new.tar.gz

taskOne

tasktwo

taskthree

formPF

oauth2

openid

ldap

hashing

JWTHello

JWKManager

JwtAuthCode

demo

Challenge 1

Challenge2

Challenge3

simple-hash

hash-with-salt

PBKD

Challenge2-Faizan

Challenge3-Faizan

This course covers authentication and authorization within web applications in Java Enterprise security. Security is a vast concept with many aspects. In particular, we'll focus on the security of applications and the data they contain, an area that is known as information security.

We will start by identifying our end users and dive deep into the differences between encoding, encryption, and hashing techniques. After that, we will learn to propagate information with microservices architecture.

By the end of this course, you'll have hands-on experience with the integration and configuration of OAuth2 and OpenID Connect into the Java application.

JakartaEE Security Workshop

Changes in the payload are detected because the payload will not match the encoded payload.

Changes in the payload are detected when the signature no longer matches the new values because the hacker does not have access to the secret key to adjust the signature.

Changes in the payload are detected because the payload will not match the secret key sent with the encoded payload.

When using a JWT, why can a hacker read but not change the data/payload?

When using a JWT, why can a hacker read but not change the data/payload?

To make sure that a new token is generated.

To make sure that a new token is generated when it is intercepted.

To make sure that a token has a finite validity period so that when it is intercepted, it can only be used for a limited amount of time.

The JWT tokens of a MicroProfile specification have an `exp` claim. What is the purpose of this claim?

The JWT tokens of a MicroProfile specification have an <code>exp</code> claim. What is the purpose of this claim?

Why do we use `<Signature>` in the message?

Why do we use <code>&lt;Signature&gt;</code> in the message?

“_Base64url_” is a modification of the Base64 encoding that changes “/” to:

“Base64url” is a modification of the Base64 encoding that changes “/” to:

Which of the following is a way of representing secured content with a digital signature or MAC (message authentication code)?

Which of the following is a way of representing secured content with a digital signature or MAC (message authentication code)?

Test your understanding of secure data transfer.

Before We Begin

Introduction

Concepts

Window Shopping

Authentication Methods

Standards

Authentication Data Stores

Secure Data Transfer

Quiz