What do you think?
Rate this book
Spring Security实战
安全性是没有任何商量余地的。我们要依赖Spring应用程序来传输数据、验证凭据和防止攻击。采用“通过设计实现安全防护”的原则将能够保护我们的网络避免数据被窃取和未经授权的入侵。
《Spring Security实战》展示了如何在造成破坏之前防止跨站脚本和请求伪造攻击。本书将从基础开始讲解,其中将模拟密码升级并添加多种类型的授权。随着技能的增长,读者将可以将Spring Security应用到新的架构中,并创建高级的OAuth2配置。完成之后,读者将实践应用
拥有一个定制的Spring Security配置,它可以保护应用程序免受常见的和特殊的威胁。
《Spring Security实战》展示了如何在造成破坏之前防止跨站脚本和请求伪造攻击。本书将从基础开始讲解,其中将模拟密码升级并添加多种类型的授权。随着技能的增长,读者将可以将Spring Security应用到新的架构中,并创建高级的OAuth2配置。完成之后,读者将实践应用
拥有一个定制的Spring Security配置,它可以保护应用程序免受常见的和特殊的威胁。
Paperback
Published January 1, 2022
20 people are currently reading
121 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 6 of 6 reviews
March 27, 2022
Overall, a pleasant read, information is neatly presented, together with diagrams and good explanations.
Unfortunately, this book is already outdated, as the Security Oauth2 Authorization is deprecated and is no longer maintained, being replaced with Spring's Authorization Server. This was the reason to buy this book, as the Oauth2 flow is a bit more complicated and the author's breakdown is welcomed. The new implementation is pretty dissimilar, so only the basic principles from the author's book helped me in this regard.
Otherwise, I'd say that except for the explanations of the Spring Security Filter Chain and a few other points, the information presented is pretty trivial and can be easily accessed via Spring Security docs / youtube official channel.
Recommend only if you prefer the structured aspect of a book, but again, I would pay attention to the deprecated Auth server implementation.
Unfortunately, this book is already outdated, as the Security Oauth2 Authorization is deprecated and is no longer maintained, being replaced with Spring's Authorization Server. This was the reason to buy this book, as the Oauth2 flow is a bit more complicated and the author's breakdown is welcomed. The new implementation is pretty dissimilar, so only the basic principles from the author's book helped me in this regard.
Otherwise, I'd say that except for the explanations of the Spring Security Filter Chain and a few other points, the information presented is pretty trivial and can be easily accessed via Spring Security docs / youtube official channel.
Recommend only if you prefer the structured aspect of a book, but again, I would pay attention to the deprecated Auth server implementation.
January 30, 2021
For sure it's the best book about spring security... Comprehensive and really useful tanks mr laurentiu
May 23, 2025
A good book to read for Spring Security. There is a new edition of this book, and the codes presented in this book are deprecated, but the information provided in the book is very relevant. This book presents the architecture of Spring Security, including Authentication Filters, AuthenticationManager, AuthenticationProvider, AuthenticationToken, and many more concepts in an understandable way. Before reading the book, I got confused whenever I needed to look at any Spring Security configuration or create one. But now, I am confident enough to handle any Spring Security requirements. If you also need to understand Spring Security and apply it precisely, then I highly recommend that you read the latest edition of this book.
partially-read
September 22, 2022Read very very quickly and not thoroughly, just to get knowledge. So can't evaluate it, but in general, I found a couple of useful ideas. So, maybe will reread it in the future when needed
May 31, 2024
Excellent text on Spring Security, the 2nd Edition release in Feb 24 covers Spring Security 6 along with Auth and Resource Server implementation. Easy to digest and covers in good details.
November 28, 2020
Great for beginners to get a vast overview of the security concepts, especially in spring framework
Displaying 1 - 6 of 6 reviews