SlideShare a Scribd company logo

Stormpath 101: Spring Boot + Spring Security

Download as PPTX, PDF
Stormpath, profile picture
Stormpath

The document outlines a presentation on integrating Stormpath with Spring Boot and Spring Security, covering topics such as getting started with Spring Boot, authentication challenges, and user management. It highlights Stormpath's features, including secure authentication methods, single sign-on, and minimal maintenance for developers. Key resources and a quickstart setup for using Stormpath in Java applications are also provided.

Technology
Related topics:
Identity Management
1 of 17
Downloaded 36 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
Stormpath 101: Spring Boot & Spring Security
Welcome! • Agenda • Stormpath 101 (5 mins) • Get Started with Spring Boot (25 mins) • Q&A (30 mins) • Claire Hunsaker VP of Marketing & Customer Success • Micah Silverman Java Developer Evangelist
Customer Identity Poses Major Challenges
Speed to Market & Cost Reduction • Complete Identity solution out-of-the-box • Security best practices and updates by default • Clean & elegant API/SDKs • Little to code, no maintenance Focus on Your Core Competency
Stormpath User Management User Data User Workflows Google ID Your Applications Application SDK Application SDK Application SDK ID Integrations Facebook Active Directory SAML
Features • Secure, flexible Authentication (Password, Token, OAuth, API) • Deep Authorization Groups, Roles Customer Organizations Permissions • Customer Profile Data • Single Sign-On Across Your Apps • Hosted User Screens
Authentication Pain Points in Java Typical Authentication coding tasks: • Large pile of code • NOTHING to do with your business • And you must maintain You’re on your own: • DO NOT forget to encrypt those passwords • DO NOT forget to include csrf tokens in your templates
Authentication Pain Points in Java
Authentication Pain Points in Java
Authentication Pain Points in Java
Authentication Pain Points in Java
Stormpath, Spring Boot, and You 1. Create a Stormpath account 2. Create and API Access keyset 3. stormpath-default-spring-boot-starter 4. Write your Spring Boot App
Quickstart: Setting Up Stormpath with Spring Security
LET’S LOOK AT SOME CODE!
Java Resources • Token Auth for Spring Boot + Stormpath https://stormpath.com/blog/token-auth-for-java/ • SSO with Spring Boot + Stormpath https://stormpath.com/blog/spring-boot_id-site_heroku/ • Stormpath Java SDK https://github.com/stormpath/stormpath-sdk-java • Stormpath Java All The Integrations http://docs.stormpath.com/java/
QUESTIONS?
THANK YOU

More Related Content

PPTX
Multi-Tenancy with Spring Boot
Stormpath
 
PPTX
Spring Boot Authentication...and More!
Stormpath
 
PDF
Mobile Authentication for iOS Applications - Stormpath 101
Stormpath
 
PPTX
JWTs for CSRF and Microservices
Stormpath
 
PPTX
How to Use Stormpath in angular js
Stormpath
 
PPTX
Secure API Services in Node with Basic Auth and OAuth2
Stormpath
 
PDF
JWTs in Java for CSRF and Microservices
Stormpath
 
PPTX
REST API Security: OAuth 2.0, JWTs, and More!
Stormpath
 
Multi-Tenancy with Spring Boot
Stormpath
 
Spring Boot Authentication...and More!
Stormpath
 
Mobile Authentication for iOS Applications - Stormpath 101
Stormpath
 
JWTs for CSRF and Microservices
Stormpath
 
How to Use Stormpath in angular js
Stormpath
 
Secure API Services in Node with Basic Auth and OAuth2
Stormpath
 
JWTs in Java for CSRF and Microservices
Stormpath
 
REST API Security: OAuth 2.0, JWTs, and More!
Stormpath
 

What's hot (20)

PPTX
Building a document e-signing workflow with Azure Durable Functions
Joonas Westlin
 
PDF
Azure security guidelines for developers
Ivo Andreev
 
PDF
Programming with Azure Active Directory
Joonas Westlin
 
PPTX
Mobile Authentication for iOS Applications
Lindsay Brunner
 
PPTX
Zero Credential Development with Managed Identities
Joonas Westlin
 
PPTX
Zero Credential Development with Managed Identities for Azure resources
Joonas Westlin
 
PPTX
Zero credential development with managed identities
Joonas Westlin
 
PDF
Build a REST API for your Mobile Apps using Node.js
Stormpath
 
PDF
O365Con19 - O365 Identity Management and The Golden Config - Chris Goosen
NCCOMMS
 
PDF
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
CloudIDSummit
 
PDF
Azure Meetup: Keep your secrets and configurations safe in azure!
dotnetcode
 
PPTX
Azure AD B2C An Introduction - DogFoodCon 2018
Jeremy Gray
 
PPTX
Azure AD B2C Webinar Series: Custom Policies Part 1
Vinu Gunasekaran
 
PDF
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
CloudIDSummit
 
PDF
MongoDB World 2019: Securing Application Data from Day One
MongoDB
 
PPTX
Azure Key Vault - Getting Started
Taswar Bhatti
 
PPTX
2 Speed IT powered by Microsoft Azure and Minecraft
Sriram Hariharan
 
PDF
Identity Security - Azure Active Directory
Eng Teong Cheah
 
PDF
Colabora.dk - Azure PTA vs ADFS vs Desktop SSO
Peter Selch Dahl
 
PPT
SQL Server 2008 Security Overview
ukdpe
 
Building a document e-signing workflow with Azure Durable Functions
Joonas Westlin
 
