Welcome to another installment of This Week in Spring! This week I am at DevNexus in Atlanta, GA along with a handful of Spring team members and Spring community luminaries. I'll be presenting a talk on getting started with Spring Boot and I hope you'll join me, or one of the many other talks on Spring team:

• Spring 4 Web Applications by Rossen Stoyanchev
• Cloud Native Apps with Spring Cloud by Spencer Gibb
• Building microservices with Scala, functional domain models and Spring Boot by Chris Richardson
• What is new in Spring Integration 4? by Marius Bogoevici
• Spring Data REST - Data Meets Hypermedia by Greg Turnquist and Roy Clarkson
• IoT Realized - The Connected Car by Michael Minella
• Keeping It Clean - Lessons learned from Open Source on how to polish code by Phillip Webb
• Spring Integration Java DSL - A Deep Dive by Gary Russell
…

This post is a guest post by Activiti co-founder and community member Joram Barrez (@jbarrez) who works for Alfresco. Thanks Joram! I'd like to see more of these community guest posts, so - as usual - don't hesitate to ping me (@starbuxman) with ideas and contributions! -Josh

---

Introduction

Activiti is an Apache-licensed business process management (BPM) engine. Such an engine has as core goal to take a process definition comprised of human tasks and service calls and execute those in a certain order, while exposing various API's to start, manage and query data about process instances for…

Welcome to another installment of This Week in Spring! This week I'm in Kansas City, Kansas, hanging out with my pal and Spring Security lead Rob Winch. This week, I'm speaking at the local User Group and the Spring User Group, and I'll be talking to Cerner and a few other large businesses about Spring, Spring Boot and Spring Cloud.

As usual, we've got a lot of great stuff to talk about, so let's go to it!

1. Spring Boot co-lead Phil Webb just announced Spring Boot 1.2.2 and Spring Boot 1.1.11. Both releases are recommended upgrades, and Spring Boot 1.2.2 even includes new support for the Mustache templating library. Nice!
2. Check out John Hann's SpringOne2GX 2014 talk, introducing Rave.js, which brings Spring Boot-concepts to JavaScript
3. I put together a blog on building applications that use the Servlet HTTP session in a scalable manner and in a portable way - from application server, web server, and cloud - with ease.
4. Chris Beams's SpringOne2GX 2014 talk, The Revolution will not be Centralized…

Recorded at SpringOne2GX 2014.

Speaker: Brian Clozel, Rossen Stoyanchev

Slides: http://www.slideshare.net/SpringCentral/resource-handling-spring-framework-41-41088162

Web / JavaScript Track

As the complexity of web and mobile apps increases, so does the importance of ensuring that your client-side resources load and execute in an optimal and efficient manner. Differences in resource loading, transforming, and fingerprinting techniques can have a dramatic impact on performance and caching. These techniques can dictate whether your users have a joyful or frustrating experience. Attend this talk to learn the SpringMVC performance techniques aimed at keeping your users happy.

A Framework for all Seasons (and Architectures)

Spring walks an interesting line. It provides a lot of value no matter where you run it, and - because it's built on dependency injection layer - it offers a natural piece of indirection between the underlying layer and the applications that run on top of it. This indirection promotes code portability through decoupling: your application code is ignorant of where the javax.sql.DataSource (or whatever) handle it's using comes from, be it a JNDI lookup, environment variables, or a simple new'd-up bean provided by Spring. This decoupling and the…

We are please to announce the release of Spring Security 4.0.0.RC2.

We were very keen on doing a GA release, but due to community feedback we decided that another RC was necessary. Ultimately, this release resolved nearly 50 tickets.

A summary of changes can be seen below:

• Support for enforcing Same Origin for WebSocket connections
• Refinements in WebSocket Configuration (SEC-2827 SEC-2833 SEC-2853 )
• More intuitive HTTP Response Headers Configuration (SEC-2846)

Assuming everything goes smoothly, the plan is to do a GA release in approximately two weeks. In the meantime, make sure to try…

Welcome to another installment of This Week in Spring! We've got a lot to cover so let's get to it!

1. Our pal Adam Koblentz (from ZeroTurnaround) put up this great post introducing building a websocket application with Spring Boot and JRebel. Check it out!
2. Check out this replay of Mark Fisher, Dr. Mark Pollack, and Sabby Anandan's webinar introducing Spring XD - A Platform for data at scale and developer productivity
3. A huge part of the Pivotal Data Suite, of course, is Spring XD. Last week I surfaced some of the amazing Spring XD wiki content on the new stream processing supports in Spring XD 1.1. Check out the Wiki page for a more detailed look by Spring XD ninja Ilayaperumal Gopinathan.
4. Spring Cloud co-lead Spencer Gibb has been improving the Spring Cloud Netflix integration. Check out this example demonstrating using RxJava's Observable<T> return-values from Spring MVC. Here are the changes…

Speaker: David Syer

Pivotal Spring Security, Spring Boot and Angular JS all have nice features for making it really easy to produce modern applications, so there is potentially a lot of value in making them work together very smoothly. Things to consider are cookies, headers, native clients, various security vulnerabilities and how modern browser technology can help us to avoid them. In this session we show how nice features of the component frameworks can be integrated simply to provide a pleasant and secure user experience. We start with a very basic single-server implementation and scale it up in stages, splitting out backend resources and authentication to separate services. The final state includes a simple API Gateway on the front end implemented declaratively using Spring Cloud, and using this we are able to neatly sidestep a lot of the problems people encounter securing a javascript front end with a distributed back end.

Tuesday, March 10th, 2015 2:00PM GMT (London GMT)Register

Tuesday, March 10th, 2015 10:00AM PDT (San Francisco GMT-07:00) Register

 

Maven's dependency management includes the concept of a bill-of-materials (bom). A bom is a special kind of pom that is used to control the versions of a project's dependencies and provides a central place to define and update those versions.

A number of Spring projects including Spring Framework, Spring Cloud, Spring Boot, and the Spring IO Platform provide boms to make things easier for Maven users. Unfortunately, things haven't been quite so easy if you're using Gradle.

Dependency management in Gradle

Gradle's dependency management uses a ResolutionStrategy to take control of a project's dependency versions. This offers a lot of power and flexibility but doesn't provide a way to reuse the dependency management that's already been declared in a Maven bom. As a result, you have to do so manually. Depending on the bom, this can easily equate to tens of additional lines in your build.gradle…