The Spring Blog

News and Events

This Week in Spring-19th August 2014

Welcome to another installment of This Week in Spring! It's a few weeks before SpringOne2GX 2014, already! Time sure flies when you're having fun! The beginning of 2015 will mark the 4th year of This Week in Spring, and it's more exciting every week! I'm hoping to see as many of you as possible at SpringOne2GX 2014. This is sure to be an amazing event.

Anyway, with that out of the way, let's get on to this week's roundup!

  1. Spring Security lead Rob Winch just announced Spring Security 4.0.0.M2, which
    provides a lot of great features, including improved Security-aware testing support, Spring Data integration, support for websocket security, and ties into the nascent Spring Session projet that was derived from the work for this release. Check it out! Rob also announced Spring Security 3.2.5 and 3.1.7 which is a fix that closes a few potential security holes. This is good stuff, all around!
  2. Spring framework 4.1.RC2 just dropped. Spring 4.1 is very near completion, so be sure to check out the latest and greatest bits in this release!
  3. Christoph Strobl just announced the first RC for the Spring Data Evans release train. The new release includes a lot of features, including text search integration for Spring Data MongoDB, improved multistore support, configuration options for Redis sentinels, and much more.
  4. Our friends at Codecentric have just announced a new cut of their custom Spring Boot autoconfiguration for Spring Batch. This implementation is different than the auto-configuration provided out of the box with Spring Boot, and includes support for JSR 352.
  5. Netflix Developer Dan Woods recently gave a nice talk looking at what they hope to get out of the Spring Boot-based Grails 3, and the slide deck is definitely worth a look.
  6. The Being Java Guys blog has a nice post on how to build a REST service with Spring 4 and Hibernate 4. The example uses web.xml and Spring XML configuration. It's a working recipe, but I hope readers will remember that you can get the same done with Spring Boot in much less time and code.
  7. Oracle has particular support for Spring-based applications in WebLogic 12.1.3 which, I confess, I didn't know about. This is a pretty interesting read if you're on WebLogic.
  8. Tirthal's Java cafe blog takes a look at the recently announced Spring IO.
  9. This Vietnamese-language post on building a simple Spring-based web application was pretty straightforward, and worth a read.
  10. This post introduces how to integrate Spring Security 3.0.4 and GWT

Spring Security 4.0.0.M2 Released

I'm pleased to announce the release of Spring Security 4.0.0.M2 available in the Spring Milestone repository.

SpringOne 2GX 2014 is around the corner
Book your place at SpringOne in Dallas, TX for Sept 8-11 soon. It's simply the best opportunity to find out first hand all that's going on and to provide direct feedback. From 0 to Spring Security 4.0 session will contain detailed information on how to get started with Spring Security and provide a deep dive into the new features found in Spring Security 4. Of course there plenty of other exciting Spring related talks!

CVE-2014-3527 Fixed in Spring Security 3.2.5 and 3.1.7

Spring Security 3.2.5 (change log) and 3.1.7 (change log) have been released and are available in Maven Central. Important highlights of this release are:

  • This release contains a fix for CVE-2014-3527 which resolves an issue where a malicious CAS Service can impersonate another CAS Service when using proxy tickets.
  • This release updates the transitive dependencies of the cas module to cas-client-core which has a fix for CVE-2014-4172. This issue was not in Spring Security itself, but the library in which it depends on.

Spring Framework 4.1 RC2 Released

On behalf of the team I am pleased to announce the second release candidate of Spring Framework 4.1 is now available from our milestone repository. This release includes over 70 fixes and improvements.

Spring 4.1 is really coming up soon: please try it out and let us know if you run into any issue. We're looking forward to getting in touch via Twitter, StackOverflow or JIRA.

SpringOne 2GX 2014 is around the corner

Book your place at SpringOne in Dallas, TX for Sept 8-11 soon. It's simply the best opportunity to find out first hand all that's going on and to provide direct feedback. There will be deep dive sessions on Spring XD along with general Big Data talks to provide an introduction to the landscape and challenges in developing Big Data applications.


First Release Candidate of Spring Data Release Train Evans Available

We are happy to announce the first release candidate of the Spring Data release train Evans. We ship the following modules:


This Week in Spring - August 12th, 2014

Welcome to another installment of This Week in Spring. We've got a lot of cool stuff happening and, as you might imagine, the entire team is abuzz in preparation for SpringOne2GX 2014, coming in just a few short weeks! If you haven't registered, now's the time to do so!

