The Spring Blog

Engineering
Releases
News and Events

A Bootiful Podcast: Spring Framework co-founder and lead Juergen Hoeller on Spring Framework 5.2 and more

Hi, Spring fans! Welcome to another extra-special, extra-long installment of A Bootiful Podcast. In this episode, I talk to Spring Framework lead and #2 co-founder of Spring itself, the one, the only, the amazing Juergen Hoeller. We talk about his tenure as the longest and most prolific contributor to Spring; designing clean code; the early days of Spring the project; new features in Spring Framework 5.2; the role of Kotlin, Project Loom, Graal in the Spring ecosystem; Spring’s role in the ecosystem; Java’s place and possibilities; and so much more.

Read more...

Spring Cloud Greenwich.SR3 Released

On behalf of the community, I am pleased to announce that the Service Release 3 (SR3) of the Spring Cloud Greenwich Release Train is available today. The release can be found in Maven Central. You can check out the Greenwich release notes for more information. All issues closed in this release across all projects can be found in the Spring Cloud Greenwich.SR3 project on GitHub

Notable Changes in the Greenwich Release Train

New Load Balancer Implementations

Spring Cloud Greenwich.M3 is the first release containing both blocking and non-blocking load balancer client implementations as an alternative to Netflix Ribbon which has entered maintenance mode.

Read more...

Spring Vault 2.2 M1 available now

On behalf of the community, I’m excited to announce the availability of Spring Vault 2.2 M1. This release ships with over 90 fixed tickets in total, containing several features, bug fixes, and dependency upgrades.

The most notable new changes are:

  • Support for PCF-based authentication by using instance identity certificates.

  • Kotlin extensions.

  • Builders for RestTemplate and WebClient to customize interceptors, filter functions, and default headers.

  • Vault namespace support (Vault Enterprise edition only).

  • @VaultPropertySource now supports versioned key-value backends.

  • Added listener and events support to LifecycleAwareSessionManager.

  • Support for the Jetty HTTP Client as an alternative reactive HTTP client.

  • Reactive support for AWS IAM authentication.

Read more...

This Week in Spring - September 10, 2019

Hi Spring fans! Welcome to another sunny installment of This Week in Spring! Can you believe we’re now staring down Q4 2019? How time flies!

As i write this I’m sat in a Radisson Blu hotel in Oslo, Norway, for the epic JavaZone show. I’ve got tons of wonderful memories at this hotel, often enjoyed with my friends on the Spring team, over many, many years. I love this show and am so glad to be back for the first time since 2015!

I landed today, recorded a few episodes of Spring Tips (new season starting soon!), took an ill-timed nap, and now here we are! We’ve got a ton to cover so let’s get to it!

Read more...

Spring Boot 2.2.0.M6

On behalf of the team and everyone that contributed, I am pleased to announce that the sixth milestone of Spring Boot 2.2 has been released and is available from our milestone repository. This release contains over 140 issues and pull requests.

For a complete list of changes and upgrade instructions, please see the Spring Boot 2.2 Release Notes on the wiki and the updated reference documentation.

Our next 2.2 release will be RC1 later this month with GA to follow in mid-October. If you haven’t already done so, now is a great time to try a 2.2 milestone and provide us with your feedback. If you want to get started with 2.2 and try out the new features, you can bootstrap a new project on https://start.spring.io.

Read more...

Spring Session for Apache Geode & Pivotal GemFire 2.2.0.M4 Available!

On behalf of the Spring and Apache Geode communities, I am pleased to announce the release of Spring Session for Apache Geode & Pivotal GemFire (SSDG) 2.2.0.M4.

This release primarily updates dependencies to:

  • Spring Framework 5.2.0.RC2

  • Spring Data Moore-RC3

  • Spring Session core 2.2.0.M4

SSDG 2.2.0.M4 will be pulled into the Spring Session Corn-M4 BOM file, which will be subsequently included in the upcoming Spring Boot 2.2.0.M6 release.

Release bits are available in Spring’s Milestone repository.

Feedback

Any feedback is welcomed and appreciated. Thank you!

Read more...

Spring Data Moore RC3 released

On behalf of the team I am pleased to announce Spring Data Moore RC3. The release ships with 84 tickets fixed and it will be picked up by Spring Boot 2.2 M6 for your convenience.

This release candidate finalizes our effort around Kotlin Coroutines which went GA with their 1.3 release. Besides that, the release ships with dependency upgrades, API refinements, bugfixes, and improvements to our documentation.

This is the last release candidate release before shipping Moore GA in late September. As SpringOne Platform happens in about a month, we’re excited to meet with the community in Austin, Texas October 7-10, 2019.

Read more...

Spring Security 5.2.0.RC1 Released

On behalf of the community, I’m pleased to announce the release of Spring Security 5.2.0.RC1! You can find the complete details in the release notes and the highlights below:

RSocket

gh-7360 - Add RSocket Support

SAML

gh-6019 - Add SAML Service Provider Support

OAuth 2.0

Resource server

gh-7101 - JwtGrantedAuthoritiesConverter allows configuring the authority prefix
gh-7100 - JwtGrantedAuthoritiesConverter allows configuring the authorities claim name
gh-7345 - Opaque Token Introspector returns an Authenticated Principal
gh-7346 - Add Adapter to Translate Jwt to BearerTokenAuthentication
gh-5334 and gh-7284 - Resource Server supports WebClient Bearer Token propagation

Client

gh-7228 - Prevent null value in Context if subscribe was invoked outside of Web Context
gh-7114 - Allow configurable Clock in OAuth2AuthorizedClientProvider implementations
gh-7293 - Fix WebClient Memory Leaks
gh-7222 - Allow setting securityContextRepository for reactive OAuth2 login
gh-7051 - Allow setting authenticationFailureHandler for reactive OAuth2 login
gh-7232 - OAuth2LoginConfigurer discovers OAuth2UserService beans
gh-7339 - DefaultOAuth2UserService and OidcUserService extract authorities from scopes
gh-7122 - OAuth2AuthorizedClientManager works outside of a request
gh-6003 - Support Resource Owner Password Credentials grant

JOSE

gh-6883 - JWT decoding supports multiple algorithms
gh-7290 - NimbusJwtDecoderJwkSupport supports "application/jwk-set+json" Accept header
Read more...

Spring Cloud Data Flow 2.3.0.M1 and 2.2.1 GA Released

The Spring Cloud Data Flow team is pleased to announce the milestone release 2.3.0.M1 and the release of 2.2.1 GA.

Along with the bug fixes and enhancements, the first milestone of 2.3.0 also has the following new features:

  • Improved Prometheus monitoring based on Prometheus RSocket. It uses persistent bidirectional (RSocket) connections between the Stream/Task applications and a Prometheus RSocket Proxy instance. When Prometheus scrapes the proxy instance, and the proxy, in turn, uses the connections to pull metrics from the applications.
  • Ability to pass OAuth Access Token as command-line arguments for Composed Tasks
  • Users can now specify a description of the stream when creating it. Thanks to Daniel Serleg for the contribution!
  • Spring Cloud Scheduler SPI is now merged into Spring Cloud Deployer. We’ll deprecate the explicit spring-cloud-scheduler project and its implementations on Cloud Foundry, K8s and have them available as part of spring-cloud-deployer.
Read more...