Robust security for web applications is and has always been a must. But the security landscape has been changing rapidly over the last few years, with REST APIs becoming mainstream, the huge adoption and evolution of OAuth2, single-page apps (SPAs), two-factor authentication (2FA) and so many other security requirements.
And the security market is huge - Gartner puts the numbers at 124 billion in 2019 on the way to 140+ billion now, in 2020. Security work to be done well is abundant and very well paid.
Simply put, not having a solid, deep understanding of the current security landscape is no longer a good option.
Spring Security has been getting better as well, with the launch of 5.0, 5.1 and now 5.2, full Java configuration with lambdas, fantastic Boot integration, an entirely new OAuth2 stack, and support for pretty much any security mechanism you need.
Right now, in 2020, there's no debate. Spring Security is THE framework to properly and intelligently do security if you're working in Java.
The framework is fully able to handle everything you throw at it - from simple scenarios to highly complex security requirements. There are some OK alternatives, but nothing really comes close.
I’ve created this course to help you get to a full security education quickly. That's the whole point in going through a course - it's the fast way to learn the material and give you the Spring Security tools you need to secure your system.
Each module contains exhaustive video lessons along with code, lesson notes and resources to help you put the framework to use immediately in your app.
Each of the 3 classes features a different level of education:
This is the full material - the comprehensive, start-to-finish path from starting out with security to a real-world, solid understanding of how to use Spring Security 5 in practice.
The deep-dives focus on implementations such as a complete OAuth2 from the ground-up, Two-Factor authentication, a full ACL system, Single Sign On, a complete registration mechanism, how to deal with various attack vectors - and many others.
This class is simple - it contains the full material from the Master Class, plus downloads, extensive exercises and multiple-choice questions - to help you get the most out of the material.
When you're done, you're going to get a "Certificate of Completion" for the course.
This is generally where professional developers find the greatest value.
This is where we go beyond the course material, with a year-long group Coaching Program - where I'll take a small group of students through both the course but also their own specific implementations.
Past sessions and workshops are, of course, recorded and available.