Корично изображение Електронна книга

Spring Security 3.1.

This practical step-by-step tutorial has plenty of example code coupled with the necessary screenshots and clear narration so that grasping content is made easier and quicker. This book is intended for Java web developers and assumes a basic understanding of creating Java web applications, XML, and...

Пълно описание

Основен автор: Winch, Robert.
Други автори: Mularien, Peter.
Формат: Електронна книга
Език: English
Публикувано: Birmingham : Packt Pub., 2012.
Серия: Community experience distilled.
Предмети:
Онлайн достъп: http://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&AN=526166
Подобни документи: Print version:: Spring Security 3.1.
Съдържание:
  • Table of Contents; Spring Security 3.1; Spring Security 3.1; Credits; About the Author; Acknowledgement; About the Reviewers; www.PacktPub.com; Support files, eBooks, discount offers and more; Why Subscribe?; Free Access for Packt account holders; Preface; What this book covers; What you need for this book; Who this book is for; Conventions; Reader feedback; Customer support; Downloading the example code; Errata; Piracy; Questions; 1. Anatomy of an Unsafe Application; Security audit; About the sample application; The JBCP calendar application architecture; Application technology.
  • Reviewing the audit resultsAuthentication; Authorization; Database credential security; Sensitive information; Transport-level protection; Using Spring Security 3.1 to address security concerns; Why Spring Security; Summary; 2. Getting Started with Spring Security; Hello Spring Security; Importing the sample application; Updating your dependencies; Using Spring 3.1 and Spring Security 3.1; Implementing a Spring Security XML configuration file; Updating your web.xml file; ContextLoaderListener; ContextLoaderListener versus DispatcherServlet; springSecurityFilterChain; DelegatingFilterProxy.
  • FilterChainProxyRunning a secured application; Common problems; A little bit of polish; Customizing login; Configuring logout; The page isn't redirecting properly; Basic role-based authorization; Expression-based authorization; Conditionally displaying authentication information; Customizing the behavior after login; Summary; 3. Custom Authentication; JBCP Calendar architecture; CalendarUser; Event; CalendarService; UserContext; SpringSecurityUserContext; Logging in new users using SecurityContextHolder; Managing users in Spring Security; Logging in a new user to an application.
  • Updating SignupControllerCreating a custom UserDetailsService object; CalendarUserDetailsService; Configuring UserDetailsService; Removing references to UserDetailsManager; CalendarUserDetails; SpringSecurityUserContext simplifications; Displaying custom user attributes; Creating a custom AuthenticationProvider object; CalendarUserAuthenticationProvider; Configuring CalendarUserAuthenticationProvider; Authenticating with different parameters; DomainUsernamePasswordAuthenticationToken; Updating CalendarUserAuthenticationProvider; Adding domain to the login page.
  • DomainUsernamePasswordAuthenticationFilterUpdating our configuration; Which authentication method to use; Summary; 4. JDBC-based Authentication; Using Spring Security's default JDBC authentication; Required dependencies; Using the H2 database; Provided JDBC scripts; Configuring the H2-embedded database; Configuring JDBC UserDetailsManager; Spring Security's default user schema; Defining users; Defining user authorities; UserDetailsManager; What other features does UserDetailsManager provide out of the box; Group-based access control; Configuring group-based access control.