Great job explaining the fundamental. Indeed very useful. Thank you! 🙏

why new PasswordData(); is necessary .explain this and also i want source code of this.

If possible please share the github link please

Thank you sir for making this course and especially making it free here on KZbin. This is very, very helpful, it would clarify many not so straight forward parts of spring security. I am grateful sir.

This is by far the best tutorial on spring security I have seen. Most of the other tutorials just show the code to make it work without the needed context, which you explain very well! Thanks!

Thank you! Very well explained! 💛

Thank you😊

If you want to write the steps down : 1. User clicks on forgot password link 2. Provide email id and click on rest password link (we can add additional steps 3. System generates secure token and sends out email to the customer email id 4. Customer clicks on the link: a. System checks if the token is valid and not exired b. Check if there's a valid user 5. Provide user with the reset password link.

Thank you so much. Such an amazing informative video. Love the entire playlist.

Thank u for this tutorial, I want to ask something ...... If I dont want to use formLogin() then how to do ? I dont have login page application. I am having REST API application.

Thats not method security. Method security is for the service layer and not the controller layer.

if you have error just paste this code into your application.yaml. management: endpoints: web: exposure: include: '*'

Does this work with react. Why everybody uses jsp only...sucks

Can we use more than 1 Resolver like AcceptHeaderLocaleResolver and SessionLocaleResolver in one application ?

an amazing tutorial and explanation, thank you ☺️

Hi, how will work this in an fullstack application, if I want to logout from Frontend and the backend response with redirecction? thanks Good video

perfecto!!

Hello, I see that what you did is in an mvc in spring boot, how could this be taken to a rest api in spring boot for example and consuming it with a frontend made in Angular? Sorry for my English which is not good

WebSecurityConfigurerAdapter is deprecated

Congratulations on the excellent material, could you please enable the subtitles (ClosedCaption) for this video.

Great explantion. Thankyou so much

Highly appreciated..

I can follow the video, but nothing about what you are explaining. Sorry!

First of all, thanks for sharing your knowledge! HTTP stopped working in my application after configuring HTTPS. The only think I made was include .requiresChannel().antMatchers("/account/**").requiresSecure().and() in the security config file, added the properties and created the p12 file. Any idea why it is happening?

Sir, will the session extend due to some activity within 5 seconds ? or it is static 5 seconds ?

I was trying to use log4j but it wasnt working. Watched your video and followed the steps and it worked. You saved my day. Many Thanks

Dependencies are very important to run log4j2 above 2.7. Thanks

Thank you for this great tuto, i have a problem when I type in the browser localhost:8080/metrics it works, but when I type localhost:8080/actuator/metrics it appears an error message "Whitelabel Error Page. This application has no explicit mapping for / error, so you are seeing this as a fallback". Knowing that I added the "spring-boot-starter-actuator" dependency.

Hello just wondering on which class we are generating cookie, I know how we can change cookie name and other configs but can you point me where exactly we are creating cookie and setting it to response. Also does this cookie creation logic remains same on oauth2 flow as well. thanks in advance.

Source code please

I keep getting this Problem but i'm not sure why: java: cannot access javax.servlet.Filter class file for javax.servlet.Filter not found what could be the Problem? I have also tried adding the dependency, but then the whole Server stopped running

so when is jedis required?

Great tutorial!

Thanks a lot

Too good

thanks man thats really great stuff keep it upp

saha ya ba7bou7 yarhem waldek

just woow thank you it was very helpful thank you sinpay

do you have the latest configuration without using webconfigueradaptor ? it's depreciated and i am stuck here for implanting the config of authentication provider

Why the method CollectionUtils need to use isNotEmpty and not just isEmpty?

hi can you help me out. How would i do the security if i dont have roles. For example, im just messing around with a banking application and one user can have many accounts (savings or checking)

How connect redis with php i cant resolve that problem pls help me if u know to how resolve this problem

finally a playlist that i can follow along to. Spent hours looking for something useful. The websites with spring security examples dont explain anything, they just show the code so im thankful for this

Add RoleHierarchy Implementation with Spring Security 6, Spring boot 3 with method level security.

I don't understand something, what class do I point to in the spring.factories file, do I add the class with the "@SpringBootApplication" annotation or an autoconfiguration class that I've annotated with "@Configuration"?

Hi @Java Development Journal, On postman I am getting 403 as status, Forbidden as error and message is null how can I give a message there? Can you help me with this

Even after 5 years, this tutorial was helpful. I was stuck on this for a day. Thank you

We can install SSL Certificate on the reverse proxy such as nginx instead to install it directly on the app

This approche will not affect the performance of application because we will send every time query to the database to verify the token?

It is recommande to specify the key on remember me configuration?