eCommerce Application

In this final part of the course, you'll complete the eCommerce application. This will give you some additional practice and demonstrate that you've learned the key security and DevOps skills from this course. After successful completion of the project, here are some of the specific things you will have shown you are able to do:

• Demonstrate correct handling of authorization with proper security using JWT.
• Write tests and meet an acceptable code coverage level.
• Identify the correct metrics for logging, in order to monitor a system.
• Index metrics to Splunk.
• Demonstrate configuration and automation of the CI/CD pipeline.

That's a lot, and we hope that after completing your project you feel proud of having learned so many new skills!

Instructions

Note: For the sake of thoroughness, these instructions go over all the steps needed for the project—but if you've been following along with the walkthroughs in the course, you will already have been working with this code and implemented some of the necessary changes! If you skipped those walkthroughs, we suggest you go back and do them now, and then come back here to finish the remainder of the project.

You'll start with a template for the complete application, written in Java using Spring Boot, Hibernate ORM, and the H2 database. Your goal will be to take this template and add proper authentication and authorization controls so users can only access their data, and that data can only be accessed in a secure way. You'll do this using a combination of usernames and passwords for authentication, as well as JSON Web Tokens (JWT) to handle the authorization.