Speaker: Matt Stine

Readers of Josh Bloch's "Effective Java" are sometimes perplexed when they reach Item #15: "Minimize Mutability." If we are to minimize mutability, then obviously we must maximize immutability. While all Java programmers utilize immutable objects every day (e.g. java.lang.String), when asked to create our own immutable classes, we often hesitate. However, if we push through this hesitation, we'll reap the benefits of simpler reasoning about program correctness, free thread safety, and other benefits. One of the primary issues faced by enterprise Java programmers seeking to utilize immutable classes are framework issues. Enterprise frameworks from Spring to Hibernate have varying levels of support for immutability, ranging from decent to nonexistent. However, there several practical solutions available to the Spring developer, and this session will illuminate what's available. Learn more about Spring Framework at http://projects.spring.io/spring-framework

!{iframe width="420" height="315" src="//www.youtube.com/embed/D8eCUR0QK-s" frameborder="0" allowfullscreen}{/iframe}

Following up on my Spring Framework 4 webinar last week, I'd like to share the Spring Framework 4.1 plan introduced there. We have a few key themes that are being prepared towards 4.1, for a timely GA delivery in August 2014, with a 4.1 RC to appear in June:

Comprehensive web resource handling - resource pipelining, cache control refinements
Caching support revisited - aligned with JCache 1.0 final, user-requested enhancements
JMS support overhaul - aligned with our messaging module, annotation-driven endpoints
Performance improvements - application startup, SpEL expression evaluation

These…

We are pleased to announce the availability of these two releases; the 1.2.1.RELEASE contains a few minor bug fixes, while the 1.3.0.M1 milestone release contains some significant new features, including:

• The listener container concurrency can be changed without first stopping the container and the listeners will be adjusted accordingly
• The listener container can dynamically adjust the concurrent consumers, based on workload
• The Connection Factory can now cache connections rather than all users sharing the same connection
• The RabbitTemplate now has several convenient receiveAndReply methods
• A fluent Java API is now provided to build a Message
• There is now a SimpleRoutingConnectionFactory to determine which connection factory to use at runtime
…

I'm pleased to announce that Spring LDAP 2.0.0.RELEASE is now available from Maven Central and Bintray. A special thanks to Mattias Arthursson for all the work he put into this release!

Refer to the What's new in Spring LDAP 2.0 to find the full details of this release. A list of changes can be found within JIRA's change logs. Highlights include:

• Spring Data Repository and QueryDSL support is now included in Spring LDAP.
• Fluent LDAP query support has been added.
• A custom XML namespace is now provided to simplify configuration of Spring LDAP.
• Spring LDAP core has been updated with Java 5 features such as generics and varargs.
• The ODM (Object-Directory Mapping) functionality has been moved to core and there are new methods in LdapOperations/LdapTemplate that uses this automatic translation to/from ODM-annotated classes.
…

The Spring XD team is pleased to announce that Spring XD 1.0.0 Milestone 5 is now available for download.

Spring XD makes it easy to solve common big data problems such as data ingestion and export, real-time analytics, and batch workflow orchestration. This release includes several notable new features:

• Pre-defined batch jobs for JDBC to HDFS
• Many additional job shell commands for controlling and reporting on batch jobs.
• Hadoop Dataset Avro sink that uses the Kite SDK
• HDFS sink now supports codecs (gzip, snappy, bzip2, lzo) and fine-grained control over file naming
• JMS source module now support Topics in addition to Queues
• Improved support for use of Gemfire Locators
• Aggregator module for batching that also supports a backing message store for checkpointing the event stream to memory, Redis, or a relational database.
• Support for separate control and data transport protocols
• XD servers are now built on top of …

Recorded at SpringOne2GX 2013 in Santa Clara, CA.

Speaker: Dr. David Syer

The OAuth2 specification (wisely) leaves a lot of areas open to interpretation and implementation details, so there are a lot of opportunities to impose interpretations on the flows and the underlying data. This presentation starts with a basic guide to the main features of OAuth2 and then goes on to show, with examples, how they can be exploited to support business and application use cases. For instance, should you encode access decision data directly in the access token, or make the token completely opaque? Should you be signing requests? What naming convention should you use for OAuth2 scopes? How do you go about registering users and clients? There are some obvious patterns in existing OAuth2 implementations, and Spring Security OAuth provides plenty of hooks and extension points should you wish to copy one of those, or make your own rules. Examples will use Spring and Spring Security to show how to take advantage of the inherent flexibility, both in the spec and in the libraries. Learn more about Spring Security OAuth: http://projects.spring.io/spring-security-oauth and Spring Security: http://projects.spring.io/spring-security

!{iframe width="420" height="315" src="//www.youtube.com/embed/nMdtYnSXRpw" frameborder="0" allowfullscreen}{/iframe}

Recorded at SpringOne2GX 2013 in Santa Clara, CA.

