The Spring Blog

Engineering
Releases
News and Events

This Week in Spring - August 26th, 2014

Holy cats! Can you believe how close we are to SpringOne2GX? Last year we made a huge splash with the announcements of Spring Boot and Spring XD, both of which have recently hit 1.0 releases. I happen to know the next level looks like, and you're going to want to see it. Register now if you haven't already!

Read more...

Building a RESTful quotation service with Spring

I was recently made aware that a public API we were using for one of our guides contained objectionable material. After confirming this, I immediately responded that we would pick another source. Wishing to avoid such an issue in the future, I decided the best solution was to build our own RESTful quote service. So I decided to use the best tools to do so, the Spring stack, and was able to migrate the very next day.

Picking your tools

To kick things off, I made a check list of what I knew would be the right tools for the job of creating a RESTful web service.

Read more...

This Week in Spring-19th August 2014

Welcome to another installment of This Week in Spring! It's a few weeks before SpringOne2GX 2014, already! Time sure flies when you're having fun! The beginning of 2015 will mark the 4th year of This Week in Spring, and it's more exciting every week! I'm hoping to see as many of you as possible at SpringOne2GX 2014. This is sure to be an amazing event.

Anyway, with that out of the way, let's get on to this week's roundup!

  1. Spring Security lead Rob Winch just announced Spring Security 4.0.0.M2, which
    provides a lot of great features, including improved Security-aware testing support, Spring Data integration, support for websocket security, and ties into the nascent Spring Session projet that was derived from the work for this release. Check it out! Rob also announced Spring Security 3.2.5 and 3.1.7 which is a fix that closes a few potential security holes. This is good stuff, all around!
  2. Spring framework 4.1.RC2 just dropped. Spring 4.1 is very near completion, so be sure to check out the latest and greatest bits in this release!
  3. Christoph Strobl just announced the first RC for the Spring Data Evans release train. The new release includes a lot of features, including text search integration for Spring Data MongoDB, improved multistore support, configuration options for Redis sentinels, and much more.
  4. Our friends at Codecentric have just announced a new cut of their custom Spring Boot autoconfiguration for Spring Batch. This implementation is different than the auto-configuration provided out of the box with Spring Boot, and includes support for JSR 352.
  5. Netflix Developer Dan Woods recently gave a nice talk looking at what they hope to get out of the Spring Boot-based Grails 3, and the slide deck is definitely worth a look.
  6. The Being Java Guys blog has a nice post on how to build a REST service with Spring 4 and Hibernate 4. The example uses web.xml and Spring XML configuration. It's a working recipe, but I hope readers will remember that you can get the same done with Spring Boot in much less time and code.
  7. Oracle has particular support for Spring-based applications in WebLogic 12.1.3 which, I confess, I didn't know about. This is a pretty interesting read if you're on WebLogic.
  8. Tirthal's Java cafe blog takes a look at the recently announced Spring IO.
  9. This Vietnamese-language post on building a simple Spring-based web application was pretty straightforward, and worth a read.
  10. This post introduces how to integrate Spring Security 3.0.4 and GWT
Read more...

Spring Security 4.0.0.M2 Released

I'm pleased to announce the release of Spring Security 4.0.0.M2 available in the Spring Milestone repository.

SpringOne 2GX 2014 is around the corner
Book your place at SpringOne in Dallas, TX for Sept 8-11 soon. It's simply the best opportunity to find out first hand all that's going on and to provide direct feedback. From 0 to Spring Security 4.0 session will contain detailed information on how to get started with Spring Security and provide a deep dive into the new features found in Spring Security 4. Of course there plenty of other exciting Spring related talks!
Read more...

CVE-2014-3527 Fixed in Spring Security 3.2.5 and 3.1.7

Spring Security 3.2.5 (change log) and 3.1.7 (change log) have been released and are available in Maven Central. Important highlights of this release are:

  • This release contains a fix for CVE-2014-3527 which resolves an issue where a malicious CAS Service can impersonate another CAS Service when using proxy tickets.
  • This release updates the transitive dependencies of the cas module to cas-client-core which has a fix for CVE-2014-4172. This issue was not in Spring Security itself, but the library in which it depends on.
Read more...

