Andreas Falk's repositories
spring-security-bootcamp
Boot Camp to secure applications with Spring Security
whats-new-in-spring-security
What's new in Spring Security 6.3 and 6.4 + Spring Authorization Server 1.3
quick-open-id-connect
Fast Intro into federated identities with OpenID Connect hands-on
cryptography-for-devs
Cryptography labs for developers
custom-spring-authorization-server
Customized version of the spring authorization server
spring-cloud-gateway-mvc
Tutorial for Spring Cloud Gateway MVC (non-reactive)
architecture-docs
Sample architecture docs
bookmark-service
A secure spring boot based java service providing an API to store and retrieve browser bookmarks
supply-chain-security
Demos for software supply chain security
api-security
All your APIs belong to me - API Security Demos
spring-security-intro
Introductory crash course for Spring Security
secure-development-on-kubernetes
Slides and Demos for "Secure Development on Kubernetes" talk
secure-oauth2-oidc-workshop
Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0
testit-securitytester
Automated security testing of web applications
spring-cloud-gateway-workshop
Microservices on the Edge with Spring Cloud Gateway (Hands-On Workshop)
ASVS-Testing
Use the OWASP Application Security Verification Standard as a Guide for Automated Unit and Integration Tests
threagile-demo
Demo for threat-modeling using Threagile
threat-dragon-models
OWASP Threat Dragon models repository
cloud-security-workshop
OAuth 2.1 and OpenID Connect for Java Developers
reactive-spring-security-5-workshop
Hands-On workshop for securing a reactive spring boot 2 application in multiple steps
kafka-demo
Demos for Kafka
secure-spa
Security in Single Page Applications
authorizationserver-samples
Sample projects using spring boot authorizationserver
jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
custom-spring-authorization-server-samples
Sample client and server apps for custom spring authorization server
api-security-testing
Performing security testing for a typical cloud native java application build using spring boot
client-certificate-demo
Demo for client/server certificate authentication using TLS (Mutual TLS)
struts-rest-showcase
Vulnerable Struts Rest API
dependency-track-helm-chart
Helm chart for OWASP Dependency Track
advanced-authentication-scenarios
Advanced Authentication Patterns (SameSite Domain Apps, BFF, ...)