Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016

•

2 likes•1,846 views

This document discusses creating applications with Grails, Angular JS, and Spring Security. It introduces the REST, Angular JS, and Angular 2 profiles in Grails for building REST APIs and frontend applications. It demonstrates generating a basic TODO application with these technologies, including REST endpoints, AngularJS scaffolding, and adding authentication with Spring Security REST.

Software

Creating applications
with Grails, Angular JS
and Spring Security
Álvaro Sánchez-Mariscal

OCI is the new home of Grails
More at ociweb.com/grails

The workshop
bit.ly/grails-angular-workshop

The REST Proﬁle
• Targeted at building REST applications.
• REST Speciﬁc plugins and commands.
• No GSP, asset pipeline, UI plugins.
• JSON / Markup views instead.

The REST Proﬁle
• Proﬁle speciﬁc commands:
• create-domain-resource - creates an
@Resource domain
• create-restful-controller - creates a
RestfulController

The REST Proﬁle
• Statically compiled, extensible JSON views:
json.person {
name "bob"
}
{"person":{"name":"bob"}}

Create a domain resource
$ grails create-domain-resource todo
| Created grails-app/domain/todo/Todo.groovy
| Created src/test/groovy/todo/TodoSpec.groovy

REST Domain class
package com.example 
 
import grails.rest.Resource 
 
@Resource(uri = '/todos') 
class Todo { 
 
String description 
boolean completed 
 
}

Create a restful controller
$ grails create-restful-controller todo.Todo
| Created grails-app/controllers/todo/TodoController.groovy

RESTful Controller
package com.example 
 
import grails.rest.RestfulController 
 
class TodoController extends RestfulController { 
 
static responseFormats = ['json'] 
 
TodoController() { 
super(Todo) 
} 
 
def pending() { 
respond Todo.findAllByCompleted(false), view: 'index' 
} 
}

JSON View
import com.example.Todo 
 
model { 
Todo todo 
} 
 
json { 
hal.links(todo) 
id todo.id 
description todo.description 
completed todo.completed 
}

The Angular JS Proﬁle
• Extends the REST proﬁle.
• Adds project setup for AngularJS.
• Code generation for AngularJS.
• Scaffolding available via plugin.

The Angular JS Proﬁle
• Proﬁle speciﬁc commands:
• create-ng-controller
• create-ng-service
• create-ng-domain
• create-ng-directive
• create-ng-component
• create-ng-module

Scaffold all the things!
$ grails ng-generate-all todo.Todo

The Angular 2 Proﬁle
• Available since Grails 3.2.1.
• Multi-project build:
• Client: a pure Angular 2 project, Angular CLI-
based.
• Server: a pure rest-api Grails project.

The Angular 2 Proﬁle
$ ng serve $ ./gradlew client:bootRun

CORS
• Supported in Grails core since 3.2.2
• application.yml
grails: 
cors: 
enabled: true

Adding Security with
Spring Security REST

Spring Security REST
• Compatibility layer over Spring Security Core.
• Login and logout REST endpoints.
• Token validation filter.
• Stateless by default, with JWT (signed and encrypted)
• Memcached, Redis, GORM and Grails Cache token storages.
• Implicit grant support through 3rd party providers.
• RFC 6750 Bearer Token support.

The interceptor
angular 
.module("todo") 
.factory('authInterceptor', function ($rootScope, $window) { 
return { 
request: function (config) { 
config.headers = config.headers || {}; 
if ($window.sessionStorage.token) { 
config.headers.Authorization = 'Bearer ' + $window.sessionStorage.token; 
} 
return config; 
} 
}; 
}) 
.config(function ($httpProvider) { 
$httpProvider.interceptors.push('authInterceptor'); 
}) 
.controller("TodoController", TodoController);

What's hot

Integration is a key piece of modern software development. Whether integrating with external vendors or providing APIs for front-end technologies like AngularJS or ReactJS, REST is a popular choice. This session will walk through how and why using the Grails framework to create a RESTful API is easy and efficient. Attendees should have a basic understanding of REST and experience with a web application framework like Grails.

