Security Resources

Creating a Chat Application Using React and ASP.NET Core - Part 3

We continue our in-depth look at using React.js and ASP.NET Core to create a chat app by looking at websockets and SignalR.

Updated February 26, 2018

by Juergen Gutsch

· 16,374 Views · 3 Likes

Content Security Policy (CSP) Explained

We explore the concepts behind Content Security Policy, such as hashes and nonces, and how to implement CSP in your application or site.

February 26, 2018

by Sven Morgenroth

· 25,146 Views · 4 Likes

DevSecOps Is a Key to Cost Reduction

DevSecOps is not only a way to integrate security earlier into the SDLC; it's also a way to cut costs. This article debunks the common complaints about adding DevSecOps.

February 24, 2018

by Dan Goldberg

· 8,028 Views · 2 Likes

Microservices Authentication and Authorization Using API Gateway

In this article, we'll learn how to add authorization and authentication security protocols to microservices by using an API Gateway.

Updated February 23, 2018

by Akash Bhingole

· 81,650 Views · 22 Likes

Stateless Authentication With JSON Web Tokens

Learn how to protect your microservice, API, or web app using JSON Web Tokens to create a stateless authentication protocol.

February 22, 2018

by Yos Riady

· 48,136 Views · 15 Likes

Spring DI Patterns: The Good, The Bad, and The Ugly

Let's explore the three ways Spring lets you declare dependencies using annotations: field injection, setter injection, and constructor injection.

February 21, 2018

by Roger Guldbrandsen

· 99,007 Views · 38 Likes

An OAuth2 Grant Selection Decision Tree for Securing REST APIs

In this article, I will explain the four types of grants and guidelines for selecting each grant based on a simple decision tree.

February 20, 2018

by Imesh Gunaratne

· 11,384 Views · 18 Likes

Spring Boot 2 Applications and OAuth 2: Setting Up an Authorization Server

A Java-based developer walks us through the process of setting up a working Authorization Server with a sample client and a sample user available.

Updated February 16, 2018

by Biju Kunjummen

· 39,081 Views · 31 Likes

Diameter Server Load Testing — A Guide

Learn how to use JMeter to load test Diameter, a AAA protocol similar to Radius, and understand why the two go hand in hand.

Updated February 9, 2018

by Konsantine Firsanov

· 10,358 Views · 3 Likes

Android WebView: Secure Coding Practices

A developer reviews some secure coding good practices for Android and web developers to keep in mind when developing for mobile platforms.

February 8, 2018

by Erez Yalon

· 27,955 Views · 5 Likes

Secure Your Vert.x Server With Single Sign-On From Okta

Let's take a dip into the Spring ecosystem while learning how to secure a Vert.x server and adding the convenience of SSO.

February 7, 2018

by Silas Brazil

· 6,427 Views · 8 Likes

Adding Auth to a Jaeger Collector

In this quick tutorial, you will learn how to add an authentication proxy to your Jaeger collector using Keycloak. Read on to get started!~

February 5, 2018

by Juraci Paixao Kroehling

· 8,845 Views · 5 Likes

CDI (Part 2): Qualifiers in Java: Polymorphism in DI

The second part of this CDI series considers CDI qualifiers. We'll see how they can help you with both dependency injection and polymorphism.

February 3, 2018

by Alexandre Gama

· 24,724 Views · 12 Likes

The Server Side Request Forgery Vulnerability and How to Prevent It

Learn how to protect your web application from SSRF vulnerabilities by learning what exactly they are and how bad actors can use them to target your system.

February 2, 2018

by Sven Morgenroth

· 50,637 Views · 1 Like

Build Authentication the Easy Way with Spring Security 5.0 and OIDC

Spring Security 5.0 offers a host of new tools for your authentication needs. Let's see how to use it and OIDC together to secure your Spring-based apps.

February 2, 2018

by Matt Raible

· 45,391 Views · 14 Likes

Parallelizing Tasks with Dependencies — Design Your Code to Optimize Performance

Learn how to run several asynchronous tasks concurrent with each other while respecting the dependencies surrounding each task.

January 30, 2018

by Riccardo Terrell

· 9,306 Views · 3 Likes

SQL Injection Vulnerabilities and How to Prevent Them

SQLi is one of the most common and severe vulnerabilities. Learn what you as a developer can do to prevent SQL injection attacks on your application.

January 29, 2018

by Sven Morgenroth

· 95,647 Views · 3 Likes

Microservices With Spring Boot, Part 1 — Getting Started

In the first installment of this series, we'll learn about the concept of microservices and look at how to create a microservice with Spring Boot and Spring Cloud.

January 23, 2018

by Ranga Karanam

CORE

· 86,092 Views · 53 Likes

User Personas and Pipeline Facades for Effective Release Decisions

This article discusses using user personas with CI/CD pipelines to learn which data your business needs, and the importance of how data is presented.

January 22, 2018

by Manuel Pais

· 12,473 Views · 3 Likes

Configuring Security Headers in Undertow

If you're interested in using security headers to help protect your websites, there are a number of approaches you can take. Let's explore some of the popular ones.

Updated January 21, 2018

by Bill O'Neil

· 8,208 Views · 4 Likes

The Latest Security Topics