Azure security guidelines for developers
Ivo Andreev
 
Programming with Azure Active Directory
Joonas Westlin
 
Mobile Authentication for iOS Applications
Lindsay Brunner
 
Zero Credential Development with Managed Identities
Joonas Westlin
 
Zero Credential Development with Managed Identities for Azure resources
Joonas Westlin
 
Zero credential development with managed identities
Joonas Westlin
 
Build a REST API for your Mobile Apps using Node.js
Stormpath
 
O365Con19 - O365 Identity Management and The Golden Config - Chris Goosen
NCCOMMS
 
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
CloudIDSummit
 
Azure Meetup: Keep your secrets and configurations safe in azure!
dotnetcode
 
Azure AD B2C An Introduction - DogFoodCon 2018
Jeremy Gray
 
Azure AD B2C Webinar Series: Custom Policies Part 1
Vinu Gunasekaran
 
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
CloudIDSummit
 
MongoDB World 2019: Securing Application Data from Day One
MongoDB
 
Azure Key Vault - Getting Started
Taswar Bhatti
 
2 Speed IT powered by Microsoft Azure and Minecraft
Sriram Hariharan
 
Identity Security - Azure Active Directory
Eng Teong Cheah
 
Colabora.dk - Azure PTA vs ADFS vs Desktop SSO
Peter Selch Dahl
 
SQL Server 2008 Security Overview
ukdpe
 
Ad

Viewers also liked (19)

PDF
Building Beautiful REST APIs in ASP.NET Core
Stormpath
 
PPTX
Storing User Files with Express, Stormpath, and Amazon S3
Stormpath
 
PPTX
Token Authentication in ASP.NET Core
Stormpath
 
PPTX
Custom Data Search with Stormpath
Stormpath
 
PPTX
Instant Security & Scalable User Management with Spring Boot
Stormpath
 
PDF
The Ultimate Guide to Mobile API Security
Stormpath
 
PPTX
Beautiful REST+JSON APIs with Ion
Stormpath
 
PDF
Building Beautiful REST APIs with ASP.NET Core
Stormpath
 
PPTX
Browser Security 101
Stormpath
 
PPTX
Building Secure User Interfaces With JWTs (JSON Web Tokens)
Stormpath
 
PDF
Getting Started With Angular
Stormpath
 
PDF
Securing Web Applications with Token Authentication
Stormpath
 
PPTX
Token Authentication for Java Applications
Stormpath
 
PPTX
Design Beautiful REST + JSON APIs
Stormpath
 
PPTX
So long scrum, hello kanban
Stormpath
 
PPTX
Build a Node.js Client for Your REST+JSON API
Stormpath
 
PPTX
Spring security
Slimen Belhaj Ali
 
PPTX
Elegant Rest Design Webinar
Stormpath
 
PPTX
Build A Killer Client For Your REST+JSON API
Stormpath
 
Building Beautiful REST APIs in ASP.NET Core
Stormpath
 
Storing User Files with Express, Stormpath, and Amazon S3
Stormpath
 
Token Authentication in ASP.NET Core
Stormpath
 
Custom Data Search with Stormpath
Stormpath
 
Instant Security & Scalable User Management with Spring Boot
Stormpath
 
The Ultimate Guide to Mobile API Security
Stormpath
 
Beautiful REST+JSON APIs with Ion
Stormpath
 
Building Beautiful REST APIs with ASP.NET Core
Stormpath
 
Browser Security 101
Stormpath
 
Building Secure User Interfaces With JWTs (JSON Web Tokens)
Stormpath
 
Getting Started With Angular
Stormpath
 
Securing Web Applications with Token Authentication
Stormpath
 
Token Authentication for Java Applications
Stormpath
 
Design Beautiful REST + JSON APIs
Stormpath
 
So long scrum, hello kanban
Stormpath
 
Build a Node.js Client for Your REST+JSON API
Stormpath
 
Spring security
Slimen Belhaj Ali
 
Elegant Rest Design Webinar
Stormpath
 
Build A Killer Client For Your REST+JSON API
Stormpath
 
Ad

Similar to Stormpath 101: Spring Boot + Spring Security (20)

PPTX
Rest API Security
Stormpath
 
PPTX
Secureyourrestapi 140530183606-phpapp02
Subhajit Bhuiya
 
PPTX
Secure Your REST API (The Right Way)
Stormpath
 
PPTX
Instant Security and User Management in Spring Boot
Remy Champion
 
PDF
JDD2015: Security in the era of modern applications and services - Bolesław D...
PROIDEA
 