Rest with grails 3

Jenn Strater

Swagger code motion talk

Victor Trakhtenberg

你不可不知的 ASP.NET Core 3 全新功能探索 (.NET Conf 2019)

Will Huang

Using React with Grails 3

Zachary Klein

Swagger 2.0: Latest and Greatest

LaunchAny

Swagger UI

Walaa Hamdy Assy

Euroclojure2014: Schema & Swagger - making your Clojure web APIs more awesome

Metosin Oy

Swagger

NexThoughts Technologies

Ratpack is a set of libraries for developing fast, efficient, evolvable and well tested HTTP applications written in Java 8 or any alternative JVM language that plays well with Java, such as Groovy. The session will start with an introduction about Ratpack, and what makes it different from other popular frameworks like Grails or Vert.x, to name a few. Then, it will cover the fundamentals of the async programming model used in Ratpack applications, as well as other core concepts like handlers and the registry. Also, some of of the core modules ("plug-ins") will be described. Finally, it will cover how to test Ratpack applications using Groovy and Spock.

Efficient HTTP applications on the JVM with Ratpack - Voxxed Days Berlin 2016

Alvaro Sanchez-Mariscal

Getting Started With Angular

Stormpath

This presentation shows you how you can generate server stubs from a Swagger contract, configure the jaxrs-cxf language to enable Spring-configuration, Spring-Boot integration + tests, automatic BeanValidation on the server side, generate client code for java and javascript, use/integrate swagger-ui, use swagger2markup use custom Swagger-Codegen templates + how you can create your own language implementation.

How to generate a REST CXF3 application from Swagger ApacheConEU 2016

johannes_fiala

In this talk I will cover how to create a REST API using Grails 2.3 to support single-page applications, exploring all the possible alternatives. Code is available at https://github.com/alvarosanchez/restful-grails-springsecurity-greach2014 I will also explain how to integrate Spring Security using the spring-security-rest plugin I recently created, to implement a stateless, token-based, RESTful authentication.

Creating RESTful API’s with Grails and Spring Security

Alvaro Sanchez-Mariscal

JHipster

Yuen-Kuei Hsueh

OpenAPI Specification概要

Kazuchika Sekiya

APIs are at the heart of the modern software development world. Whether we author a distributed system, a microservices-based application, or a simple client-server n-tier application - our system will most probably expose an API at its core. APIs are a means to expose the functionality of a particular component to its users. Unsurprisingly, many formats for APIs have existed over the years, with the industry setting around RESTful APIs as the de-facto standard, with gRPC growing in popularity. Join me in this session, as I review today's most popular API formats and their relative strengths and weaknesses. From REST, through OpenAPI, via gRPC and to the rising star of AsyncAPI - we'll explain how these API formats work and the tools they employ and offer some guidance as towards when we should use each. At the end of this session, you'll have a good familiarity with these formats, and you'll be in a much better position to choose between them.

API Design in the Modern Era - Architecture Next 2020

Eran Stiller

Magic of web components

HYS Enterprise

Protractor: The Hacker way (NG-MY 2019)

Will Huang

Swagger / Quick Start Guide

Andrii Gakhov

Which NuGet package was that type in again? In this session, let's build a "reverse package search" that helps to find the correct NuGet package based on a public type name. Together, we will create a highly-scalable serverless search engine using Azure Functions and Azure Search that performs 3 tasks: listening for new packages on NuGet.org (using a custom binding), indexing packages in a distributed way, and exposing an API that accepts queries and gives our clients the best result. Expect code, insights into the service design process, and more!

Maarten Balliauw "Indexing and searching NuGet.org with Azure Functions and S...

Fwdays

During the VOXXED Days in Berlin on 29 January 2016 Bernd Schönbach from LeanIX demonstrated an easy way to create well documented and implemented REST-APIs using the Dropwizard Library for the implementation and Swagger for easy Documentation. === LeanIX offers an innovative software-as-a-service solution for Enterprise Architecture Management (EAM), based either in a public cloud or the client’s data center. Companies like Adidas, Axel Springer, Helvetia, RWE, Trusted Shops and Zalando use LeanIX Enterprise Architecture Management tool. Free Trial: http://bit.ly/LeanIXFreeTrial

Simple REST-APIs with Dropwizard and Swagger

LeanIX GmbH

What's hot (20)

Rest with grails 3

Swagger code motion talk

你不可不知的 ASP.NET Core 3 全新功能探索 (.NET Conf 2019)

Using React with Grails 3

Swagger 2.0: Latest and Greatest

Swagger UI

Euroclojure2014: Schema & Swagger - making your Clojure web APIs more awesome

Swagger

Efficient HTTP applications on the JVM with Ratpack - Voxxed Days Berlin 2016

Getting Started With Angular

How to generate a REST CXF3 application from Swagger ApacheConEU 2016

Creating RESTful API’s with Grails and Spring Security

JHipster

OpenAPI Specification概要

API Design in the Modern Era - Architecture Next 2020

Magic of web components

Protractor: The Hacker way (NG-MY 2019)

Swagger / Quick Start Guide

Maarten Balliauw "Indexing and searching NuGet.org with Azure Functions and S...

