Spring Security Tutorial: Form Login Java Configuration
This post is a Spring Security form login tutorial which uses the Spring Java Configuration annotations rather than the XML Configuration. The post builds on the previous Form Login post translating all the XML Configuration into Java Configuration.
Spring Security Tutorial: 3-Legged OAuth 1.0
This post is a Spring Security OAuth 1.0 3-Legged authentication tutorial. Spring Security OAuth supports 3-Legged authentication out of the box, this includes both the Provider and the Consumer side of the process. This is the third post in a three part series:
Spring Security Tutorial: 2-Legged OAuth 1.0
This post is a Spring Security OAuth 1.0 2-Legged authentication tutorial. The post will show you how to configure and modify the Spring Security OAuth library in order to support 2-Legged OAuth. This is the second post in a three part series.
Spring Security Tutorial: 0-Legged OAuth 1.0
This post is a Spring Security OAuth 1.0 0-Legged authentication tutorial. The post will show you how to configure a signed fetch using the Spring Security OAuth library. This is the first post in a three part series.
Spring Security Tutorial: Form Login
This post is a Spring Security form login tutorial. The post will show you how to configure form based login using the following methods to store credentials:
- Hardcoded with plain text
- Hardcoded using SHA1 encoded passwords
- JDBC based
- MongoDB based (these principles could be applied to any database)
Jersey 1.x and 2.x Cross-Site Scripting XSS Filter for Java Web Apps
This post is going to show you how to build a Jersey Cross-Site Scripting XSS filter for Java Web Apps. As we all know, when building a web application of any sort it’s always important to focus on security. Cross-Site Scripting (XSS) is a popular security issue found across many sites. Here is a brief summary on the current XSS situation and a good Cheat Sheet provided by OWASP.