Week 10

Security Mindset

Handling Sensitive Data

Authentication & Authorization

Session Management

JWT

Spring Security

Practice

Assignment

Back end Track

Under construction

<aside> 🚧

This page is currently under construction. Please check back later.

</aside>

mplementation plan:

  1. What is Spring Security — the security framework for Spring
  2. Adding the spring-boot-starter-security dependency
  3. The security filter chain — how requests are intercepted
  4. Default behavior: everything is protected
  5. Configuring security: SecurityFilterChain bean
  6. Protecting endpoints by role
  7. Method-level security: @PreAuthorize, @Secured
  8. Integrating JWT authentication with Spring Security
  9. Extracting user information from the token
  10. Testing secured endpoints
  11. Exercise: secure the Week 7 project API with JWT and roles

The HackYourFuture curriculum is licensed under CC BY-NC-SA 4.0

CC BY-NC-SA 4.0 Icons

*https://hackyourfuture.net/*

Found a mistake or have a suggestion? Let us know in the feedback form.