Simple REST-APIs with Dropwizard and Swagger

Viewers also liked

G3 Summit 2016 - Dockerize your Grails!

Iván López Martín

As Atlassian Connect is the way forward for building add-ons on Atlassian Cloud, Spring Boot is the way forward for building Spring web applications. Now you can combine the best of both worlds with the new open source library: Atlassian Connect Starter for Spring Boot. This will get you bootstrapped with an Atlassian Connect add-on in just a few minutes. In this talk you will learn: What is Spring Boot What is a Spring Boot Starter and how they benefit you How to use the Atlassian Connect Starter to easily build Atlassian Connect add-ons The Atlassian Connect architecture and how it interacts with your add-ons We will write a simple macro for Confluence and show how much time Spring Boot can save you.

Connecting Connect with Spring Boot

Vincent Kok

groovy & grails - lecture 3

Alexandre Masselot

G3 Summit 2016 - Taking Advantage of Groovy Annotations

Iván López Martín

Finjs - Angular 2 better faster stronger

Christoffer Noring

Love at first Vue

Dalibor Gogic

http://www.springio.net/stateless-authentication-for-microservices/ This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorization using Spring Security in Grails. More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro.

Stateless authentication for microservices - Spring I/O 2015

Alvaro Sanchez-Mariscal

ConFoo 2015 - Securing RESTful resources with OAuth2

Rodrigo Cândido da Silva

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorisation. He will explore the existing impl More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro. Authentication is normally a stateful service. Most of the implementations rely on the HTTP session, thus introducing state as the session is an in-memory data structure in the application server. In the microservices era, most of the companies are developing such called RESTful services, where one of the principles is to create stateless systems. In such scenario, authentication should be stateless too. There is a standard specification to secure web application and API's, that is being adopted massively by the industry: OAuth 2. The specification doesn't explicitly cover how to make a stateless implementation. And most of the existing ones depend on some sort of external storage (such as a DB) to store the tokens generated for a later validation. Fortunately, there is another specification by the IETF called JSON Web Token, that can be combined with OAuth 2 to achieve a stateless authentication system. In the session, Alvaro will explain the core concepts of OAuth 2, as well as JWT and how can them be used together to achieve the last 2 letters of REST: State Transfer.

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Alvaro Sanchez-Mariscal

Javascript Frameworks Comparison - Angular, Knockout, Ember and Backbone

Deepu S Nath

Vuejs Angularjs e Reactjs. Veja as diferenças de cada framework!

José Barbosa

OAuth2 and Spring Security

Orest Ivasiv

YouTube of this presentation's JHipster Demo: https://www.youtube.com/watch?v=ZGF4gEM4FuA Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and Browsersync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or JWT authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - DOSUG February 2016

Matt Raible

This talk is about how to secure your frontend+backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your frontend application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth or JWT to achieve a stateless, token-based authentication using frameworks like Angular JS on the frontend and Spring Security on the backend. Video available at https://skillsmatter.com/skillscasts/6058-stateless-authentication-for-microservices

Stateless authentication for microservices

Alvaro Sanchez-Mariscal

Mango: Successful grant management for NGOs

Terry Lewis

10 Reasons to Join Capgemini

Capgemini

Secure Your REST API (The Right Way)

Stormpath

Content Creation Process

Sujan Patel

Viewers also liked (18)

G3 Summit 2016 - Dockerize your Grails!

Connecting Connect with Spring Boot

groovy & grails - lecture 3

G3 Summit 2016 - Taking Advantage of Groovy Annotations

Finjs - Angular 2 better faster stronger

Love at first Vue

Stateless authentication for microservices - Spring I/O 2015

ConFoo 2015 - Securing RESTful resources with OAuth2

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Javascript Frameworks Comparison - Angular, Knockout, Ember and Backbone

Vuejs Angularjs e Reactjs. Veja as diferenças de cada framework!

