← All Trainings

Spring Security Training

Security is not an afterthought. This hands-on training teaches Java developers and teams how to design and implement robust security with Spring Security, from foundational authentication flows to OAuth2, JWT, and method-level authorisation.

What You Will Learn

You will understand Spring Security's architecture and be able to apply its features confidently in web applications and APIs.

  • Security Architecture

    Understand the Spring Security filter chain, security context, and how authentication and authorisation plug together at a low level.

  • Authentication & Authorisation

    Implement form login, HTTP Basic, and custom authentication providers. Apply role- and permission-based access control at the URL and method level.

  • OAuth2 & OpenID Connect

    Integrate OAuth2 login, protect resource servers, and implement OpenID Connect flows for modern, standards-based identity management.

  • JWT & Stateless APIs

    Issue and validate JSON Web Tokens for stateless REST APIs. Handle token expiry, refresh flows, and secure microservice communication.

Who Is This Training For?

This training is for Java developers and teams who build or maintain applications where security matters, which is to say every application.

  • Backend Developers

    Developers building REST APIs or web applications who need to implement and maintain secure authentication and authorisation.

  • Teams Migrating to OAuth2

    Teams moving from session-based security to token-based or federated identity solutions who need a structured, hands-on introduction.

  • Security-Conscious Engineers

    Developers who want to understand the "why" behind Spring Security's defaults and how to extend or customise them safely.

Training Details

All sessions are hands-on with real code exercises. We tailor content and pace to your team's experience level.

Format

On-site at your office, fully remote, or in our course rooms. We adapt exercises and tooling to your environment.

Duration

Typically 2 days. Can be extended to cover advanced topics like reactive security or microservice security patterns.

Language

Delivered in English or German. Italian available on request.

Prerequisites

Spring Boot experience and basic familiarity with HTTP and REST.

Ready to Get Started?

Tell us about your team and goals. We'll design the right training for your context.

Request this training