Build Spring Boot Web Application with JPA, Spring Security

In this course students can learn how to develop login and logout feature with spring security by using spring boot web application in easy way.

Key concepts implementation:

Sign Up, login, logout, forgot password, reset password, sending an email to user to reset the password, change password implementation (Spring security 6 + spring boot + MySQL database)

Spring Security is a powerful and highly customizable authentication and access-control framework. It is the de-facto standard for securing Spring-based applications.

Spring Security is a framework that focuses on providing both authentication and authorization to Java applications. Like all Spring projects, the real power of Spring Security is found in how easily it can be extended to meet custom requirements

Features

• Comprehensive and extensible support for both Authentication and Authorization
• Protection against attacks like session fixation, clickjacking, cross site request forgery, etc
• Servlet API integration
• Optional integration with Spring Web MVC

Authentication :

Spring Security provides comprehensive support for authentication. Authentication is how we verify the identity of who is trying to access a particular resource. A common way to authenticate users is by requiring the user to enter a username and password. Once authentication is performed we know the identity and can perform authorization.

Spring Security provides built-in support for authenticating users. This section is dedicated to generic authentication support that applies in both Servlet and WebFlux environments. Refer to the sections on authentication for Servlet and WebFlux for details on what is supported for each stack.

Authorization :

Spring Security provides comprehensive support for authorization. Authorization is determining who is allowed to access a particular resource. Spring Security provides defense in depth by allowing for request based authorization and method based authorization.

Development features:

Software installation.

Spring boot web project development from scratch.

Bootstrap spring boot web application.

Create Login and Logout , registration, forgot password, change password web pages in easy way.

Understand spring security in easy way.

Understand Authentication and Authorization.

Understand CSRF attack and how attackers can hack web application.

Create User and Roles.

Implement Many to Many relationship between user and roles.

Create spring security custom configuration class.

login application by using static user credentials.

login application by using credentials from database

Ajax calls to validate user exist in database or not.

Forgot password implementation.

Send email with reset password link to end user.

Reset Password web page implementation.

Change password web page implementation and e.t.c.