Secure Developer Java (Inc OWASP) Training Course

This instructor-led, live training in France (online or onsite) targets experienced Spring Boot developers seeking to leverage advanced features to further enhance, secure, and test complex Spring Boot applications.

Upon completing this training, participants will be able to:

• Customize the Spring WebMVC framework to improve the decoupling of web applications.
• Serialize and deserialize objects using Jackson Serialization Views.
• Store and secure user data within a database.
• Utilize Spring Sessions to manage user session information in a distributed manner.
• Automate the testing of Spring WebMVC applications.
• Monitor and measure application performance.

This instructor-led, live training in France (online or onsite) is aimed at web developers who wish to use Angular and Spring Boot to build full stack applications.

By the end of this training, participants will be able to:

• Develop a full stack application with Angular and Spring Boot.
• Build a backend application with Spring Boot.
• Create frontend applications with Angular.
• Use Spring Security to configure authentication for a full stack application.

Implementing a secure networked application can be challenging, even for developers who have prior experience with cryptographic building blocks such as encryption and digital signatures. To ensure participants grasp the role and usage of these cryptographic primitives, the course first establishes a solid foundation on the core requirements of secure communication—including secure acknowledgment, integrity, confidentiality, remote identification, and anonymity. It also highlights typical threats that can compromise these requirements, alongside real-world solutions.

Given that cryptography is a critical aspect of network security, the course discusses essential cryptographic algorithms in symmetric cryptography, hashing, asymmetric cryptography, and key agreement. Rather than focusing on in-depth mathematical theory, these concepts are presented from a developer's perspective, featuring typical use-case examples and practical considerations such as public key infrastructures. Security protocols relevant to various areas of secure communication are introduced, with a detailed exploration of widely used protocol families like IPSEC and SSL/TLS.

The course also addresses common cryptographic vulnerabilities associated with specific algorithms and protocols, including BEAST, CRIME, TIME, BREACH, FREAK, Logjam, Padding Oracle, Lucky Thirteen, POODLE, and RSA timing attacks. For each issue, practical implications and potential consequences are described, without delving into complex mathematical details.

Finally, as XML technology plays a central role in data exchange for networked applications, the course covers the security aspects of XML. This includes the use of XML within web services and SOAP messages, along with protection mechanisms such as XML Signature and XML Encryption. It also examines weaknesses in these protection measures and XML-specific security issues like XML injection, XML External Entity (XXE) attacks, XML bombs, and XPath injection.

Participants attending this course will

• Understand basic concepts of security, IT security, and secure coding
• Understand the requirements of secure communication
• Learn about network attacks and defenses at different OSI layers
• Gain a practical understanding of cryptography
• Understand essential security protocols
• Understand some recent attacks against cryptosystems
• Get information about some recent related vulnerabilities
• Understand security concepts of Web services
• Get sources and further readings on secure coding practices

Audience

Developers, Professionals

Apache Groovy is a dynamic programming language for the JVM (Java Virtual Machine). It offers features like scripting capabilities, Domain-Specific Language authoring, runtime and compile-time meta-programming, and functional programming. Groovy is frequently used as a complement to Java.

In this instructor-led live training, participants will learn how to code in Groovy by building a sample application step by step.

Audience

• Developers

Course Format

• Part lecture, part discussion, exercises and heavy hands-on practice

This instructor-led live training in France (online or onsite) is designed for beginner-level developers who wish to learn the basics of Groovy Programming.

Upon completion of this training, participants will be able to:

• Grasp fundamental programming concepts.
• Write simple Groovy scripts and leverage core Groovy features.
• Understand and apply basic object-oriented programming principles using Groovy.
• Employ basic error-handling techniques to address common programming errors and exceptions in Groovy.

This instructor-led, live training in France (offered online or on-site) is designed for intermediate Java developers who want to design, develop, deploy, and maintain microservices-based applications using Java frameworks like Spring Boot and Spring Cloud.

By the end of this training, participants will be able to:

• Understand the principles and benefits of microservices architecture.
• Build and deploy microservices using Java and Spring Boot.
• Implement service discovery, configuration management, and API gateways.
• Secure, monitor, and scale microservices effectively.
• Deploy microservices using Docker and Kubernetes.

