The Spring Blog

Engineering
Releases
News and Events

This Week in Spring - September 2nd, 2014

Welcome to another installment of This Week in Spring!

This is the last installment of TWiS before SpringOne2GX 2014 kicks off next week! I, personally, am very excited! I can't wait to see you all there. This is going to be so much fun. So, let's get on to it!

Read more...

Spring guides make it easier to jump to core content

If you remember last year, we rolled out a powerful new website built top-to-bottom with Spring. It was fresh, new, and loaded with gobs of getting started guides.

Since then, the feedback has been overwhelmingly positive. We've had record traffic with a large portion visiting the guides. So what's new?

We recently added the ability to hide/show the build steps. Many people expressed the desire to skip project setup steps and instead jump to the core content. We listened and responded.

After reading over a guide, do you need Gradle or Maven build steps? No problem! Just click on the appropriate header, and the steps will expand and show you the extra bits. To top it off, the website uses HTML local storage to remember the choice you made. Surf to another guide and you'll see the same perspective.

Read more...

Spring Security OAuth 2.0.3 Available Now

Spring Security OAuth 2.0.3 is available now in all the usual Maven repositories. It's a bug fix release, nothing major, so upgrading from 2.0.x should be painless (and is recommended). Some people were having issues getting JWT tokens to work properly, and those should be fixed. The only noteworthy functional change is that Resource Servers (if configured with @Configuration) will now check the validity of the client and scopes before allowing access to protected resources. This means that client privileges can be revoked quickly, but may also lead to a performance penalty (so caching the ClientDetailsService results would be recommended).

Read more...

Spring Tool Suite and Groovy/Grails Tool Suite 3.6.1 released

Dear Spring Community,

I am happy to announce the new release of our Eclipse-based tooling today: The Spring Tool Suite (STS) 3.6.1 and the Groovy/Grails Tool Suite (GGTS) 3.6.1.

Highlights from this release include:

  • updated to tc Server 3.0.0
  • performance improvements for building Spring projects
  • AspectJ/AJDT now support annotation processors

To download the distributions, please go visit:

Detailed new and noteworthy notes can be found here: STS/GGTS 3.6.1 New & Noteworthy.

Read more...

Spring Data Dijkstra SR4 released

On behalf of the Spring Data team I am pleased to announce the availability of the fourth service release of the Dijkstra release train. It includes 36 fixes overall for the following modules:

Read more...

This Week in Spring - August 26th, 2014

Holy cats! Can you believe how close we are to SpringOne2GX? Last year we made a huge splash with the announcements of Spring Boot and Spring XD, both of which have recently hit 1.0 releases. I happen to know the next level looks like, and you're going to want to see it. Register now if you haven't already!

Read more...

Building a RESTful quotation service with Spring

I was recently made aware that a public API we were using for one of our guides contained objectionable material. After confirming this, I immediately responded that we would pick another source. Wishing to avoid such an issue in the future, I decided the best solution was to build our own RESTful quote service. So I decided to use the best tools to do so, the Spring stack, and was able to migrate the very next day.

Picking your tools

To kick things off, I made a check list of what I knew would be the right tools for the job of creating a RESTful web service.

Read more...

Preview Spring Security WebSocket Support

Introduction

Previously, an application could use Spring Security to perform authentication in a WebSocket application. This worked because the Principal of an HttpServletRequest will be propagated to the WebSocket Session.

The problem is that authorization was limited to handshake. This means that once the connection was made, there was no way to provide any granularity to authorization of the WebSocket application.

Using Spring Security's Messaging Support

Spring Security 4.0.0.M2 has introduced authorization support for WebSockets through the Spring Messaging abstraction. To provide authorization, simply extend the AbstractSecurityWebSocketMessageBrokerConfigurer and configure the MessageSecurityMetadataSourceRegistry. For example:

Read more...

This Week in Spring-19th August 2014

Welcome to another installment of This Week in Spring! It's a few weeks before SpringOne2GX 2014, already! Time sure flies when you're having fun! The beginning of 2015 will mark the 4th year of This Week in Spring, and it's more exciting every week! I'm hoping to see as many of you as possible at SpringOne2GX 2014. This is sure to be an amazing event.

Anyway, with that out of the way, let's get on to this week's roundup!

  1. Spring Security lead Rob Winch just announced Spring Security 4.0.0.M2, which
    provides a lot of great features, including improved Security-aware testing support, Spring Data integration, support for websocket security, and ties into the nascent Spring Session projet that was derived from the work for this release. Check it out! Rob also announced Spring Security 3.2.5 and 3.1.7 which is a fix that closes a few potential security holes. This is good stuff, all around!
  2. Spring framework 4.1.RC2 just dropped. Spring 4.1 is very near completion, so be sure to check out the latest and greatest bits in this release!
  3. Christoph Strobl just announced the first RC for the Spring Data Evans release train. The new release includes a lot of features, including text search integration for Spring Data MongoDB, improved multistore support, configuration options for Redis sentinels, and much more.
  4. Our friends at Codecentric have just announced a new cut of their custom Spring Boot autoconfiguration for Spring Batch. This implementation is different than the auto-configuration provided out of the box with Spring Boot, and includes support for JSR 352.
  5. Netflix Developer Dan Woods recently gave a nice talk looking at what they hope to get out of the Spring Boot-based Grails 3, and the slide deck is definitely worth a look.
  6. The Being Java Guys blog has a nice post on how to build a REST service with Spring 4 and Hibernate 4. The example uses web.xml and Spring XML configuration. It's a working recipe, but I hope readers will remember that you can get the same done with Spring Boot in much less time and code.
  7. Oracle has particular support for Spring-based applications in WebLogic 12.1.3 which, I confess, I didn't know about. This is a pretty interesting read if you're on WebLogic.
  8. Tirthal's Java cafe blog takes a look at the recently announced Spring IO.
  9. This Vietnamese-language post on building a simple Spring-based web application was pretty straightforward, and worth a read.
  10. This post introduces how to integrate Spring Security 3.0.4 and GWT
Read more...

Spring Security 4.0.0.M2 Released

I'm pleased to announce the release of Spring Security 4.0.0.M2 available in the Spring Milestone repository.

SpringOne 2GX 2014 is around the corner
Book your place at SpringOne in Dallas, TX for Sept 8-11 soon. It's simply the best opportunity to find out first hand all that's going on and to provide direct feedback. From 0 to Spring Security 4.0 session will contain detailed information on how to get started with Spring Security and provide a deep dive into the new features found in Spring Security 4. Of course there plenty of other exciting Spring related talks!
Read more...