Udemy | Angular 7 Security Masterclass (with FREE E-Book) [FTU]

seeders: 14
leechers: 4
Added 6 years ago by SunRiseZone in Other

Download Fast Safe Anonymous
movies, software, shows...

Files

Udemy | Angular 7 Security Masterclass (with FREE E-Book) [FTU] (Size: 1.3 GB)
  1. Angular Security Course Helicopter View.mp4 21.2 MB
  1. Angular Security Course Helicopter View.vtt 2.5 KB
  1. Auth0 Section Introduction - Using JWTs to Delegate Authentication To 3rd Party.mp4 14.1 MB
  1. Auth0 Section Introduction - Using JWTs to Delegate Authentication To 3rd Party.vtt 6.6 KB
  1. Client Side Authentication Service - API Design.mp4 11.2 MB
  1. Client Side Authentication Service - API Design.vtt 5.9 KB
  1. Introduction To Cryptographic Hashes - A Running Demo.mp4 14.4 MB
  1. Introduction To Cryptographic Hashes - A Running Demo.vtt 7 KB
  1. JSON Web Tokens - Section Introduction.mp4 9.5 MB
  1. JSON Web Tokens - Section Introduction.vtt 5.4 KB
  1. Other Courses.mp4 30.4 MB
  1. Other Courses.vtt 2.9 KB
  1. RBAC Role-Based Authorization - Section Introduction.mp4 12.3 MB
  1. RBAC Role-Based Authorization - Section Introduction.vtt 6.6 KB
  1. Switch Branches And User Session Management Section Introduction.mp4 15.6 MB
  1. Switch Branches And User Session Management Section Introduction.vtt 8.8 KB
  1. Understanding CSRF - Step-by-Step Attack Simulation.mp4 23.9 MB
  1. Understanding CSRF - Step-by-Step Attack Simulation.vtt 12.1 KB
  1. User Sign Up With JWT - Learn How To Combine Cookies and JWTs.mp4 20.6 MB
  1. User Sign Up With JWT - Learn How To Combine Cookies and JWTs.vtt 10.2 KB
  10. An Ancient Vulnerability - JSON Hijacking, Securing REST Endpoint.mp4 21.7 MB
  10. An Ancient Vulnerability - JSON Hijacking, Securing REST Endpoint.vtt 11.7 KB
  10. Auth0 JWT-based Authentication - Backend Implementation.mp4 21.3 MB
  10. Auth0 JWT-based Authentication - Backend Implementation.vtt 12.2 KB
  10. Authorization Router Guard Completed - Configuring a Factory Provider.mp4 19.7 MB
  10. Authorization Router Guard Completed - Configuring a Factory Provider.vtt 10.3 KB
  11. Implementing Logout - Destroying The User Session.mp4 20.8 MB
  11. Implementing Logout - Destroying The User Session.vtt 9.7 KB
  11. User Sign Up -Requesting Permission to Use Users Email.mp4 15.8 MB
  11. User Sign Up -Requesting Permission to Use Users Email.vtt 7 KB
  12. User Login - Step-by-Step Implementation.mp4 17.3 MB
  12. User Login - Step-by-Step Implementation.vtt 9 KB
  12. User Signup and User Preferences - Frontend Implementation.mp4 12.8 MB
  12. User Signup and User Preferences - Frontend Implementation.vtt 6.5 KB
  13. Finish Login Functionality and Section Conclusion.mp4 24.8 MB
  13. Finish Login Functionality and Section Conclusion.vtt 12.3 KB
  13. User Signup and User Profile - Server-Side Implementation.mp4 14.2 MB
  13. User Signup and User Profile - Server-Side Implementation.vtt 7.8 KB
  14. Section Summary - The Main Benefit of JWTs.mp4 11 MB
  14. Section Summary - The Main Benefit of JWTs.vtt 5 KB
  2. Bonus Lecture.html 4.3 KB
  2. CSRF In Detail - Understanding Attack Limitations.mp4 18.2 MB
  2. CSRF In Detail - Understanding Attack Limitations.vtt 9.2 KB
  2. Client Authentication Service - Design and Implementation.mp4 22.2 MB
  2. Client Authentication Service - Design and Implementation.vtt 11 KB
  2. Creating Your First JWT - What Does It Look Like.mp4 4.8 MB
  2. Creating Your First JWT - What Does It Look Like.vtt 2.7 KB
  2. Integrating a 3rd Party Authentication Provider - Auth0.mp4 13.2 MB
  2. Integrating a 3rd Party Authentication Provider - Auth0.vtt 6.1 KB
