1. Why I’m Splitting “Learn Spring Security”?
1.我为什么要拆分 “学习Spring安全”?
I’ve been giving this a lot of thought.
我已经考虑了很多。
I first launched my “Learn Spring Security” course back in early 2016. It was my second course and a super-ambitious step – delivering a full Spring Security education, start-to-finish.
我第一次推出我的“学习Spring Security “课程回到2016年初。这是我的第二门课程,也是一个超级雄心勃勃的步骤–提供一个完整的Spring Security教育,从头到尾。
After many new lessons, updates and upgrades over the last few years, and almost 2000 students learning through the material – the course is a huge success.
经过过去几年的许多新课程、更新和升级,以及近2000名学生通过该材料学习 – 该课程是一个巨大的成功。
But, throughout all of this ongoing work on the material, and my own consulting work – one thing became clear. Most of my focus now is on OAuth, although I cover a lot of advanced topics in “Learn Spring Security”, as you might expect.
但是,在所有这些正在进行的材料工作中,以及我自己的咨询工作中–有一件事变得很清楚。我现在的重点是OAuth,尽管我在 “学习Spring安全 “中涵盖了许多高级主题,正如你所期望的那样。
OAuth isn’t just a part of the course – it’s THE most important part.
OAuth不仅仅是课程的一部分–它是最重要的一部分。
2. Giving OAuth the Attention It Needs
2. 给予OAuth必要的关注
With the clear and strong adoption of OAuth in the industry, the standard itself has been steadily improving as well. OAuth today isn’t the same as OAuth a few years ago.
随着OAuth在业界的明确和大力采用,该标准本身也在稳步改进。今天的OAuth与几年前的OAuth不一样了。
Also, critically, the core Spring Security team announced they’re committing to a multi-year, full rewrite of the entire OAuth stack in the framework!
另外,至关重要的是,Spring Security核心团队宣布,他们将致力于在框架中对整个OAuth堆栈进行为期多年的全面重写!。
So, things are clear – OAuth needs its own, dedicated, focused course!
所以,事情很清楚–OAuth需要有自己的、专门的、专注的课程!。
I got started with the extensive new material about three months ago now, so that’s well underway.
我大约在三个月前开始了大量的新材料,所以这正在顺利进行中。
3. The New Course
3. 新课程
That’s what I’m announcing today, and launching over the next couple of weeks – the new “Learn Spring Security OAuth” course:
这就是我今天要宣布的,并在未来几周内推出的–新的 “学习Spring Security OAuth “课程。
>> Learn Spring Security OAuth
>> Learn Spring Security OAuth/a>
Simply put, I’m building the material to be the definitive guide to secure your application with OAuth2 and Spring Security!
简而言之,我正在编写这份材料,使之成为使用OAuth2和Spring Security保护你的应用程序的权威指南!
4. What About the Non-OAuth Security Material?
4、关于非OAuth安全材料呢?
The full “Learn Spring Security” is an extensive course – where I cover a great deal more than just OAuth in the 18 modules of material.
完整的 “学习Spring安全 “是一个广泛的课程–在18个模块的材料中,我涵盖了大量不仅仅是OAuth。
So, pulling OAuth out into its own course will naturally mean that the non-OAuth material will also get its own course:
因此,将OAuth拉出来成为自己的课程,自然意味着非OAuth材料也将获得自己的课程。
This way, developers that are not focused on OAuth but are still heavily focused on security can pick up the Core course – and work through it to deep-dive into Spring Security.
这样一来,那些不关注OAuth但仍然非常关注安全的开发者就可以拿起核心课程–并通过它来深入研究Spring Security。
5. Looking Forward
5.展望未来
Both the OAuth story in Spring Security, as well as the broader security story in the framework are only getting better.
无论是Spring Security中的OAuth故事,还是框架中更广泛的安全故事都在不断完善。
The 5.3 release is shaping up, and after that, of course, Spring Security 6. There’s a lot to cover, and a lot to explore.
5.3版本正在形成,而之后当然是Spring Security 6。有很多东西要介绍,也有很多东西要探索。
That’s why this is going to be my main focus in the first half of 2019 – Spring Security – creating and adding new lessons into both courses.
这就是为什么这将是我在2019年上半年的主要重点–Spring安全–在这两门课程中创建和添加新课程。
If you’re working with Spring Security, either with or without OAuth – have a look at the course that’s relevant to your own work.
如果你正在使用Spring Security,无论是否有OAuth–请看一下与你自己工作相关的课程。
As always, I’m here if you have any questions about the new material.
像往常一样,如果你对新材料有任何疑问,我在这里。
Cheers,
干杯,。
Eugen.
Eugen.