andifalk
I've been working in enterprise application development projects > 20 years. My focus is on agile development of cloud native applications on spring platform.
@NovatecConsulting Stuttgart
Pinned Repositories
api-security
All your APIs belong to me - API Security Demos
authorizationserver
Spring Boot OAuth 2.0 & OpenID Connect Identity Provider / Authorization Server
bookmark-service
A secure spring boot based java service providing an API to store and retrieve browser bookmarks
cloud-security-workshop
OAuth 2.1 and OpenID Connect for Java Developers
custom-spring-authorization-server
Customized version of the spring authorization server
oidc-workshop-spring-io-2019
Workshop at Spring I/O 2019 on "Securing Microservices with OpenID Connect and Spring Security 5.1"
reactive-spring-security-5-workshop
Hands-On workshop for securing a reactive spring boot 2 application in multiple steps
secure-oauth2-oidc-workshop
Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0
spring-cloud-gateway-workshop
Microservices on the Edge with Spring Cloud Gateway (Hands-On Workshop)
supply-chain-security
Demos for software supply chain security
andifalk's Repositories
andifalk/reactive-spring-security-5-workshop
Hands-On workshop for securing a reactive spring boot 2 application in multiple steps
andifalk/secure-oauth2-oidc-workshop
Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0
andifalk/custom-spring-authorization-server
Customized version of the spring authorization server
andifalk/api-security
All your APIs belong to me - API Security Demos
andifalk/secure-development-on-kubernetes
Slides and Demos for "Secure Development on Kubernetes" talk
andifalk/bookmark-service
A secure spring boot based java service providing an API to store and retrieve browser bookmarks
andifalk/cloud-security-workshop
OAuth 2.1 and OpenID Connect for Java Developers
andifalk/client-certificate-demo
Demo for client/server certificate authentication using TLS (Mutual TLS)
andifalk/advanced-authentication-scenarios
Advanced Authentication Patterns (SameSite Domain Apps, BFF, ...)
andifalk/authorizationserver-samples
Sample projects using spring boot authorizationserver
andifalk/spring-cloud-gateway-workshop
Microservices on the Edge with Spring Cloud Gateway (Hands-On Workshop)
andifalk/spring-security-intro
Introductory crash course for Spring Security
andifalk/api-security-testing
Performing security testing for a typical cloud native java application build using spring boot
andifalk/custom-spring-authorization-server-samples
Sample client and server apps for custom spring authorization server
andifalk/dependency-track-helm-chart
Helm chart for OWASP Dependency Track
andifalk/secure-spa
Security in Single Page Applications
andifalk/supply-chain-security
Demos for software supply chain security
andifalk/architecture-docs
Sample architecture docs
andifalk/ASVS-Testing
Use the OWASP Application Security Verification Standard as a Guide for Automated Unit and Integration Tests
andifalk/cryptography-for-devs
Cryptography labs for developers
andifalk/jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
andifalk/kafka-demo
Demos for Kafka
andifalk/quick-open-id-connect
Fast Intro into federated identities with OpenID Connect hands-on
andifalk/spring-cloud-gateway-mvc
Tutorial for Spring Cloud Gateway MVC (non-reactive)
andifalk/spring-security-bootcamp
Boot Camp to secure applications with Spring Security
andifalk/struts-rest-showcase
Vulnerable Struts Rest API
andifalk/testit-securitytester
Automated security testing of web applications
andifalk/threagile-demo
Demo for threat-modeling using Threagile
andifalk/threat-dragon-models
OWASP Threat Dragon models repository
andifalk/whats-new-in-spring-security
What's new in Spring Security 6.3 and 6.4 + Spring Authorization Server 1.3