Spécialisation Secure Coding in Laravel

Ce spécialisation n'est pas disponible en Français (France)

Nous sommes actuellement en train de le traduire dans plus de langues.

Spécialisation Secure Coding in Laravel

Name: Secure Coding in Laravel
Rating: 5 (12 reviews)

Build with Laravel, a PHP Framework. Create safe and secure web apps and webpages with Laravel

Instructeur : Aaron Saray

Inclus avec Coursera Plus

Série de 3 cours

Approfondissez votre connaissance d’un sujet

5.0

(12 avis)

niveau Débutant

Aucune connaissance prérequise

1 mois

à 10 heures par semaine

Planning flexible

Apprenez à votre propre rythme

Série de 3 cours

Approfondissez votre connaissance d’un sujet

5.0

(12 avis)

niveau Débutant

Aucune connaissance prérequise

1 mois

à 10 heures par semaine

Planning flexible

Apprenez à votre propre rythme

Compétences que vous acquerrez

Catégorie : Programming Tool
Catégorie : Secure Coding
Catégorie : Web Development Tools
Catégorie : Cybersecurity
Catégorie : Hypertext Preprocessor (PHP)
Catégorie : Laravel
Catégorie : web application development
Catégorie : Coding
Catégorie : Web Application

Détails à connaître

Certificat partageable

Ajouter à votre profil LinkedIn

Enseigné en Anglais

Découvrez comment les employés des entreprises prestigieuses maîtrisent des compétences recherchées

En savoir plus sur Coursera pour les affaires

Améliorez votre expertise en la matière

Acquérez des compétences recherchées auprès d’universités et d’experts du secteur
Maîtrisez un sujet ou un outil avec des projets pratiques
Développez une compréhension approfondie de concepts clés
Obtenez un certificat professionnel auprès de Infosec

Obtenez un certificat professionnel

Ajoutez cette qualification à votre profil LinkedIn ou à votre CV

Partagez-le sur les réseaux sociaux et dans votre évaluation de performance

Spécialisation - 3 séries de cours

With Laravel, a PHP language framework, websites and apps are built faster and easier than ever before. With all of this tooling, abstraction and speed, however, it can be easy to forget or overlook security. In this course, you will learn about some of Laravel's built-in security features; best practices for securing your application; and real-life code and examples.

The PHP framework Laravel offers many options to build strong, safe apps and websites. In the first part of this course, you will explore some of the most common ways to secure your Laravel application. You’ll learn about configuring your application securely to reduce the chance of leaking secrets and credentials, validating user input and authentication methodologies. The second half of the course focuses on user access control through gates and policies, eliminating SQL injection attacks and securing sessions with rate limits. If you stick with it through the end, you’ll get a bonus section about static analysis, tripwires and honeypots.

Projet d'apprentissage appliqué

In the hands-on project for this course, you will be presented with seven challenges that you would encounter in a typical Laravel project. By the end of the course and the project you will be able to analyze and evaluate a Laravel application for overt security vulnerabilities, configure and create a secure-by-default Laravel application, and recommend features to add to a Laravel application to heighten the chance of catching malicious actors. You will be given a free trial to access to the Infosec Skills platform to complete the project.

Laravel: Configure, Validate, Authenticate and Authorize

COURS 12 heures5.0 (10 évaluations)

Ce que vous apprendrez

To get started in this beginning course on Laravel, we will examine what prerequisites you need to get the most out of this specialization. We’ll discuss the different ways to install the Laravel framework and focus on the most secure choice. We also will talk about the security concerns of using third-party packages. The course will introduce some tips on how to audit your application after a third-party package is installed. Finally, we'll share resources to stay up-to-date with Laravel.

Securing configuration and secrets is one of the most important parts of your Laravel app. This course will focus on using the configuration system properly, securing environment secrets and ways to force SSL for your Laravel app. In addition, log filtering and exception handling systems are constructed to reduce the chance of leaking sensitive information. Validation is necessary to secure input from both users and third-parties. In this course, we’ll discuss what things to validate, why to validate them and how to use Laravel’s built-in rules to get the most secure validation configuration. We'll examine using form requests to validate for controllers, as well as using inline-validation for commands. Finally, custom validation is also built and dissected. Authentication is the first half of securing user access to your Laravel application. In this course, we’ll cover how to authenticate users in Laravel and the reasons why. We’ll discuss and examine the built-in Laravel authentication kits and explain which kit is best for which use case. Even if you have unique authentication requirements, Laravel’s authentication system can be used and we’ll show how with a custom authentication provider. Authorization is the second half of securing user access to your Laravel application. In this course, we’ll discuss the different built-in options Laravel has to provide authorization. Gates, a simpler solution, will be compared to the more advanced policy system. Extending the authorization system with roles and permissions with a third-party package is also demonstrated. Finally, best practices of using authorization will be presented, including making sure not to fall into some common traps.