  2. Node Util Promisify - How to Convert Callback Based APIs to Promise-based.mp4 10.9 MB
  2. Node Util Promisify - How to Convert Callback Based APIs to Promise-based.vtt 5.7 KB
  2. Server-Side User Identification Via a Custom Express Middleware.mp4 21.7 MB
  2. Server-Side User Identification Via a Custom Express Middleware.vtt 11.8 KB
  2. Setting Up The RBAC Solution - Adding Roles to our JWT.mp4 19.3 MB
  2. Setting Up The RBAC Solution - Adding Roles to our JWT.vtt 8.3 KB
  2. Some Interesting Properties Of Hashing Functions - Validating Passwords.mp4 13.2 MB
  2. Some Interesting Properties Of Hashing Functions - Validating Passwords.vtt 7.6 KB
  2. The Typescript Jumpstart Ebook.html 6 KB
  2.1 Typescript_Jumpstart_Book_Udemy.pdf.pdf 757.6 KB
  3. Angular RBAC Authorization - Solution Overview.mp4 7.9 MB
  3. Angular RBAC Authorization - Solution Overview.vtt 5.1 KB
  3. Conclusion and Key Takeaways.mp4 83.4 MB
  3. Conclusion and Key Takeaways.vtt 10.4 KB
  3. Implementing the CSRF Double Submit Cookie Defense - Server Implementation.mp4 33.3 MB
  3. Installing Git, Node, NPM and Choosing an IDE.mp4 60.6 MB
  3. Installing Git, Node, NPM and Choosing an IDE.vtt 5 KB
  3. Introduction To Node Async Await - Creating a User Session Id.mp4 18.6 MB
  3. Introduction To Node Async Await - Creating a User Session Id.vtt 9.9 KB
  3. JSON Web Tokens In a Nutshell.mp4 8.9 MB
  3. JSON Web Tokens In a Nutshell.vtt 5.1 KB
  3. Learn Offline Dictionary Attacks - Why Use Cryptographic Salting.mp4 17.7 MB
  3. Learn Offline Dictionary Attacks - Why Use Cryptographic Salting.vtt 9.7 KB
  3. Setting Up an Auth0 Externally Hosted Login Page.mp4 15.2 MB
  3. Setting Up an Auth0 Externally Hosted Login Page.vtt 7.5 KB
  3. The New Angular HTTP Client - Doing a POST Call To The Server.mp4 14.8 MB
  3. The New Angular HTTP Client - Doing a POST Call To The Server.vtt 7.2 KB
  3. User Retrieval Express Middleware - Error Handling With Async Await.mp4 6.7 MB
  3. User Retrieval Express Middleware - Error Handling With Async Await.vtt 4 KB
  4. Backend Express Authorization Route - Design Overview.mp4 14 MB
  4. Backend Express Authorization Route - Design Overview.vtt 6.8 KB
  4. Finishing The Implementation Of User Identification Middleware.mp4 13.5 MB
  4. Finishing The Implementation Of User Identification Middleware.vtt 7.6 KB
  4. How To Defense Our Application Against CSRF - Client And Server Defenses.mp4 22 MB
  4. How To Defense Our Application Against CSRF - Client And Server Defenses.vtt 11.7 KB
  4. How does Auth0 Authentication Work Logging In a User.mp4 17.9 MB
  4. How does Auth0 Authentication Work Logging In a User.vtt 7.3 KB
  4. Installing The Lessons Code - Learn Why Its Essential To Use NPM 5.mp4 14.8 MB
  4. Installing The Lessons Code - Learn Why Its Essential To Use NPM 5.vtt 7 KB
  4. JSON Web Tokens In Detail - The Header and the Payload.mp4 18.7 MB
  4. JSON Web Tokens In Detail - The Header and the Payload.vtt 8 KB
  4. Modeling a User Session - Classes Or Interfaces.mp4 14.5 MB
  4. Modeling a User Session - Classes Or Interfaces.vtt 8.2 KB
  4. Password Key Derivation Functions and The Node Crypto Module.mp4 14.4 MB
  4. Password Key Derivation Functions and The Node Crypto Module.vtt 6.7 KB
  4. User Sign Up Server-Side Implementation in Express.mp4 21.6 MB
  4. User Sign Up Server-Side Implementation in Express.vtt 10.8 KB
  5. Backend Express Authorization Route - Implementation and Demo.mp4 9.1 MB
  5. Backend Express Authorization Route - Implementation and Demo.vtt 7 KB
  5. Backend JWT-based Security Using an Express Middleware.mp4 15.5 MB
  5. Backend JWT-based Security Using an Express Middleware.vtt 8.6 KB