  1. Spring Security lead and all-around sleepless ninja Rob Winch has just announced that Spring MVC Test HtmlUnit 1.0.0.M2 has been released. This is an awesome release if you're trying to unit test real pages with Spring MVC
  2. Spring Boot 1.1.5 has just been released. The new release mainly addresses a few issues and is a recommended upgrade for all users.
  3. I really enjoyed this blog, ¿Qué es Spring Framework?, which tries to explain what the fundamental value of Spring is. Largely, the (Spanish language) article explains that Spring handles the lifecycle for objects in a consistent way. It's easy to plug in various frameworks, software, around the edges when the fundamental life-cycle is handled. I would point out that this post uses Spring 3.0 and XML configuration, which is a bit outdated, though certainly still works.
  4. The RebelLabs folks are back at it with an interesting look at web framework usage. Check out this latest report which has Spring MVC leading the charge (by a lot).
  5. This is a nice post looking at how to use Spring MVC (as part of Spring framework 4.x) to handle file uploads
  6. The Mr. Haki * blog has a nice post on analyzing dependencies using Gradle, with an example based on Spring Boot. Spring Boot, of course, is easy to get started with, can be used with Maven *or Gradle, and has numerous benefits, not the least of which being that it makes it dead simple to use Spring libraries in your project without worrying about version mismatches.
  7. Stuck on JAX-RS and JSF? Still want to use Spring Security? This post - from the JSF Usefullness post - has the code snippets that (sort of) demonstrate a path forward. Granted, you'll have an easier time of doing this using straight Spring. No need to add all that extra Java EE weight..
  8. This is a sort of oldie-but-a-goodie: a post on how to implement a JQuery-powered autosave example in Spring MVC
  9. This is a (particularly tortured) example of how to write a Spring application that uses Primefaces and runs on the Wildfly application server. I don't see why you'd need all this indirection when Spring has good JSF support out of the box. Additionally, there's no reason to recreate the JdbcTemplate or inject an ApplicationContext into a bean. Maybe it'll help somebody as a first-cut, though.

Spring MVC Test HtmlUnit 1.0.0.M2 Released

I'm pleased to announce the second milestone release of Spring MVC Test HtmlUnit.

The project’s aim is to provide integration between Spring MVC Test and HtmlUnit. This simplifies performing end to end testing when using HTML based views.


You can view the complete changelog on github. Below are the highlights of the release:

  • The release contains Reference Documentation and Publishes the API Docs
  • The artifact name has changed from spring-test-mvc-htmlunit to spring-test-htmlunit See the Updating Dependencies to see how to add Spring MVC Test HtmlUnit as either a Maven or Gradle dependency
  • The project name has been changed to Spring MVC Test HtmlUnit in order to better align with Spring MVC Test's name
  • Context root of "" is now supported
  • Support for external resources has been added. See the javadoc of DelegatingWebConnection for additional details.
  • Bug fixes

This Week in Spring - August 5th, 2014

Welcome to another installment of This Week in Spring! As usual, we've got a lot to cover so let's get to it.

  1. Spring Cloud lead Ramnivas Laddad has written up a nice post that looks at how to extend Spring Cloud to consume other services in a consistent manner.
  2. I liked Samer Abdelkafi's blog introducing how to use Java configuration with Spring. It's always a good time to review..
  3. The Pragmatists blog has a detailed look at the sort of (tortured) steps involved in using Spring with the Play! web framework
  4. Biju Kunjummen put together a great post that looks at how to deploy a Spring Cloud enabled application to Cloud Foundry
  5. Thys Michels is back at it again, this time with a post on building a ToDo application with Spring MVC and Angular.js
  6. I am really happy that this link is in this week's roundup, the author -Priyadarshini - did an amazing job! Check out this really thoughtful introduction to using Spring Boot to build a CRUD-capable Spring Boot-based application.
  7. The /dev/Kico blog has a nice Portguese-language post on what's new in Spring 4
  8. Ahmed Essam El-din Ahmed's roundup of the integrations for security among the various web frameworks - including Spring MVC - is fantastic.
  9. Did you know that Spring provides a StoredProcedure object that can be used to wrap and adapt the painful setup involved in invoking a stored procedure from JDBC.
  10. Theodora Fragkouli put together a nice post on how to handle Spring MVC form handling
  11. The ITEssays blog has a code recipe demonstrating how to use Spring Data MongoDB with XML configuration.

Extending Spring Cloud

One of the most interesting capabilities of Spring Cloud is its extensibility. You can extend it to support additional clouds, enhance already supported clouds, support new services, new service connectors--all without modifying the Spring Cloud code itself. In this blog, we explore this capability. If you haven’t done so already, please read the first and second blog in this series to acquire sufficient background.

The three axes of extensibility

Spring Cloud provides extensibility along three orthogonal directions. You may extend it in one of these directions and orthogonality ensures that you continue to benefit from the others.