Spring security with kerberos

What is a keytab, and how do I use one? Introduction to Kerberos for Managers Crash Course to Kerberos Appendix D. Troubleshooting JAAS authentication with Kerberos http://www.roguelynn.com/words/explain-like-im-5-kerberos/ KDC = Kerberos Key Distribution Center TGT = Ticket Granting Ticket TGS = […]

Ufw (uncomplicated firewall)

documentation https://help.ubuntu.com/lts/serverguide/firewall.html http://manpages.ubuntu.com/manpages/xenial/en/man8/ufw.8.html http://manpages.ubuntu.com/manpages/xenial/en/man8/ufw-framework.8.html important files /etc/ufw/user.rules Uncomplicated Firewall # https://help.ubuntu.com/community/UFW sudo ufw show added sudo ufw status verbose sudo ufw show listening sudo ufw limit ssh sudo ufw allow 80 sudo ufw allow 443 sudo ufw allow 32400 sudo […]

ssh, http and https multiplexing

This is about how to have the ssh and http(s) server share the same port (e.g. 80 or 443 port). This is really cool :). # Used sources: # http://yalis.fr/cms/index.php/post/2014/02/22/Multiplex-SSH-and-HTTPS-on-a-single-port # http://blog.cppse.nl/apache-proxytunnel-ssh-tunnel # http://serverfault.com/questions/355271/ssh-over-https-with-proxytunnel-and-nginx # http://tyy.host-ed.me/pluxml/article4/port-443-for-https-ssh-and-ssh-over-ssl-and-more # http://ipset.netfilter.org/iptables.man.html # http://ipset.netfilter.org/iptables-extensions.man.html […]

Spring security

HTML translated to java config see also Java Configuration see also http://www.springframework.org/schema/security/spring-security.xsd <http security=”none” pattern=”/resources/**”/> <http pattern=”/api1/**” create-session=”stateless”> <intercept-url pattern=”/**” access=”authenticated”/> <http-basic /> </http> <http pattern=”/api2/**” create-session=”never”> <intercept-url pattern=”/api2/api21/**” access=”hasRole(‘ROLE_ADMIN’)”/> <intercept-url pattern=”/api2/**” access=”hasRole(‘ROLE_USER’)”/> <http-basic /> </http> <http pattern=”/api3/**”> <intercept-url pattern=”/api3/api31/**” […]