  5. Browser Cookies - How To Use Them For User Session Management.mp4 20.4 MB
  5. Browser Cookies - How To Use Them For User Session Management.vtt 9.9 KB
  5. How To Run Node In TypeScript With Hot Reloading.mp4 8.1 MB
  5. How To Run Node In TypeScript With Hot Reloading.vtt 71.9 MB
  5. JWT Signature With HS256 - How Does It Work Learn What is an HMAC Code.mp4 21.3 MB
  5. JWT Signature With HS256 - How Does It Work Learn What is an HMAC Code.vtt 11.1 KB
  5. Receiving The Auth0 JWT at Application Startup with parseHash.mp4 13.1 MB
  5. Receiving The Auth0 JWT at Application Startup with parseHash.vtt 7 KB
  5. Using the Argon 2 Hashing Function In Our Sign Up Backend Service.mp4 22.6 MB
  5. Using the Argon 2 Hashing Function In Our Sign Up Backend Service.vtt 10.2 KB
  6. Attack Scenario - User Identity Theft Attack Using A Third-Party Server.mp4 12.2 MB
  6. Attack Scenario - User Identity Theft Attack Using A Third-Party Server.vtt 6.2 KB
  6. Guided Tour Of The Sample Application.mp4 15 MB
  6. Guided Tour Of The Sample Application.vtt 7.5 KB
  6. How To Implement a Password Policy.mp4 13.6 MB
  6. How To Implement a Password Policy.vtt 6.2 KB
  6. JWT Signature With RS256 - Learn The Advantages Compared to HS256.mp4 18.4 MB
  6. JWT Signature With RS256 - Learn The Advantages Compared to HS256.vtt 10.1 KB
  6. JWT-based Authentication - Section Conclusion and What's Next.mp4 10.3 MB
  6. JWT-based Authentication - Section Conclusion and What's Next.vtt 5.4 KB
  6. Storing the Auth0 JWT In Local Storage.mp4 11.2 MB
  6. Storing the Auth0 JWT In Local Storage.vtt 6.3 KB
  6. The Admin Login As User Backend Service.mp4 14.6 MB
  6. The Admin Login As User Backend Service.vtt 8 KB
  7. Adapting the UI To the User Login Status.mp4 18.7 MB
  7. Adapting the UI To the User Login Status.vtt 9.9 KB
  7. Creating a JWT User Session - Setting Subject and Expiration.mp4 7.5 MB
  7. Creating a JWT User Session - Setting Subject and Expiration.vtt 3.9 KB
  7. Displaying Client-Side Password Validation Errors - What's Next.mp4 16.6 MB
  7. Displaying Client-Side Password Validation Errors - What's Next.vtt 7.7 KB
  7. How To Better Protect The Session Id Using HTTP Only Cookies.mp4 6.9 MB
  7. How To Better Protect The Session Id Using HTTP Only Cookies.vtt 3.3 KB
  7. UI RBAC Authorization With The rbacAllow Structural Directive.mp4 14.3 MB
  7. UI RBAC Authorization With The rbacAllow Structural Directive.vtt 7.3 KB
  8. Angular HTTP Interceptor - Build an Authentication Interceptor.mp4 22.8 MB
  8. Angular HTTP Interceptor - Build an Authentication Interceptor.vtt 11.4 KB
  8. HTTPS Secure Cookies - Running the Angular CLI in HTTPS Mode.mp4 12.6 MB
  8. HTTPS Secure Cookies - Running the Angular CLI in HTTPS Mode.vtt 6.4 KB
  8. The rbacAllow Structural Directive - Final Implementation and Demo.mp4 18.7 MB
  8. The rbacAllow Structural Directive - Final Implementation and Demo.vtt 12.4 KB
  9. Authorization Router Guard - Initial Implementation.mp4 15.7 MB
  9. Authorization Router Guard - Initial Implementation.vtt 8.4 KB
  9. Client-Side User Session Management - Retrieve User Data From Session.mp4 25.5 MB
  9. Client-Side User Session Management - Retrieve User Data From Session.vtt 12.6 KB
  9. JWT Authentication with express-jwt and JSON Web Key Set - Backend Design.mp4 21.9 MB
  9. JWT Authentication with express-jwt and JSON Web Key Set - Backend Design.vtt 8.8 KB
  Discuss.FTUForum.com.html 31.9 KB
  FTUForum.com.html 100.4 KB
  FreeCoursesOnline.Me.html 108.3 KB
  How you can help Team-FTU.txt 204.8 B
  NulledPremium.com.url 204.8 B
  Torrent Downloaded From GloDls.to.txt 102.4 B
  Torrent Downloaded From ProstyleX.com.txt 0 B
  ▲ 153 total files