This instructor-led, live training in France (available online or onsite) is tailored for intermediate to advanced developers seeking to master the development of microservices using Spring Boot, Docker, and Kubernetes.

By the end of this training, participants will be able to:

• Comprehend microservices architecture principles.
• Build production-ready microservices using Spring Boot.
• Understand the critical role of Docker in containerizing microservices.
• Configure Kubernetes clusters to deploy and orchestrate microservices.

This instructor-led live training in France (online or onsite) is aimed at developers who wish to use Quarkus to build, test, and deploy applications that are fully powered by Java but with reduced resource utilization.

By the end of this training, participants will be able to:

• Set up the necessary development environment to start developing applications with Quarkus.
• Build, compile, and run applications in native mode using GraalVM.
• Utilize Quarkus tooling and extensions for building native applications using Maven.
• Containerize, execute, and deploy applications with Docker.

This instructor-led, live training in France (online or onsite) is aimed at intermediate-level to advanced-level developers and architects who wish to develop Java native applications and microservices using Quarkus with optimized memory usage and startup time.

By the end of this training, participants will be able to:

• Develop high-performance, lightweight Java native applications using Quarkus.
• Build and deploy RESTful services and microservices architectures.
• Use GraalVM for native compilation and optimize startup and memory efficiency.
• Package and containerize applications for Kubernetes and OpenShift environments.

This instructor-led live training in France (online or onsite) is designed for software architects and web developers who wish to utilize RabbitMQ as messaging middleware and program in Java using Spring to build applications.

By the end of this training, participants will be able to:

• Develop applications using Java, Spring, and RabbitMQ.
• Design asynchronous, message-driven systems using RabbitMQ.
• Create and implement queues, topics, exchanges, and bindings within RabbitMQ.

This instructor-led live training in France (online or on-site) is designed for web developers who aim to build functional front-end and back-end web applications using Spring Boot, React, and Redux.

By the end of this training, participants will be able to:

• Build a front-end application with React and Redux.
• Create RESTful APIs with Spring Boot.
• Secure web services with Spring Security and JWT web tokens.

This instructor-led, live training in France (online or onsite) is designed for Java developers looking to leverage the Spring 5 framework to build and deploy enterprise-grade web applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5.
• Understand and implement the latest features of Spring 5.
• Access databases using Spring applications.
• Utilize the new reactive web framework, WebFlow, to create reactive applications.
• Integrate Spring applications with legacy Java EE applications.
• Test and deploy enterprise-grade Spring applications.

Spring is a robust Java framework that streamlines enterprise application development by offering powerful dependency injection, modular architecture, and simplified configuration options.

This instructor-led live training (available online or on-site) is designed for beginner-level Java developers aiming to construct modern, production-ready web applications utilizing the latest Spring Framework and Spring Boot 3.5.5 alongside Java 21.

Upon completion of this training, participants will be able to:

• Grasp Spring’s core principles, including Inversion of Control (IoC), Dependency Injection (DI), and Aspect-Oriented Programming (AOP).
• Configure Spring applications using XML, annotations, and JavaConfig.
• Develop RESTful services leveraging Spring Boot and JPA.
• Implement CRUD operations, manage transactions, and handle data persistence.
• Utilize advanced Spring features such as profiles, exception handling, and data serialization.

Course Format

• A concise theoretical overview followed by extensive practical exercises.
• Hands-on implementation using real-world scenarios.
• Interactive discussions and guided troubleshooting.

Customization Options

• To request a tailored training session for this course, please contact us to make arrangements.

Spring WebFlux is a reactive programming module within the Spring Framework designed for building non-blocking, event-driven web applications.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level Java developers who wish to build scalable and responsive applications using Spring WebFlux.

By the end of this training, participants will be able to:

• Understand the fundamentals of reactive programming with Project Reactor.
• Build and test non-blocking RESTful APIs using Spring WebFlux.
• Integrate WebFlux with databases and external services.
• Apply reactive patterns to real-world application scenarios.

Format of the Course also allows for the evaluation of participants.

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in France (online or onsite) is aimed at developers who wish to use WebFlux to develop and deploy reactive applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5 and the WebFlux framework.
• Develop reactive applications and services.