Spring Security
-
Enterprise Java
Spring Security – Integrate Passkeys Example
With the increasing demand for passwordless authentication, passkeys have emerged as a modern, secure alternative. Let us delve into understanding…
Read More » -
Enterprise Java
Spring Security + OAuth2 Resource Server: How to Validate JWTs Like a Pro
OAuth2 and JWT (JSON Web Tokens) have become the standard for securing APIs in modern microservices and web applications. When…
Read More » -
Core Java
Best Practices for Storing and Validating Passwords in Java (BCrypt, Argon2, PBKDF2)
Password security is critical for any modern application. Java developers often face the question:Which algorithm should I use? In this…
Read More » -
Enterprise Java
Securing GraphQL with Spring Security: A Practical Guide
GraphQL provides a flexible and efficient way to query APIs, but with that power comes the need for robust security.…
Read More » -
Enterprise Java
How to Secure REST APIs with Spring Security and JWT (2025 Edition)
In 2025, stateless authentication remains the go-to approach for securing REST APIs. Spring Security combined with JWT (JSON Web Tokens)…
Read More » -
Enterprise Java
HATEOAS + Spring Security: Why Some Links Are Missing for Certain Roles
ATEOAS (Hypermedia As The Engine Of Application State) is a core constraint of REST application architecture that makes REST APIs…
Read More » -
Enterprise Java
Testing Conditional Links with @WithMockUser in Spring Security
Hypermedia APIs provide not just data but also actions that users can take, often exposed as conditional links or affordances.…
Read More »