How to secure Java-based web apps right
Spring Security is a widely used framework for securing Java-based web apps. Keycloak significantly increases security for users and operators of such applications. Is it enough or should one dig deeper into the toolbox to be on the safe side?