Reactive Spring Security 5.1 by Example
Вставка
- Опубліковано 12 вер 2024
- In this talk we will be taking an insecure, reactive application and gradually start applying Spring Security to it. Along the way we will discuss reactive programming, highlight the new features in Spring Security 5.1, and answer frequently asked questions. Whether you are new to Spring Security or a seasoned Spring Security user, this presentation is a must.
Speakers:
Rob Winch
Spring Security Project Lead, Pivotal
Filmed at SpringOne Platform 2018
The source can be found at github.com/rwinch/spring-security51-by-example-reactive
Thanks for the nice presentation, How can I access the code for future reference
Is this reactive spring security will support saml
1:08:47 - in case any other client (UI or someother API) wants to accces this /user's/ API ... Which API they need to call first to get the bearer token...
Great video, I would like to ask about password encryption and transmission. What if the frontend and the backend are separated? Let's say you have an Angular/React/whatever frontend that manages the sign-up and login UI, and the backend is secured by spring reactive security, should I encrypted the password with bcrypt in the frontend, before sending to the backend with REST call?
In my opinion.I think no
Because you created an @Bean PasswordEncoder it will automatically encrypt the password when you send the request user to the server
Not required. However please ensure REST calls go via https to avoid man in the middle attack
Pls can you share the code shown in the presentation
Here you are
github.com/rwinch/spring-security51-by-example-reactive
Where is the source code repository address?
how does you get so much suggestions in your IDE ? Is there any plugin for that ?
Yeah sombody should create and share it.
These are not suggestions.. but code snippets prepared before presentation ;)
Can I have the template from this demo and the demo code?
Did you get it?
Does someone know the repository where the source code is?
I found this: github.com/rwinch/spring-security5-reactive-bits
Actually it is github.com/rwinch/spring-security51-by-example-reactive
why using in mmory waste of time...
well they changed it later, yet this very inmemory example is the docs up to today