Spring Authorization Server has come a long way since 1.0 was officially released in November 2022. Starting as a project separate from Spring Security, has allowed it to iterate quickly on feature development and ultimately grow a rich feature set for building OAuth2 Authorization Servers.

It has reached that point of maturity and stability and we believe the time is now to move it to Spring Security 7.0.

The main benefit this will provide our users is a streamlined developer experience. Whether you are working with OAuth2 Client or OAuth2 Authorization Server, you won’t need to switch…

This is the first blog post in the Road to GA series, highlighting major features within the Spring portfolio for the next major versions to be released in November of this year.

Today we are proud to announce the new resilience features coming in Spring Framework 7.0: concurrency throttling and retry support.

Concurrency Throttling

For certain tasks and resources it may be desirable to limit the level of concurrency. Concurrency throttling effectively protects the target resource from being accessed from too many threads at the same time, similar to the effect of a pool size limit for a…

Five years ago, Spring Security began the journey of modernizing its authorization API. This has paved the way for a number of exciting features like Authorized POJOs, value masking, and, planned for Spring Security 7, Multi-Factor Authentication.

This also deprecated the majority of the Access API. The Access API comprises the family of components in the Spring Security access packages; for example, AccessDecisionManager, AccessDecisionVoter, and FilterSecurityInterceptor. It also includes @EnableGlobalMethodSecurity and other related configuration components.

The numerous benefits to this evolution are detailed on Spring Security's reference guide. It also includes a number of migration hints…

Hi, Spring fans! Welcome to another installment of This Week in Spring! I am home, ensconced in my studio here in somewhat sunny San Francisco, California, relaxing and trying to catch up on stuff I missed. As always, there's a ton! So let's dive right into it.

• Some of the amazing features that were in Spring Retry and Spring Cloud have now been refined, enhanced, augmented, and put into the core Spring Framework. Meet the new resilience features - @ConcurrencyLimit, @Retryable, and RetryTemplate - in Spring Framework!
• the new Spring AI 1.1.0-M1 is now available! Huzzah! This release features significantly improved MCP SDK upgrades, including a streamable HTTP transport, HttpClient/WebClient support, transport context APIs, enhanced resource template filtering, and MCP-compliant protocol version headers. It also features the new MCP annotation component model support. And, obviously, there are integrations and…

Hi, Spring fans! In this installment we talk to the amazing Spring Cloud contributor Ryan Baxter, live from SpringOne 2025!

As you all should be aware by now, the Spring portfolio is in the process of driving towards the next major versions to be released in November of this year. This will be only the fourth major generation for Spring Boot and the seventh major generation for Spring Framework in its over 20 year history. We are excited to bring you a great set of new features that builds on the current foundations.

While we are keeping the JDK baseline at JDK 17 because that is the industry consensus, we will upgrade to Jakarta EE 11 (Tomcat 11, Hibernate ORM 7, Hibernate Validator 9) and embrace other upgrades…

Hi, Spring fans! Welcome to another installment of This Week in Spring! I'm in Frankfurt, awaiting my flight to the Java-tastic Javazone 2025 event where I'll be joined by the legendary James Ward to deliver an AI-focused look at the latest-and-greatest in Spring! And I'm still recovering from the delirious deluge that was SpringOne 2025! So much to do, and so little time in which to do it. Oh well let's dive right into it!

• in last week's installment of A Bootiful Podcast, I talked to JobRunr founder Ronald Dehuysser
• As always, I'm loving Rod Johnson's videos looking at comparing how to build AI agents with Spring AI-powered Embabel against other frameworks, and you should too
• I love this look at the MCP protocol by our friend Siva
• what is the best embedded web server for Spring Boot
• this is really cool - a a mechanism to load configuration into Spring Boot using Dotenvx
• I like this look at some of the amazing essential utility classes
• a great thread looking at some of the latest-and-greatest …

Hi, Spring fans! In this installment, fresh after an exciting and exhausting SpringOne 2025, I am thrilled to have talked with JobRunr founder Ronald Dehuysser on what's new in version 8.0.0.

Learn more about JobRunr v8 here!

Hi, Spring fans! Welcome to another installment of This Week in Spring! I'm writing this from the floor of SpringOne, live from lovely Las Vegas! As you can imagine, I've got to get back into it, so we'll make this one a quick one. And if you're here, be sure to say "hi"!

• In last week's A Bootiful Podcast, I talked to Andrey Belyaev, product manager for IntelliJ IDEA
• Good news everybody! Spring Boot 4.0.0.M2 is available
• Spring Batch 6.0.0.M2 is available now
• Spring Authorization Server 2.0.0 M2, 1.5.2, and 1.4.5 available now
• Spring Modulith 2.0 M2, 1.4.3, and 1.3.9 released
• Loiane Groner has a nice writeup on what's coming in Spring Boot 4 and Spring Framework 7
• Docker, yes THE Docker, has a nice look at simplifying your Spring AI builds with Docker
• I love me some Flyway! And here's a nice tutorial on using it with Spring Boot
• It was nice …