Book Image

Spring Essentials

Book Image

Spring Essentials

Overview of this book

Spring is an open source Java application development framework to build and deploy systems and applications that run on the JVM. It is the industry standard and the most popular framework among Java developers with over two-thirds of developers using it. Spring Essentials makes learning Spring so much quicker and easier with the help of illustrations and practical examples. Starting from the core concepts of features such as inversion of Control Container and BeanFactory, we move on to a detailed look at aspect-oriented programming. We cover the breadth and depth of Spring MVC, the WebSocket technology, Spring Data, and Spring Security with various authentication and authorization mechanisms. Packed with real-world examples, you’ll get an insight into utilizing the power of Spring Expression Language in your applications for higher maintainability. You’ll also develop full-duplex real-time communication channels using WebSocket and integrate Spring with web technologies such as JSF, Struts 2, and Tapestry. At the tail end, you will build a modern SPA using EmberJS at the front end and a Spring MVC-based API at the back end.By the end of the book, you will be able to develop your own dull-fledged applications with Spring.

Related Content you might be interested in

Current Title:

Small book image
Spring Essentials
Feb, 2016 | 260 pages
No titles found
Table of Contents (14 chapters)
Spring Essentials
Spring Essentials
Credits
Credits
About the Authors
About the Authors
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Getting Started with Spring Core
Getting Started with Spring Core
The Spring landscape
Design concepts behind Spring Framework
Setting up the development environment
Your first Spring application
Dependency Injection
Beans in detail
Hooking to bean life cycles
Container-level default-init-method and default-destroy-method
Working with bean definition profiles
Injecting properties into the Spring environment
Externalizing properties with PropertyPlaceholderConfigurer
Handling resources
Spring Expression Language
Aspect Oriented Programming
Testing with Spring
Summary
2
Building the Web Layer with Spring Web MVC
Building the Web Layer with Spring Web MVC
Features of Spring MVC
The Model-View-Controller pattern
Your first Spring MVC application
Setting up a Spring MVC application
The architecture and components of Spring MVC
DispatcherServlet explained
Controllers in detail
Asynchronous request processing in Spring MVC
Working with views
Spring and Spring form tag libraries
Composing a form in JSP
Validating forms
Handling file uploads
Resolving Thymeleaf views
More view technologies
Summary
3
Accessing Data with Spring
Accessing Data with Spring
Configuring DataSource
Using embedded databases
Handling exceptions in the Spring Data layer
DAO support and @Repository annotation
Spring JDBC abstraction
Spring Data
Spring Transaction support
Relevance of Spring Transaction
Summary
4
Understanding WebSocket
Understanding WebSocket
Creating a simple WebSocket application
STOMP over WebSocket and the fallback option in Spring 4
Broadcasting a message to a single user in a WebSocket application
Summary
5
Securing Your Applications
Securing Your Applications
Authentication
Authorization
Summary
6
Building a Single-Page Spring Application
Building a Single-Page Spring Application
The motivations behind SPAs
SPAs explained
Introducing Ember.js
The anatomy of an Ember application
Working with Ember CLI
Understanding the Ember object model
Working with collections
Building UI templates using Handlebars
Handling routes
Handling UI behavior using components
Persisting data with Ember Data
Building a Taskify application
Building the API server app
Building the Taskify Ember app
Summary
7
Integrating with Other Web Frameworks
Integrating with Other Web Frameworks
Spring's JSF integration
Spring's Struts integration
Summary
Index
Index

Authorization

In the Authentication section, we showed how user-provided credentials (username/password) are compared with application-stored ones, and if they match, the user is authenticated.

To boost security, we can limit the user's access to application resources. This is where authorization comes into the picture—the question of who should access which application's resources.

Spring Security provides very comprehensive authorization features. We can categorize these features into these three authorization groups:

  • Web request (who can access which application URL?)

  • Method invoking (who can call a method?)

  • Domain object access (who can see which data?)

    For example, a customer should be able to see his own order and profile data, whereas an admin should be able to see all the customers' orders plus the data that is not visible to any customer.

Since version 3.0 of Spring Security, Spring has added Spring EL expressions to its authorization features. Spring EL lets you convert complex authorization...

Previous Section
End of Section 3
Next Section