jokerconf Joker 2019 (25.10.2019 — 26.10.2019)

Spring Security for N00bz: A quick introduction for the terminally insecure


Built with Java & Spring, Spring Security is a proven, fully OSS solution for end to end application security. This session provides an introduction to defense in depth & a live-coding exploration of how to secure your apps now & maintain their security over time using 100% open source software.

No one wants to feature prominently in headlines of the latest security breach. Doing so can make you and your organization a target for lawsuits, prosecution, and recognition of the worst kind. But security is hard, right? Where does one even begin???

One fully open-source solution for application security is widely used and respected. Spring Security provides a proven app security platform that integrates with numerous languages and components to provide end-to-end security for your critical applications. Using the JavaScript framework du jour for front end development? Reactive systems? LDAP? OAuth2? OpenID Connect? It’s in there.

Defense is a multi-faceted topic, but your application’s security is central to it all. Come to this session for a thought-provoking introduction to defense in depth and a live-coding "lock it down" exploration of how to secure your apps now and maintain their security over time.