OAuth2 and Spring Security

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - DOSUG February 2016

Stateless authentication for microservices

Mango: Successful grant management for NGOs

10 Reasons to Join Capgemini

Secure Your REST API (The Right Way)

Content Creation Process

Similar to Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016

Deploy and Access WebSphere Liberty and StrongLoop REST Endpoints on IBM Bluemix

Arthur De Magalhaes

Angular 2.0

Mallikarjuna G D

Alfresco Development Framework Basic

Mario Romano

ASP .Net Core SPA Templates

Eamonn Boyle

Jenkins-CI

Gong Haibing

O365Con18 - Automate your Tasks through Azure Functions - Elio Struyf

NCCOMMS

Angular2.0@Shanghai0319

Bibby Chung

OpenAPI Spec at Google (Open API Initiative Meetup on 2016-09-15)

Open API Initiative (OAI)

[개인 프로젝트] 쿠버네티스를 이용한 개발환경 자동화 구축시스템 - 프로토타입

choi sungwook

Introduction to angular with a simple but complete project

Jadson Santos

OpenShift Origin è la Platform-as-a-Service opensource di riferimento. Basata su Kubernetes e Docker, contiene features aggiuntive e integrazioni con altri componenti che semplificano le pratiche di DevOps. Dopo una breve introduzione ad Openshift ed alla sua architettura, questa presentazione mostra come: * fare il setup di applicazioni su OpenShift * utilizzare OpenShift come tool di DevOps * implementare application promotion e strategie di deployment avanzate utilizzando l'integrazione con Git e Jenkins ============ English version ============ OpenShift Origin is the most important opensource Platform-as-a-Service. Based on Kubernetes and Docker, it contains a lot of add-ons and integrations with other software components that simplify the DevOps practices. After an introduction on OpenShift and its architecture, this presentation describes: * how to setup an application on OpenShift * how to use OpenShift as a DevOps tool * how to implement application promotion and advanced deployment strategies using the native integration with Git and Jenkins Presentation language: Italian

DevOps of Python applications using OpenShift (Italian version)

Francesco Fiore

Serverless API with Azure Functions

Analben Mehta

You may know Google for search, YouTube, Android, Chrome, and Gmail, but that's only as an end-user of OUR apps. Did you know you can also integrate Google technologies into YOUR apps? We have many APIs and open source libraries that help you do that! If you have tried and found it challenging, didn't find not enough examples, run into roadblocks, got confused, or just curious about what Google APIs can offer, join us to resolve any blockers. Code samples will be in Python and/or Node.js/JavaScript. This session focuses on showing you how to access Google Cloud APIs from one of Google Cloud's compute platforms, whether serverless or otherwise.

Accessing Google Cloud APIs

wesley chun

Web worker in your angular application

Suresh Patidar

“ASP.NET Core. Features and architecture”

HYS Enterprise

Quick workflow of a nodejs api

Paolo Carrasco Mori

API Services: Building State-of-the-Art APIs

Apigee | Google Cloud

Slides of a session that I have given/will give at various developer conferences in H1 2018. Niklas Heidloff http://twitter.com/nheidloff http://heidloff.net Summary Article http://heidloff.net/article/when-to-use-serverless-kubernetes OpenWhisk https://openwhisk.apache.org https://github.com/ibm-functions/composer https://github.com/nheidloff/openwhisk-debug-nodejs Kubernetes https://kubernetes.io https://istio.io IBM Cloud http://ibm.biz/nheidloff Abstract There is a lot of debate whether to use Serverless or Kubernetes to build cloud-native apps. Both have their advantages and unique capabilities which developers should take into consideration when planning new projects. We will throw some light on the topics ease of use, maturity, types of scenarios, developer productivity and debugging, supported languages, DevOps and monitoring, performance, community and pricing. Cloud-native architectures shift the complexity from within an application to orchestrations of Microservices. Both Kubernetes and Serverless have their strengths which we will discuss. Besides the core development topics, developers should also understand operational aspects how complicated it is to maintain your own systems versus using managed platforms.

When to use Serverless? When to use Kubernetes?

