Servlets
    3. Programmatic Authorization: Spring Security
    4. Role-Based Presentation
    5. The Spring Security Tag Library
    Learning Objectives:
    • The Spring Security API
    • The Filter Chain
    • Authentication Manager and Providers
    • The Security Context
    • Plug-In Points
    • Implementing UserDetailsService
    • Connecting User Details to the Domain Model
    Learning Objectives:
    • Authorization
    • FilterSecurityInterceptor and Friends
    • The AccessDecisionManager
    • Voting
    • Configuration Attributes
    • Access-Decision Strategies
    • Implementing AccessDecisionVoter
    • The Role Prefix
    Learning Objectives:
    • Method Authorization
    • Using Spring AOP
    • XML vs. Annotations
    • @PreAuthorize and @PostAuthorize
    • Spring EL for Authorization
    • @PreFilter and @PostFilter
    • Domain-Object Authorization
    • The ACL Schema
    • Interface Model
    • ACL-Based Presentation
    Learning Objectives:
    • History of SAML
    • Assertions
    • Protocol
    • Bindings
    • Profiles
    • Using OpenSAML
    Learning Objectives:
    • “Vouching for” a User
    • Assertions and Subjects
    • NameID Types
    • Authentication Contexts
    • Requests, Queries, and Responses
    • Attribute Queries
    • SAML and XML Signature
    Learning Objectives:
    • Speaking “Through” the Browser
    • The SOAP Binding
    • SAML Over HTTP
    • The Redirect, POST, and Artifact Bindings
    • The PAOS Binding
    • The URI Binding
    Learning Objectives:
    • SAML 2.0 Federations
    • Single Sign-On
    • Account Linking and Persistent Pseudonyms
    • Transient Pseudonyms
    • Name ID Mapping
    • Single Logout
    • Federation Termination
    Learning Objectives:
    • Combining SSO and Other Authentication Styles
    • Customization
    • Configuring an SP
    • Configuring OpenAM
    • Login and Logout Handlers
    • IdP Discovery
    • The SSO Processing Filters
    • The SAML Filter Chain
    • The SAML Entry Point
    • The Spring Security SAML Extension
    • Authorization and Attributes
    Learning Objectives:
    • Third-Party Authorization
    • OAuth
    • Roles and Initial Flow
    • Grant Types
    • Access Tokens
    • The Google OAuth API
    • OAuth for Spring Security
    • Client-Details Services
    • Token Services
    • The AuthorizationEndpoint
    • The TokenEndpoint
    • The UserApprovalHandler
    • The Resource-Server Filter
    • The ScopeVoter
    • The OAuth-Aware RestTemplate
    • AccessTokenProviders
    • The OAuth Redirecting Filter

    FAQs

    You can enroll for this classroom training online. Payments can be made using any of the following options and receipt of the same will be issued to the candidate automatically via email.
    1. Online ,By deposit the mildain bank account
    2. Pay by cash team training center location

    Highly qualified and certified instructors with 20+ years of experience deliver more than 200+ classroom training.

    Contact us using the form on the right of any page on the mildaintrainings website, or select the Live Chat link. Our customer service representatives will be able to give you more details.

    You will never miss a lecture at Mildaintrainigs! You can choose either of the two options: View the recorded session of the class available in your LMS. You can attend the missed session, in any other live batch.

    We have a limited number of participants in a live session to maintain the Quality Standards. So, unfortunately, participation in a live class without enrollment is not possible. However, you can go through the sample class recording and it would give you a clear insight about how are the classes conducted, quality of instructors and the level of interaction in a class.

    Yes, the access to the course material will be available for lifetime once you have enrolled into the course.

    Just give us a CALL at +91 8447121833 OR email at [email protected]

    CERTIFICATE OF ACHIEVEMENT

    Training features

  • Instructor-led Sessions
    Online Live Instructor-Led Classes.
    Classroom Classes at our/your premises.
    Corporate Training
  • Real-life Case Studies
    Live project based on any of the selected use cases, involving implementation of the various Course concepts.
  • Assignments
    Each class will be followed by practical assignments.
  • Lifetime Access
    You get lifetime access to presentations, quizzes, installation guide & class recordings.
  • 24 x 7 Expert Support
    We have 24x7 online support team to resolve all your technical queries, through ticket based tracking system, for the lifetime.
  • Certification
    Sucessfully complete your final course project and Mildaintrainings will give you Course completion certificate.
  • More Courses

    Modes of Training

  • Most
    Preffered

    Online Classroom


    Instructor Led Trainings
    Live Online Classroom

    View Schedules
  • One to One


    Instructor Led Training
    Live Online Classroom

    Request a Session
  • Team/Corporate


    Train your Team
    and Up-skill them

    Request a Quote
  • Demo Videos

    Our Corporate Clients

    Inquiry: Call | Whats App: +91-8447121833 | Email: [email protected]

    ENROLL NOW