Spring Framework 4.1 RC2 Released

On behalf of the team I am pleased to announce the second release candidate of Spring Framework 4.1 is now available from our milestone repository. This release includes over 70 fixes and improvements.

Spring 4.1 is really coming up soon: please try it out and let us know if you run into any issue. We're looking forward to getting in touch via Twitter, StackOverflow or JIRA.

SpringOne 2GX 2014 is around the corner

Book your place at SpringOne in Dallas, TX for Sept 8-11 soon. It's simply the best opportunity to find out first hand all that's going on and to provide direct feedback. There will be deep dive sessions on Spring XD along with general Big Data talks to provide an introduction to the landscape and challenges in developing Big Data applications.

Read more...

First Release Candidate of Spring Data Release Train Evans Available

We are happy to announce the first release candidate of the Spring Data release train Evans. We ship the following modules:

Read more...

This Week in Spring - August 12th, 2014

Welcome to another installment of This Week in Spring. We've got a lot of cool stuff happening and, as you might imagine, the entire team is abuzz in preparation for SpringOne2GX 2014, coming in just a few short weeks! If you haven't registered, now's the time to do so!

  1. Spring Security lead and all-around sleepless ninja Rob Winch has just announced that Spring MVC Test HtmlUnit 1.0.0.M2 has been released. This is an awesome release if you're trying to unit test real pages with Spring MVC
  2. Spring Boot 1.1.5 has just been released. The new release mainly addresses a few issues and is a recommended upgrade for all users.
  3. I really enjoyed this blog, ¿Qué es Spring Framework?, which tries to explain what the fundamental value of Spring is. Largely, the (Spanish language) article explains that Spring handles the lifecycle for objects in a consistent way. It's easy to plug in various frameworks, software, around the edges when the fundamental life-cycle is handled. I would point out that this post uses Spring 3.0 and XML configuration, which is a bit outdated, though certainly still works.
  4. The RebelLabs folks are back at it with an interesting look at web framework usage. Check out this latest report which has Spring MVC leading the charge (by a lot).
  5. This is a nice post looking at how to use Spring MVC (as part of Spring framework 4.x) to handle file uploads
  6. The Mr. Haki * blog has a nice post on analyzing dependencies using Gradle, with an example based on Spring Boot. Spring Boot, of course, is easy to get started with, can be used with Maven *or Gradle, and has numerous benefits, not the least of which being that it makes it dead simple to use Spring libraries in your project without worrying about version mismatches.
  7. Stuck on JAX-RS and JSF? Still want to use Spring Security? This post - from the JSF Usefullness post - has the code snippets that (sort of) demonstrate a path forward. Granted, you'll have an easier time of doing this using straight Spring. No need to add all that extra Java EE weight..
  8. This is a sort of oldie-but-a-goodie: a post on how to implement a JQuery-powered autosave example in Spring MVC
  9. This is a (particularly tortured) example of how to write a Spring application that uses Primefaces and runs on the Wildfly application server. I don't see why you'd need all this indirection when Spring has good JSF support out of the box. Additionally, there's no reason to recreate the JdbcTemplate or inject an ApplicationContext into a bean. Maybe it'll help somebody as a first-cut, though.
Read more...

Spring MVC Test HtmlUnit 1.0.0.M2 Released

I'm pleased to announce the second milestone release of Spring MVC Test HtmlUnit.

The project’s aim is to provide integration between Spring MVC Test and HtmlUnit. This simplifies performing end to end testing when using HTML based views.

Changelog

You can view the complete changelog on github. Below are the highlights of the release:

  • The release contains Reference Documentation and Publishes the API Docs
  • The artifact name has changed from spring-test-mvc-htmlunit to spring-test-htmlunit See the Updating Dependencies to see how to add Spring MVC Test HtmlUnit as either a Maven or Gradle dependency
  • The project name has been changed to Spring MVC Test HtmlUnit in order to better align with Spring MVC Test's name
  • Context root of "" is now supported
  • Support for external resources has been added. See the javadoc of DelegatingWebConnection for additional details.
  • Bug fixes
Read more...