Niklas Heidloff

Integrate any Angular Project into WebSphere Portal

Himanshu Mendiratta

Building production-quality apps with Node.js

mattpardee

Similar to Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016 (20)

Deploy and Access WebSphere Liberty and StrongLoop REST Endpoints on IBM Bluemix

Angular 2.0

Alfresco Development Framework Basic

ASP .Net Core SPA Templates

Jenkins-CI

O365Con18 - Automate your Tasks through Azure Functions - Elio Struyf

Angular2.0@Shanghai0319

OpenAPI Spec at Google (Open API Initiative Meetup on 2016-09-15)

[개인 프로젝트] 쿠버네티스를 이용한 개발환경 자동화 구축시스템 - 프로토타입

Introduction to angular with a simple but complete project

DevOps of Python applications using OpenShift (Italian version)

Serverless API with Azure Functions

Accessing Google Cloud APIs

Web worker in your angular application

“ASP.NET Core. Features and architecture”

Quick workflow of a nodejs api

API Services: Building State-of-the-Art APIs

When to use Serverless? When to use Kubernetes?

Integrate any Angular Project into WebSphere Portal

Building production-quality apps with Node.js

More from Alvaro Sanchez-Mariscal

Server-less architectures where as a developer you deploy functions that are fully managed by the Cloud environment and are executed in ephemeral processes require a unique approach. Traditional frameworks like Grails and Spring are not really suitable since low memory consumption and fast startup time are critical and the Function as a Service (FaaS) server will typically spin up your function for a period using a cold start and then keep it warm. This session introduces Micronaut’s compile-time approach: fast startup time and low-memory footprint which make it a great candidate for using as a framework for developing functions. In fact, Micronaut features dedicated support for developing and deploying functions to AWS Lambda and any FaaS system that supports running functions as containers (such as OpenFaaS, Rift, or Fn).

Serverless functions with Micronaut

Alvaro Sanchez-Mariscal

Grails offers a number of options for implementing asynchronous and event-driven applications, from the low-level Servlet 3.0 async support to the Promise API abstraction, which supports GPars, RxJava 1 & 2. At the GORM level, there is also the async namespace, and RxGORM. Finally, a brand new events API shipped with Grails 3.3, which moves off Reactor, will help users to implement event-driven applications. In this session, the speaker will walk the audience through such options.

Asynchronous and event-driven Grails applications

Alvaro Sanchez-Mariscal

6 things you need to know about GORM 6

Alvaro Sanchez-Mariscal

Micronaut is a modern, JVM-based, full stack Micro Services framework designed for building modular, easily testable Micro Service applications. Particle is developed by the creators of Grails and takes inspiration from lessons learnt over the years building real-world applications from monoliths to Micro Services using Spring, Spring Boot and Grails. This session covers the current features of Micronaut for building microservices, such as: Dependency Injection and Inversion of Control (IoC). Configuration system. HTTP services. Cloud and serverless deployments. Management & Monitoring.

Reactive microservices with Micronaut - GR8Conf EU 2018

Alvaro Sanchez-Mariscal

Micronaut is a modern, JVM-based, full stack microservices framework designed for building modular, easily testable microservice applications. Micronaut is developed by the creators of Grails and takes inspiration from lessons learnt over the years building real-world applications from monoliths to microservices using Spring, Spring Boot and Grails. This session covers the current features of Particle for building microservices, such as: – Dependency Injection and Inversion of Control (IoC). – Configuration system. – HTTP services. – Cloud and serverless deployments. – Management & Monitoring.

Reactive microservices with Micronaut - Greach 2018

Alvaro Sanchez-Mariscal

Spring Cloud es uno de los proyectos más importantes de Pivotal, donde introducen el concepto de aplicaciones cloud native: una disciplina que fomenta buenas prácticas en sistemas distribuidos (gestión de la configuración, service discovery, circuit breakers, intelligent routing, micro-proxy, control bus, one-time tokens, global locks, leadership election, distributed sessions, cluster state). Esta charla explica los distintos componentes del ecosistema Spring Cloud, mostrando cómo usarlos en Spring Boot. En particular, el foco estará en: Configuración distribuida. Service Discovery. Log correlation.

