Spring Security Bonus Module #54
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Added new curriculum text for User Owned Data to the Authentication chapter. First draft so it needs to be edited. This section describes how users can own the data they create in Coding Events. TODO: - Create tutorial video - Edit this section
- Add content for DTOs and Services
- TODO:
- Add video content
- Complete rest of code description
The PasswordEncoder is no longer stored inside the User model as a static instance. It has been moved to a configuration class and is a managed bean of the Spring framework.
- Added fixes for UserService description - Add descriptions for EventService and EventCategoryService - Add description to refactor controllers to use services
Description was missing explanation of `save` and `validateUser` methods. Added explanations and code snippets.
Add text based content for how to add roles and privileges to Coding Events and associate them to users. This content does not include any changes to functionality.
Added text description for how to preload data in to the database for user roles and privileges.
Create a bonus module within "Next Steps" to house the curriculum for user roles and privileges and spring security. This is within the Authentication chapter
Add description for initial implementation of `SecurityService` to User Roles & Privileges curriculum.
Adds content for Spring Security bonus module: - Instructions on using spring security framework for user authentication - Instructions for spring security authorization framework using security context filters
✅ Deploy Preview for java-web-dev-curriculum ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
Create user attendance relationship and UI CRUD Add `PreAuthorize` annotation to controllers to restrict access based on role Update navigation to reflect the current user's role
brclark
force-pushed
the
spring-security-dev
branch
from
6fcd908 to
3ff0e31
Compare
Fix mermaid issues and clean up grammar/spelling
brclark
commented
Dec 12, 2023
Clean up some of the code based on review and errors Change the description to force the reader to implement more of `EventCategory` on their own. Add instructions for `AuthenticationController` updates to use `UserService`
Some wording updates
Update the mermaid chart for class diagram Fix small mistakes in wording or missing variables/method names
content/authentication/next-steps/bonus-module/user-data/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/user-data/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/user-data/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/user-data/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/spring-security/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/spring-security/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/spring-security/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/spring-security/_index.md
Outdated
Show resolved
Hide resolved
content/authentication/next-steps/bonus-module/spring-security/_index.md
Outdated
Show resolved
Hide resolved
Clean up language and grammar in the lessons. Implement some fixes to code snippets.
Add numbered lists instead of unordered lists. Remove unneeded sections based on code refactor
Add intro description to the Bonus Module Leave hints about implementing the `Tag` class changes in the instructions Update code to match latest version of project
This leaves the bonus module as a strictly text-based walkthrough
brclark
commented
Jan 24, 2024
| and roles & privileges to restrict access to the Coding Events based | ||
| on assigned user roles. | ||
|
|
||
| ### TODO: Add Embedded Intro video |
There was a problem hiding this comment.
I think including the preview video that I made might be useful here, to show students what they will be building by the end of the walkthrough
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Contains curriculum for Java Authentication Bonus Module. This module covers a multi-step process to use Spring Security framework and design some Coding Events features that would make use of multiple user roles and privileges.
The lessons are being added to
Chapter 19 Authentication/Next Steps/Bonus Module.The sequence of lessons are:
Userand resources likeEventto allow users to own their data@Serviceclasses to handle logic between@Controllerand@Repository, which also makes more use of DTO objects for data translationROLE_USER, event organizerROLE_ORGANIZER, and adminROLE_ADMIN.The associated code is in the following project:
https://github.com/brclark/CodingEventsJava/tree/user-data