Xing's Blog

Configure Spring Security using HttpSecurity

Spring Security provides many AuthenticationProvider for you to use. You can provide your own customized AuthenticationProvider if the provided AuthenticationProvider doesn’t satisfy your Authentication need.

We learn about JDBC Authentication, but in real world, it is more common to customize UserDetailsService. This allows more flexibility When it comes to authenticating user.

LDAP Authentication

Configure JDBC based Authentication

Configure inMemory Authentication

Authentication Process

Security Context and its related classes are fundamental to Spring Security. A successful authentication process needs to properly set the SecurityContextHolder. The user information stored in Security Context will be used for authorization.

Filter chain is one of the most important concept in Spring Security. Most of the features provided are accomplish or related to one or more filter.

Spring Security Introduction

WireMock is a simulator for HTTP-based APIs.

Helm - The Kubernetes Package Manager.

Kubernetes secret object let you store and mange sensitive information, such as passwords, OAuth tokens and SSH Keys. It is better to store this kind of secret in Kubernetes secret than in a container image.

Kubernetes ConfigMap

Kubernetes Environment Variable