Practical Spring Cloud

Alvaro Sanchez-Mariscal

Ratpack is a set of libraries for writing fast, efficient, evolvable and well tested HTTP applications written in Java 8 or any alternative JVM language that plays well with Java, such as Groovy. The session will start with an introduction about Ratpack, and what makes it different from other popular frameworks like Grails or Vert.x, to name a few. Then, it will cover the fundamentals of the async programming model used in Ratpack applications, as well as other core concepts like handlers and the registry. Also, some of of the core modules ("plug-ins") will be described. Finally, it will cover how to test Ratpack applications using Groovy and Spock.

Efficient HTTP applications on the JVM with Ratpack - JDD 2015

Alvaro Sanchez-Mariscal

Stateless authentication for microservices - GR8Conf 2015

Alvaro Sanchez-Mariscal

Ratpack 101 - GR8Conf 2015

Alvaro Sanchez-Mariscal

Ratpack 101 - GeeCON 2015

Alvaro Sanchez-Mariscal

Stateless authentication for microservices - Greach 2015

Alvaro Sanchez-Mariscal

Stateless authentication for microservices applications - JavaLand 2015

Alvaro Sanchez-Mariscal

This talk is about how to secure your frontend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications, when your frontend application is running on a browser and not securely from the server, there are few things you need to consider. We will explore standards like OAuth or JWT to achieve a stateless, token-based authentication using frameworks like Angular JS on the frontend and Spring Security on the backend. Note: images are courtesy of Shutterstock.com

Stateless token-based authentication for pure front-end applications

Alvaro Sanchez-Mariscal

Workshop: Creating RESTful API’s with Grails and Spring Security (GR8Conf 2014)

Alvaro Sanchez-Mariscal

During the last years we have been seeing a lot Javascript-based frontend tools becoming more and more popular. They are all wildly used because of the rise of Node JS. As developers we cannot ignore this revolution, but rather embrace it. In this talk I will speak about how to transition from monolithic applications to HTML5 apps + REST API's. From full stack developers to frontend+backend teams. I will also demonstrate how the development looks like using tools like AngularJS and Grunt for frontend development. Hurry up. They are coming...

Embrace the frontend revolution

Alvaro Sanchez-Mariscal

Writing functional tests using Geb in a Grails application is fine for a development team. But when you have QA automation engineers, giving them access to the Grails app might not be the best solution (specially when they belong to a different team). So the same way DevOps allow developers and sysadmins collaborate together, let’s talk about DevQA, and make them happy using a framework stack powered by Groovy. Besides above considerations, in this talk I will show a live example on how to setup an independent project for functional tests using Gradle, Groovy, Spock and Geb.

DevQA: make your testers happier with Groovy, Spock and Geb (Greach 2014)

Alvaro Sanchez-Mariscal

Writing functional tests using Geb in a Grails application is fine for a development team. But when you have QA automation engineers, giving them access to the Grails app might not be the best solution (specially when they belong to a different team). So the same way DevOps allow developers and sysadmins collaborate together, let's talk about DevQA, and make them happy using a framework stack powered by Groovy. Besides above considerations, in this talk I will show a live example on how to setup an independent project for functional tests using Gradle, Groovy, Spock and Geb.

DevQA: make your testers happier with Groovy, Spock and Geb

Alvaro Sanchez-Mariscal

More from Alvaro Sanchez-Mariscal (17)

Serverless functions with Micronaut

Asynchronous and event-driven Grails applications

6 things you need to know about GORM 6

Reactive microservices with Micronaut - GR8Conf EU 2018

Reactive microservices with Micronaut - Greach 2018

Practical Spring Cloud

Efficient HTTP applications on the JVM with Ratpack - JDD 2015

Stateless authentication for microservices - GR8Conf 2015

Ratpack 101 - GR8Conf 2015

Ratpack 101 - GeeCON 2015

Stateless authentication for microservices - Greach 2015

Stateless authentication for microservices applications - JavaLand 2015

Stateless token-based authentication for pure front-end applications

Workshop: Creating RESTful API’s with Grails and Spring Security (GR8Conf 2014)

Embrace the frontend revolution

DevQA: make your testers happier with Groovy, Spock and Geb (Greach 2014)

