Spring Boot

Spring Boot: just 4 beans for implementing a default JDBC Authentication with SecurityFilterChain-based Configuration

ByPanos 17/01/202417/01/2024

This project is a pure REST API demo, exposing just a couple of protected endpoints. It is based on Java version 17, and the latest releases of Spring Boot 3.2.1 (announced on DECEMBER 19, 2023) and Spring Security 6.2.1 (announced on DECEMBER 21, 2023). It shows the 4 very basic beans required for the default JDBC-based Authentication for implementing a fundamental custom security configuration class based on the SecurityFilterChain. You can use it as a base repo for further customizations.

Spring: Avoid Circular Dependency error of your @Component(s)

ByPanos 27/07/202328/07/2023

A case-study using a Custom implementation of the “weird” UsernamePasswordAuthenticationFilter, as @Component. This is actually the case when an auto-created bean (e.g.: an AuthenticationManager instance in a @Configuration annotated class) is required in a @Component annotated class (e.g.: a custom filter extending the UsernamePasswordAuthenticationFilter filter), and then, the bean of the @Component custom filter class is required in the @Configuration class.

Java | Spring | Spring Boot

No other place to go for your properties and values in Spring

ByPanos 12/07/202324/07/2023

Spring Boot: @Value, @ConfigurationProperties, Environment API, and other, not-that-easy to be distinguished goodies.

Do you know @Value annotation in Spring/Spring Boot framework? Well, maybe. However, this post aims to be your one-stop shop, when you are wrangling with the mess of externally defined values, for properties and messages. And not only for your bean-managed classes.

Java | Spring Boot

Spring: Customizing the “weird” UsernamePasswordAuthenticationFilter

ByPanos 18/02/202319/02/2023

A thorough step-by-step guide on how you can implement a custom filter, based on the “weird” UsernamePasswordAuthenticationFilter, for handling both: Basic Authentication and JWT Bearer token Authorization.

Java | Spring Boot

Spring Boot Security Configuration, practically explained – Part6: A deep intro to filter/token-based security

ByPanos 31/01/202306/03/2023

A deeper intro about what is behind the scenes of the Spring authentication/authorization process, integrating also concepts like filters, tokens, customizations for an Authentication Manager or an Authentication Provider, and so on.

Java | MySQL | Spring Boot

Spring Boot Security Configuration, practically explained – Part5: From WebSecurityConfigurerAdapter to SecurityFilterChain

ByPanos 19/12/202219/12/2022

Pass from deprecated WebSecurityConfigurerAdapter to the new component-based (bean-based) security configuration, in an easy and understandable way.

Database | MariaDB | MySQL | Spring Boot

Spring Boot Security Configuration, practically explained – Part4: Custom Authentication Provider for password verification via a stored procedure

ByPanos 11/12/202211/12/2022

This is the 4th in a series of posts which focuses on how we can create and use a CustomAutenticationProvider and use it with a password verification stored procedure.

Spring Boot

Spring Boot: antMatchers and user roles and authorities

ByPanos 09/12/202209/12/2022

Here is a quick intro about .antMatchers(), as well as user roles and authorities.

MariaDB | Spring Boot

Custom Validation in Spring Boot best explained – Part 2

ByPanos 12/09/202217/06/2023

This is the 2nd part (the 2nd case example) of how to implement a custom validation in Spring Boot. In this Post we proceed with the implementation of a “master-details” custom validation example, as we’ve mentioned at the beginning.

MariaDB | Spring Boot

Custom Validation in Spring Boot best explained – Part 1

ByPanos 09/09/202224/07/2023

In this post, we focus on a common case, when we have to check if a value in a JSON field, passed in the body of a POST request, is one of the values provided in an array we define.