Does it include CORS configuration?

Yes, it includes standardized templates for configuring CorsConfigurationSource to manage cross-origin request policies safely.

How does it handle authorization?

It implements method-level security using @PreAuthorize and @EnableMethodSecurity, allowing for complex SpEL-based permission logic.

Can I use this for JWT implementation?

Absolutely. It provides comprehensive patterns for token services, custom filters extending OncePerRequestFilter, and secure token validation.

Does this skill support the latest Spring Security versions?

Yes, it specifically follows patterns for Spring Security 6 and Spring Boot 3, utilizing SecurityFilterChain instead of the deprecated WebSecurityConfigurerAdapter.

Spring Security REST Patterns

Name: Spring Security REST Patterns
Author: tymoj

bytymoj

0•

API開発

Implements robust security configurations for Spring Boot REST APIs following modern best practices and Spring Security 6 standards.

The Spring Security Patterns skill provides expert guidance and standardized implementation patterns for securing modern RESTful applications. It focuses on Spring Boot 3+ configurations, moving away from deprecated practices to the modern SecurityFilterChain approach. This skill helps developers correctly implement stateless JWT authentication, manage CORS policies, configure method-level authorization with SpEL, and secure sensitive Actuator endpoints, ensuring that applications are protected against common vulnerabilities while maintaining clean, maintainable code.

主な機能

01Stateless JWT authentication and token lifecycle management

02Modern SecurityFilterChain configuration for Spring Boot 3+

030 GitHub stars

04Secure configuration patterns for Spring Boot Actuator endpoints

05Standardized CORS and security header implementation

06Method-level authorization using @PreAuthorize and @EnableMethodSecurity

ユースケース

01Migrating legacy Spring Security configurations to the latest non-deprecated standards

02Implementing granular role-based access control (RBAC) across REST controllers

03Bootstrapping JWT-based authentication for a new Spring Boot microservice

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add tymoj/marketplace spring-security-patterns

For use in Claude.ai and ChatGPT

主な機能

01Stateless JWT authentication and token lifecycle management

02Modern SecurityFilterChain configuration for Spring Boot 3+

030 GitHub stars

04Secure configuration patterns for Spring Boot Actuator endpoints

05Standardized CORS and security header implementation

06Method-level authorization using @PreAuthorize and @EnableMethodSecurity

ユースケース

01Migrating legacy Spring Security configurations to the latest non-deprecated standards

02Implementing granular role-based access control (RBAC) across REST controllers

03Bootstrapping JWT-based authentication for a new Spring Boot microservice

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add tymoj/marketplace spring-security-patterns

For use in Claude.ai and ChatGPT