DevQA: make your testers happier with Groovy, Spock and Geb

Recently uploaded

VTU technical seminar 8Th Sem on Scikit-learn

AmarnathKambale

In the past six months, the AI landscape has undergone a massive transformation, ushering in a new era of productivity with the latest in Large Language Models (LLMs) and AI technology. This deep dive unlocks how to: Create CustomGPT Models: No coding needed to tailor AI for your unique projects. Integrate your own data, including PDFs and Excel sheets, making information handling a breeze. Plus, discover how to call your own actions/integrations for even more personalized utility. Navigate Advanced Prompting: Overcome AI's memory limits and utilize Retrieval-Augmented Generation for accessing your personalized data, streamlining how you interact with AI. Stay Ahead with AI Trends: Peek into the evolving world of LLMs, featuring newcomers like Google Gemini, Anthropic Claude, Open Sora, and Twitter Grok, and understand what their advancements mean for your productivity. Witness Real-Life Transformations: Through examples and prompt demonstrations, see firsthand how these AI strategies revolutionize routine tasks, from data analysis to content creation. Learn to leverage image output and input for advanced practical use cases, adding a new dimension to your productivity toolkit. No previous coding or AI experience is needed for this talk. Stay ahead in the fast-evolving world of work. Embrace the AI revolution and transform your workflow with advanced LLM techniques. Join us to ensure you're not left behind in the productivity race.

AI Mastery 201: Elevating Your Workflow with Advanced LLM Techniques

VictorSzoltysek

%in Hazyview+277-882-255-28 abortion pills for sale in Hazyview

masabamasaba

Investing in AI transformation today The modern business advantage: Uncovering deep insights with AI Organizations around the world have come to recognize AI as the transformative technology that enables them to gain real business advantage. AI’s ability to organize vast quantities of data allows those who implement it to uncover deep business insights, augment human expertise, drive operational efficiency, transform their products, and better serve their customers

Microsoft AI Transformation Partner Playbook.pdf

Willy Marroquin (WillyDevNET)

In today's dynamic e-commerce landscape, the payment gateway emerges as a linchpin, ensuring smooth and secure transactions between buyers and sellers. In this discourse, we delve into the meticulous process of devising test cases tailored for scrutinizing payment gateways. Crafting precise test cases for payment gateways is a quintessential responsibility for testers operating within the service industry. This article meticulously explores pivotal scenarios integral to how to test payment gateways, coupled with essential guidelines for drafting effective test cases.

Payment Gateway Testing Simplified_ A Step-by-Step Guide for Beginners.pdf

kalichargn70th171

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

WSO2

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

masabamasaba

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal.

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

masabamasaba

Conference: Engage2024 in Antwerp Type: Workshop Speakers: Florian Vogler, Henning Kunz, Christoph Adler Title: Navigating the Future with The Hitchhiker's Guide to Notes and Domino 14 Abstract: Embark on an exhilarating journey with industry trailblazers Florian Vogler, Henning Kunz, and Christoph Adler in this not-to-be-missed workshop at the forefront of the tech universe. Get ready for a thrilling kick-off as we navigate the current state of the HCL universe, setting the stage for an exploration of the groundbreaking Notes and Domino 14. Discover the latest enhancements and revolutionary features that will redefine your experience. In this interactive session, unlock a treasure trove of tips and tricks to elevate your utilization of version 14, both with and without the game-changing panagenda MarvelClient. Brace yourself for also diving into Nomad, Nomad Web, and VoltMX, expanding your horizons in the expansive HCL landscape. Be a part of this exclusive opportunity to stay ahead in the ever-evolving world of HCL technologies. Your journey to mastering Notes and Domino 14 begins here. And remember, in the spirit of intergalactic exploration, don't forget to bring your towel!

W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...

panagenda

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

SelfMade bd

Looking for an efficient way to manage your finances? Look no further than our money management app. With easy-to-use features, you can track your expenses, create budgets, and monitor your savings goals all in one place. Our app provides real-time updates on your spending habits and helps you make smarter financial decisions. Take control of your finances today with our user-friendly money management app.

Right Money Management App For Your Financial Goals

Jhone kinadey

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

Jittipong Loespradit

8257 interfacing 2 in microprocessor for btech students

HimanshiGarg82

Define the academic and professional writing..pdf

PearlKirahMaeRagusta1

Announcing Codolex 2.0 from GDK Software

Jim McKeeth

The fast-paced world of Agile development just got a turbo boost! Dive into this engaging talk on "Innovation at Speed: ChatGPT & the AI Transformation in Agile Development." Over the last few months, AI, including notable tools like Google Bard and Microsoft Co-Pilot, has been leveraged to supercharge Agile workflows. In this session, attendees will get an overview of the current AI landscape and its impact on development. They will learn why AI is the game-changer needed to embrace in the Agile lifecycle, offering that elusive X factor to multiply productivity. Real-world examples will be presented, and the challenges of implementing AI tools like ChatGPT within corporate environments will be discussed.