Compétences que vous acquerrez

Catégorie : Secure Coding

Catégorie : Computer Programming

Catégorie : Cybersecurity

Catégorie : Information Technology

Catégorie : Laravel

Laravel Additional Security

COURS 22 heures

Ce que vous apprendrez

This course focuses on ways to keep your Laravel database secure. It starts with supporting request and response security. First, we’ll discuss how Laravel supports semantic request verbs while still being compatible with browsers. Then, tools to protect against cross-site request forgery and cross-site scripting protection are examined. Then it describes the best practices for applying specific security-related headers to responses are reviewed.

We then move on to the two types of scanning tools that can be used on a Laravel application: developer code-scanning tools and hacker attack tools. In this course, we talk about what tools you should run to scan your code and configuration for security holes and vectors of attack. Additionally, we discuss other tools that a bad actor might use against your website, so you can learn to use them against yourself first and protect yourself proactively. This course also covers two ways of interacting with bad actors: honeypots and tripwires. Tripwires, functionality that matches a specific restricted access and then actively alerts or blocks access, are discussed and demonstrated. Honeypots, functionality attached to the app to monitor suspected bad activity and report on it later, are also reviewed. Closing out this learning path, we’ll talk about what next steps to take to secure your Laravel application and stay connected with the community. You’ll learn how to stay in the know and see what new security weaknesses are out there and whether you’re affected. e.g. This is primarily aimed at first- and second-year undergraduates interested in engineering or science, along with high school students and professionals with an interest in programming.

Compétences que vous acquerrez

Catégorie : Database Security

Catégorie : Computer Programming

Catégorie : Hypertext Preprocessor (PHP)

Catégorie : Laravel

Catégorie : Coding

Laravel Protections

COURS 31 heure

Ce que vous apprendrez

In this course, you'll take a look at how Laravel protects your database and ways you can configure it to protect your system. The Laravel database access layer has a lot of built-in protection from common attacks. However, when you need to customize functionality it can be easy to undo that layer and allow for attacks like SQL injection. In this course, we’ll discuss how Laravel protects your database and look at ways to extend functionality without compromising security. Then, we’ll pivot to performance and reducing the chance of denial of service attacks. Finally, concentrating on a layered approach of security in your app, we’ll focus on the security of properties in an Eloquent model.

The course also covers three related concepts that are compared and analyzed. Securing Laravel passwords and ensuring their complexity is explained. Hashing functionality and algorithms provided by Laravel are also reviewed. Leveraging encryption by hand, as well as where it’s automatically integrated into Laravel, is also discussed. Additionally, the course will discuss two mechanisms for tracking users between requests and storing user information are discussed in this course: sessions and cookies. First, all of the different session configurations and drivers are discussed. We’ll review what is really necessary and what is just hype. Then, using the persistent session storage and flashing session data is reviewed. The course complete with a discussion of the usage and security of Laravel cookies. And finally, the course will cover how Laravel provides functionality to rate limit incoming requests. Rationale for choosing to protect end points, both globally and with segmented or conditional choices, is discussed.

Compétences que vous acquerrez

Catégorie : Database Security

Catégorie : Computer Programming

Catégorie : Database (DBMS)

Catégorie : Laravel

Instructeur

Aaron Saray

Infosec

3 Cours1 542 apprenants

Offert par

Infosec

Pour quelles raisons les étudiants sur Coursera nous choisissent-ils pour leur carrière ?

Felipe M.

Étudiant(e) depuis 2018

’Pouvoir suivre des cours à mon rythme à été une expérience extraordinaire. Je peux apprendre chaque fois que mon emploi du temps me le permet et en fonction de mon humeur.’

Jennifer J.

Étudiant(e) depuis 2020

’J'ai directement appliqué les concepts et les compétences que j'ai appris de mes cours à un nouveau projet passionnant au travail.’

Larry W.

Étudiant(e) depuis 2021

’Lorsque j'ai besoin de cours sur des sujets que mon université ne propose pas, Coursera est l'un des meilleurs endroits où se rendre.’

Chaitanya A.

’Apprendre, ce n'est pas seulement s'améliorer dans son travail : c'est bien plus que cela. Coursera me permet d'apprendre sans limites.’

Ouvrez de nouvelles portes avec Coursera Plus

Accès illimité à plus de 7 000 cours de renommée internationale, à des projets pratiques et à des programmes de certificats reconnus sur le marché du travail, tous inclus dans votre abonnement

Faites progresser votre carrière avec un diplôme en ligne

Obtenez un diplôme auprès d’universités de renommée mondiale - 100 % en ligne

Découvrir les diplômes

Rejoignez plus de 3 400 entreprises mondiales qui ont choisi Coursera pour les affaires

Améliorez les compétences de vos employés pour exceller dans l’économie numérique

Foire Aux Questions

Best for those who deploy and support Laravel applications.

It is helpful to take the Laravel Courses in the following order: Laravel: Configure, Validate, Authenticate and Authorize; Laravel Protections; Laravel Additional Security

This specialization does not provide university credit.

Yes! To get started, click the course card that interests you and enroll. You can enroll and complete the course to earn a shareable certificate, or you can audit it to view the course materials for free. When you subscribe to a course that is part of a Specialization, you’re automatically subscribed to the full Specialization. Visit your learner dashboard to track your progress.