Security

Handling HTTPS requests with Akka-HTTPS Server

Reading Time: 2 minutes Hi guys, In my last blogs I explained how one can create a self-signed certificate and KeyStore in PKCS12. You can go through the previous blog, as we’ll be needing certificate and keystore  for handling HTTPS requests. https://blog.knoldus.com/2016/10/18/create-a-self-signed-ssl-certificate-using-openssl/ https://blog.knoldus.com/2016/10/26/how-to-create-a-keystore-in-pkcs12-format/ Akka-HTTP provides both Server-Side and Client-Side HTTPS support. In this blog I’ll be covering the Server-Side HTTPS support. Let’s start with “why do we need server-side HTTPS support?” If we want the communication between the browser and Continue Reading

How to create a KeyStore in PKCS12 Format.

Reading Time: 2 minutes In my last blog I explained how to create a self-signed SSL certificate. You can go through the previous blog and generate the certificate and private key as we’ll be needing it for creating a KeyStore. Create a self-signed SSL Certificate using OpenSSL. In this blog I’ll be explaining how one can create a KeyStore in PKCS12 Format using OpenSSL. Let’s start with “What is Continue Reading

Create a self-signed SSL Certificate using OpenSSL.

Reading Time: 3 minutes In this blog I’ll be giving a little bit of insight on SSL certificates and then how to create a self-signed certificate using OpenSSL. Let’s start with  “What is an SSL Certificate?“ SSL stands for Secure Socket Layer. SSL is a global standard technology that creates encrypted communication between web browser and web server. It helps to decrease the risk of losing your personal information(e.g passwords, emails, Continue Reading

Integrate JWT with Akka HTTP

Reading Time: 3 minutes In this article we will discuss about , how to implement  authentication or authorization in Akka HTTP routes using JWT . As we know Akka HTTP is full implementation of  server  and client side HTTP stack on top Akka actor and Akka stream . Now Let’s  we  talk about JWT. what is JWT ? JSON Web Token (JWT) is an open standard (RFC 7519) that defines Continue Reading

How to build secure Web Application

Reading Time: 4 minutes We all use web applications everyday whether we consciously know it or not. That is, all of us who browse the web. Now a days we have seen a significant surge in the amount of web application specific vulnerabilities that are disclosed to the public. No web application technology has shown itself invulnerable, and discoveries are made every day that affect both owners and users security and privacy. Security Continue Reading

Vulnerability scanning with metasploit

Reading Time: 3 minutes Hola!! As you all aware of that vulnerabilities can cost you much more and as a developer you don’t need your website to have vulnerabilities (at least I am 😛 ). And for testing for loopholes in your application can be painful, So here I am to show you a quick demo on how to test your web application for these vulnerabilities. So we will use a known Continue Reading