Pop Quiz 1/30

[lunaiwa]

Reverse Proxy

• In reverse proxy > server name and proxy pass
• Describe the server name definition and proxy pass definition in the reverse proxy file

Server Name: Server name in Nginx specifies the domain name associated with server block

Reverse Proxy: Nginx is used as the reverse proxy to forward the cilent requests to backend servers

Proxy Pass: Used to define the backend server address > requests forwarded there

server {
   listen 80;
    listen [::]:80;
    ✦server_name (SERVERNAMEHERE).stu.nighthawkcodingsociety.com ; # server namer>basically links the domain name to nginx for the server configuration. 
    # Configure CORS Headers
    location / { 
       ✦proxy_pass http://localhost:8---; #  proxy pass>will then forward the requests made to the server with the “tag” for the domain name to the proxy_pass, which is the address for the localhost backend server corresponding to the domain name with server_name.
        # Simple requests
        if ($request_method ~* "(GET|POST|PUT|DELETE)") { # Customize Request methods based on your needs
                add_header "Access-Control-Allow-Origin"  *;
        }
        # Preflighted requests 
        if ($request_method = OPTIONS ) {
                add_header "Access-Control-Allow-Origin"  *;
                add_header "Access-Control-Allow-Methods" "GET, POST, PUT, DELETE, OPTIONS, HEAD"; # Make sure the request methods above match here
                add_header "Access-Control-Allow-Headers" "Authorization, Origin, X-Requested-With, Content-Type, Accept";
                return 200;
        }
    }
}

0.9

[lunaiwa]

JWT Login Process

• JWT sign-in or login
• Split the browser screen and go o page that shows authentication and produces a cookie
• Show the decryption >> // API Controller

JWT Cookie > Authentication >

[lunaiwa]

Security Config

• explain security config rules required for access in spring boot
• provide request matcher that shows permit
• request matcher that shows authentication required

Security Config Rules:

• necessary to control access to resources
• necessary to protect sensitive information

Rules:

• Authentication mechanisms > user/pass/OAuth
• Auth Rules > who accesses what
• Encrypt sensitive data
• Secure communication protocols (HTTPS)

@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http
            .authorizeRequests()
                // Permit all requests to "/public/**"
                .antMatchers("/public/**").permitAll()
                // Require authentication for other requests
                .anyRequest().authenticated()
                .and()
            .formLogin()
                // Customize login page and login processing URL if needed
                .loginPage("/login")
                .permitAll()
                .and()
            .logout()
                .permitAll();
    }
}

[lunaiwa]

POJO

• Explain POJO
• Changes to POJO
• Show in VsCode
• Highlight change
• Show POJO results as output via Postman

POJO: "Plain Old Java Object"

• doesn't extend or implement special classes/interfaces
• Java class that stays to a set of conventions to keep its structure simple
• plain and standard Java object

POJO Characteristics:

• has private fields
• getter setter for fields
• public no argument constructor

To Change POJO

[lunaiwa]

Docker

• describe docker and process for updating a docker application
• show sequence of commands req to make docker update
• show port used by Docker in application
• in deployment show sequence of commands using docker to do update to web server

Docker:

• allows developers to automate deployment of the applications inside of light containers

Commands to make Docker update:

• pull earliest version of Docker image from container reg
• stop running containers on old version > docker-compose down
• take out old containers if needed
• maven > .mvn
• run new container with new image > docker-compose up -d
• make sure any needed data/config is moved/applied