Description


Practical Guide to Angular 6 Security - Add Authentication / Authorization (from scratch) to an Angular 6 / Node App

BESTSELLER

Created by : Angular University
Last updated : 3/2019
Language : English
Caption (CC) : Included
Torrent Contains : 153 Files, 10 Folders
Course Source : https://www.udemy.com/angular-security/

What you'll learn

• Code in Github repository with downloadable ZIP files per section
• Get a solid foundation in Web Security Fundamentals
• Perform the attacks yourself manually, in order to fully understand them
• Understand and Defend an Application against common security attacks, such as Dictionary Attacks, Cross-Site Request Forgery, etc.
• Understand JWT in-depth, including the multiple signature types
• Design and Implement Application Authentication and Authorization from scratch
• Know how to add Authentication to an Angular Application using JWTs (and traditional Server Sessions)
• Know how to add RBAC (Role based Access control) Authorization to an Angular application

Requirements

• Just some previous knowledge of Angular and Typescript

Description

The course is an Web Application Security Fundamentals Course, where the application will use the Angular/Node stack.

This course covers Angular 6 and all the server code is in Typescript, but the security concepts explained in it are applicable to other technology stacks.

This course uses the Typescript language, and includes an auxiliary Ebook - The Typescript Jumpstart Ebook

We will use several MIT licensed Angular and Node packages from Auth0 (that you could use in your application), and we will also include a demo of how to use Auth0 for doing Application User Management.

Its important to realize that this is NOT an Auth0 specific course. Auth0 will be the source of a couple of open source packages we will use, and will be doing a quick demo of it to show how JWT makes it simple to delegate authentication to a third-party system, which could be developed in-house as well.

Security - A Fundamental Step in a Software Development Career

Security is probably the number one advanced topic that Software Developers are expected to master when going forward in their software development careers.

Security knowledge is hard to come by but its essential for advancing to more senior software development positions, like for example Application Architect or similar.

Learning Web Security Fundamentals, knowing how to design an application for security, and knowing how to recognize and fix security issues is an essential skill for a senior developer.

But the problem is that security knowledge is orthogonal to most other topics and it typically takes years to learn.

The good news is that once you have it, Security knowledge has a much longer shelf live than most software development knowledge in general.

Most of the vulnerabilities and fixes that you will learn in this course were useful 10 years ago, and will (very likely) still be useful 10 years from now - Angular and Node are just an example of one stack, to make the course examples more practical.

Security is seen as something really hard to master - this is actually not the case! Application Security is much more approachable than you might think, depending on how you learn it.

What Is The Best Way To Learn Security in a Fun and Practical Way?

Here is what we will do: we are going to take the skeleton of a running application that has no security yet, and we are going to secure the application step-by-step.

Using a couple of MIT packages from Auth0 (that you would be able to use in any project), we are going to implement the Sign-Up and Login functionality from scratch, and because security cannot be enforced only at the client-side, we will implement both the frontend in Angular and the backend in Node.

As we secure the application, and we are going to periodically attack the application many times during the course, to prove that the vulnerabilities are real!!

By doing so, we will learn along the way the fundamentals of Authentication and Authorization, we will become familiar with common vulnerabilities like Dictionary Attacks, CSRF and others, and we will get familiar with commonly used cryptographic tools like Hashing, Salting, JWT, password storage recommendations and more.