PPTX
Token Management using Stormpath inside Mule
RaviShankar Mishra
 
PPTX
User Management SaaS
Emmanuel Ide
 
PPTX
No-Code SAML Support for SaaS Applications with Stormpath
Lindsay Brunner
 
PPTX
A recipe for standards-based Cloud IdM
Paul Madsen
 
PDF
Anil saldhana cloudidentitybestpractices
Anil Saldanha
 
PDF
IBM Index Conference - 10 steps to build token based API Security
Senthilkumar Gopal
 
PDF
Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin
Java User Group Latvia
 
PDF
WebAuthn & FIDO2
Leonard Moustacchis
 
PDF
Implementing Microservices Security Patterns & Protocols with Spring
VMware Tanzu
 
PDF
Spring4 security
Sang Shin
 
PDF
[4developers2016] - Security in the era of modern applications and services (...
PROIDEA
 
PDF
Java Web Programming [9/9] : Web Application Security
IMC Institute
 
PPTX
Microservices security - jpmc tech fest 2018
MOnCloud
 
PDF
Are You Properly Using JWTs?
42Crunch
 
PPTX
Api security
teodorcotruta
 
Rest API Security
Stormpath
 
Secureyourrestapi 140530183606-phpapp02
Subhajit Bhuiya
 
Secure Your REST API (The Right Way)
Stormpath
 
Instant Security and User Management in Spring Boot
Remy Champion
 
JDD2015: Security in the era of modern applications and services - Bolesław D...
PROIDEA
 
Token Management using Stormpath inside Mule
RaviShankar Mishra
 
User Management SaaS
Emmanuel Ide
 
No-Code SAML Support for SaaS Applications with Stormpath
Lindsay Brunner
 
A recipe for standards-based Cloud IdM
Paul Madsen
 
Anil saldhana cloudidentitybestpractices
Anil Saldanha
 
IBM Index Conference - 10 steps to build token based API Security
Senthilkumar Gopal
 
Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin
Java User Group Latvia
 
WebAuthn & FIDO2
Leonard Moustacchis
 
Implementing Microservices Security Patterns & Protocols with Spring
VMware Tanzu
 
Spring4 security
Sang Shin
 
[4developers2016] - Security in the era of modern applications and services (...
PROIDEA
 
Java Web Programming [9/9] : Web Application Security
IMC Institute
 
Microservices security - jpmc tech fest 2018
MOnCloud
 
Are You Properly Using JWTs?
42Crunch
 
Api security
teodorcotruta
 

Recently uploaded (20)

PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Teaching material agriculture food technology
LiaRayya
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Encapsulation theory and applications.pdf
gurumoop
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Cloud computing and distributed systems.
kkkkkhan
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 

Stormpath 101: Spring Boot + Spring Security

  • 1. Stormpath 101: Spring Boot & Spring Security
  • 2. Welcome! • Agenda • Stormpath 101 (5 mins) • Get Started with Spring Boot (25 mins) • Q&A (30 mins) • Claire Hunsaker VP of Marketing & Customer Success • Micah Silverman Java Developer Evangelist
  • 3. Customer Identity Poses Major Challenges
  • 4. Speed to Market & Cost Reduction • Complete Identity solution out-of-the-box • Security best practices and updates by default • Clean & elegant API/SDKs • Little to code, no maintenance Focus on Your Core Competency
  • 5. Stormpath User Management User Data User Workflows Google ID Your Applications Application SDK Application SDK Application SDK ID Integrations Facebook Active Directory SAML
  • 6. Features • Secure, flexible Authentication (Password, Token, OAuth, API) • Deep Authorization Groups, Roles Customer Organizations Permissions • Customer Profile Data • Single Sign-On Across Your Apps • Hosted User Screens
  • 7. Authentication Pain Points in Java Typical Authentication coding tasks: • Large pile of code • NOTHING to do with your business • And you must maintain You’re on your own: • DO NOT forget to encrypt those passwords • DO NOT forget to include csrf tokens in your templates
  • 12. Stormpath, Spring Boot, and You 1. Create a Stormpath account 2. Create and API Access keyset 3. stormpath-default-spring-boot-starter 4. Write your Spring Boot App
  • 13. Quickstart: Setting Up Stormpath with Spring Security
  • 14. LET’S LOOK AT SOME CODE!
  • 15. Java Resources • Token Auth for Spring Boot + Stormpath https://stormpath.com/blog/token-auth-for-java/ • SSO with Spring Boot + Stormpath https://stormpath.com/blog/spring-boot_id-site_heroku/ • Stormpath Java SDK https://github.com/stormpath/stormpath-sdk-java • Stormpath Java All The Integrations http://docs.stormpath.com/java/

Editor's Notes

  • #8: The main pain points of authentication in Java that we solve with the Spring boot / Spring security example
  • #9: The main pain points of authentication in Java that we solve with the Spring boot / Spring security example
  • #10: The main pain points of authentication in Java that we solve with the Spring boot / Spring security example
  • #11: The main pain points of authentication in Java that we solve with the Spring boot / Spring security example
  • #12: The main pain points of authentication in Java that we solve with the Spring boot / Spring security example
  • #13: An overview of how all these pieces fit together within their  architecture. 
  • #15: Recap of presentation and Stormpath. Final pitch on how all these pieces fit together with Stormpath being an incredibly easy solution.