Spring Security 6: The Next Generation
Vložit
- čas přidán 9. 09. 2024
- Speaker:
Robert Winch, VMware
Starting as Acegi Security in 2004 and officially joining the Spring portfolio in 2008 as Spring Security, the Spring Security project has continued to evolve as the most comprehensive security framework in the Java ecosystem. In each major generation, Spring Security updates to more secure defaults, and the Spring Security 6 release is no exception.
Make no mistake, security can be difficult. However, by using the full power of Spring Security in the way it was intended, you can simplify your path to having a more secure application. In this talk, you will learn the modern way to add Spring Security to your application. Along the way, we will discover what’s new in Spring Security 6 by taking an in-depth look at the new defaults, APIs and features.
Thanks for this. I struggled a bit migrating to Spring Security 6, but like all things, once I got it working the code was ridiculously simple. One tip I'd offer people is to try implementing the Spring Security defaults as customizations. This will add some visibility to what the defaults actually are; as well as how to implement a customization if that's something you think you'll need to do.
Dangs, sucks that Rob ran out of time, would have loved to see him do the full configuration & test + other demos
Thank Rob, great talk. Very clearly explained.
oAuth Talk is missing :(