Please don't be intimidated by these concepts: The focus in this course will not be on the internals of each of the cryptographic tools that we will use, but instead on understanding on a high-level what problems do these tools solve, when to use each and why.

We will also learn how to design our application for security, and we will learn how in many situations application design is ou best defense.

Course Overview

We will start at the beginning: we will see the proper way of doing User Management and Sign Up: we will learn how to store passwords in a database, and we will introduce cryptographic hashes in an approachable way.

Once we have the Sign-Up functionality in place, we will implement Login and understand the need for a temporary identity token. Our first implementation will be stateful login, where the token is kept at the server level.

And at this point we could think we have authentication in place, but we decide to prepare our application for scalability, so we decide to try a JWT (JSON Web Tokens) based approach, because we know that this is what services like Firebase and Auth0 use.

We will use a couple of Auth0 packages to quickly refactor our Login to be JWT based, and learn the advantages of using JWT, and some potential disadvantages as well.

We will then see how its also possible to do Authentication using a third-party JWT-based service like Auth0, effectively removing all authentication logic from both our codebase and our database, and delegating it to a third-party service.

Note that this Auth0-specific part is only a small part of the course, and its main goal is to show how its possible at an enterprise level to delegate authentication to a centralized service, whithout having to introduce direct communication between applications and the centralized authentication service.

This means that if you can't use Auth0 at your company, you can apply the same design principles and design a JWT-solution that delegates authentication to a centralized server behind the firewall.

We will then cover how to do UI-level role-based functionality in Angular using the Angular Router, and a custom directive for showing or hiding certain parts of the UI depending on the role of the user. We will learn why the Router cannot enforce actual security.

We will also talk about server-side Authorization, and we will implement a commonly needed security-related Admin Level functionality: The Login As User service, that allows an admin to login as any user, to investigate a problem report. We can see why we would need to secure this functionality!

At the end of all these vulnerabilities and security fixes, we will have a well secured application and we will have learned a ton of security-related concepts along the way in a fun and practical way!

What Will you Learn In this Course?

With this course, you will have a rock-solid foundation on Web Application Security Fundamentals, and you will have gained the practical experience of applying those concepts by defending an application from a series of security attacks. You will have done so by actually performing many of the attacks!

You will have learned these concepts in the context of an Angular/Node application, but these concepts are applicable to any other technology stack.

You will learn what built-in mechanisms does Angular provide to defend against security problems, and what vulnerabilities it does NOT defend against and why.

You will be familiar with best practices for password storage, custom authentication service design and implementation, you will know the essentials about cryptographic hashes, be familiar with JWT and several commonly used open source Auth0 packages.

You will be familiar with the following security vulnerabilities: Dictionary attacks, identity token highjacking techniques, the browser same-origin policy, how to combine cookies with JWTs and why, Cross--Site Request Forgery or CSRF, common design vulnerabilities, and more.

You will know common practical solutions for securing both enterprise and public internet applications, such as how to use JWT to delegate authentication to a centralized service, which could be Auth0 or a in-house developed service that follows similar principles.

You will know how to implement UI-level authorization and use client-side constructs like Router guards to implement it and even build your own authorization-related UI directives.

You will also learn about server side authorization, and how to implement a commonly needed backend service that is only accessible to Admins - Login As User.

What Will You Be Able to do at the End Of This Course?

This course could help you take your development career to a more senior level, where the knowledge about web application security is essential and a key differentiating factor.

If you are a private internet business owner or thinking of launching your own platform, this course will contain most of what you need in practice to secure your own online platform in a robust and effective way.

With this course, you will have the knowledge necessary for evaluating many third-party security-related solutions, and you will know where to look for vulnerabilities in your application.

You will be able to understand most application-level vulnerability reports that come out of security audits done by third party companies, and you will be able to understand and fix the most commonly reported problems.

Who this course is for :

• Angular Developers looking to learn in-depth Web Application Security in the specific context of an Angular Application.

For More Udemy Free Courses >>> https://ftuforum.com/
For more Lynda and other Courses >>> https://www.freecoursesonline.me/
Our Forum for discussion >>> https://discuss.ftuforum.com/




Related Torrents

torrent name size uploader age seed leech
0
0
0
1
0