Speaker: Oliver Gierke

Spring MVC forms a solid foundation to implement REST based web-services in Java. However, in real-world projects developers still face challenges when it comes to advanced questions of REST. How to really leverage hypermedia? How to model more complex business functionality with REST. The talk introduces the Spring RESTBucks sample implementation of a hypermedia-driven REST web service and explains how it is using hypermedia elements to implement business processes and how Spring technologies (Spring Data REST, Spring Data JPA and Spring HATEOAS) help developers building the system. Learn more about REST at http://projects.spring.io/spring-framework/ (spring MVC's REST controller) http://projects.spring.io/spring-hateoas/ (Hypermedia Support)

!{iframe width="420" height="315" src="//www.youtube.com/embed/Y3rP4VT7qWM" frameborder="0" allowfullscreen}{/iframe}

Welcome back to another installment of This Week in Spring! Things are starting to ramp up considerably here on the Spring team. This week, on the 9th, we have the very anticipated Spring 4 release webinar Registration has been crazy! I'll be there, watching and helping to MC. I hope you'll be there too!

Also, if you're in the Bay Area, I'll be speaking at the Oakland JUG on January 22nd for a few hours in an evening we're calling Have You Seen Spring Lately?. We'll look at the epic last year's worth of awesome, including the release of Spring 4, Spring Boot and Spring XD. I hope you'll join us there, too! Bring questions!

1. On Jan 16th, 2014, our Spring Security lead Rob Winch will introduce the Spring Security 3.2 release and talk about it's support for Java Configuration, CSRF Protection, Security Related HTTP response headers, optional Spring MVC integration, and of course, Spring Framework 4.0.
2. Patrick Grimard has put together a nice post on using Spring Security 3.2.0's CSRF protection with a Backbone (or, really, any client-facing application). There is, as Spring Security Rob Winch points out, a simpler still way to achieve this.
3. Feburary is Security month! We've just released a SpringOne2GX 2013 Replay: Data Modelling and Identity Management with OAuth2, with Dr. David Syer..
4. On the REST front, also just released another SpringOne2GX 2013 Replay: Spring RESTBucks - A hypermedia-driven REST webservice, with Oliver Gierke.
5. Roy Clarkson put together a great post on how to use WebJars, which lets you manage client-side dependencies like JavaScript using traditional JVM-based build-management tools like Gradle and Maven, along with Spring Boot.
6. This post - about application instrumentation for logging, is a little old, but I thought it worth mention because it's generally pretty insightful and it demonstrates its concepts in terms of not only the canonical Spring Pet Clinic application, but also the Node.js Node Cellar, and the .NET Music Store. Not bad!
7. Our pal Petri Kainulainen is back! He's written a nice post on how to use the JOOQ typesafe query API with Spring
8. This post has so very little to do with Spring, but it does have to do with GemFire XD (our in-memory, distributed data-store that can work in-memory or with HDFS) and a bit of clever Python tinkering to access GemFire XD from Python.
9. Did you see this epic post on running a Spring Boot-powered web service on a Raspberry Pi?
10. Ned Lowe's put together a nice post on migrating from Spring MVC 2.0-style MVC applications to the annotation-centric approach available since Spring MVC 2.5.
11. Thys Michels has put together a nice post on JUnit testing Spring MVC services.
12. And thanks to the Learning Spring blog for the friendly reminder that Spring applications expose a lot of valuable logging for your exploitation if you simply modify the right configuration files.
13. Tomas Zezula put together a nice post on Spring's @Primary annotation, which lets you disambiguate the choice for which dependency to use from among many possible dependencies.

Welcome to 2014! 2013 was an exciting year for Spring, and we look forward to another great year. We have focused on client-side development in a few recent posts, including that we have published several new client-side getting started guides. In a previous post, I also reviewed how easy it is to serve static web content with Spring Boot.

In this post I will continue the discussion about client-side development with Spring Boot as we explore another built-in capability. My previous post included the following excerpt from the source code for WebMvcAutoConfiguration which illustrates how static resources are automatically added to a Spring MVC ResourceHandlerRegistry…