Harnessing ChatGPT - Elevating Productivity in Today's Agile Environment

VictorSzoltysek

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

masabamasaba

WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity

WSO2

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Philip Schwarz

Devoxx UK 2024 - Going serverless with Quarkus, GraalVM native images and AWS...

Bert Jan Schrijver

Recently uploaded (20)

VTU technical seminar 8Th Sem on Scikit-learn

AI Mastery 201: Elevating Your Workflow with Advanced LLM Techniques

%in Hazyview+277-882-255-28 abortion pills for sale in Hazyview

Microsoft AI Transformation Partner Playbook.pdf

Payment Gateway Testing Simplified_ A Step-by-Step Guide for Beginners.pdf

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

Right Money Management App For Your Financial Goals

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

8257 interfacing 2 in microprocessor for btech students

Define the academic and professional writing..pdf

Announcing Codolex 2.0 from GDK Software

Harnessing ChatGPT - Elevating Productivity in Today's Agile Environment

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Devoxx UK 2024 - Going serverless with Quarkus, GraalVM native images and AWS...

Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016

1. Creating applications with Grails, Angular JS and Spring Security Álvaro Sánchez-Mariscal

2. Álvaro Sánchez-Mariscal Software Engineer Grails Development Team sanchezmariscala@ociweb.com

4. OCI is the new home of Grails More at ociweb.com/grails

5. The workshop bit.ly/grails-angular-workshop

6. Creating REST API’s with Grails

7. The REST Proﬁle • Targeted at building REST applications. • REST Speciﬁc plugins and commands. • No GSP, asset pipeline, UI plugins. • JSON / Markup views instead.

8. The REST Profile • Profile specific commands: • create-domain-resource - creates an @Resource domain • create-restful-controller - creates a RestfulController

9. The REST Proﬁle • Statically compiled, extensible JSON views: json.person { name "bob" } {"person":{"name":"bob"}}

10. Create the project $ grails create-app -profile rest-api -features hibernate5,json-views todo | Application created at /tmp/todo

11. Create a domain resource $ grails create-domain-resource todo | Created grails-app/domain/todo/Todo.groovy | Created src/test/groovy/todo/TodoSpec.groovy

12. REST Domain class package com.example    import grails.rest.Resource    @Resource(uri = '/todos')  class Todo {    String description  boolean completed    }

13. Create a restful controller $ grails create-restful-controller todo.Todo | Created grails-app/controllers/todo/TodoController.groovy

14. RESTful Controller package com.example    import grails.rest.RestfulController    class TodoController extends RestfulController {    static responseFormats = ['json']    TodoController() {  super(Todo)  }    def pending() {  respond Todo.findAllByCompleted(false), view: 'index'  }  }

15. JSON View import com.example.Todo    model {  Todo todo  }    json {  hal.links(todo)  id todo.id  description todo.description  completed todo.completed  }

16. Demo - REST API

17. Working with the Angular JS proﬁle

18. The Angular JS Proﬁle • Extends the REST proﬁle. • Adds project setup for AngularJS. • Code generation for AngularJS. • Scaffolding available via plugin.

19. The Angular JS Profile • Profile specific commands: • create-ng-controller • create-ng-service • create-ng-domain • create-ng-directive • create-ng-component • create-ng-module

20. Create the project $ grails create-app -profile angular -features hibernate5,json-views todo | Application created at /tmp/todo

21. Scaffold all the things! $ grails ng-generate-all todo.Todo

22. Demo - AngularJS scaffolding

23. The Angular 2 Proﬁle • Available since Grails 3.2.1. • Multi-project build: • Client: a pure Angular 2 project, Angular CLI- based. • Server: a pure rest-api Grails project.

24. The Angular 2 Proﬁle $ ng serve $ ./gradlew client:bootRun

25. CORS • Supported in Grails core since 3.2.2 • application.yml grails:  cors:  enabled: true

26. Demo - Angular 2 proﬁle

27. Adding Security with Spring Security REST

28. Spring Security REST • Compatibility layer over Spring Security Core. • Login and logout REST endpoints. • Token validation filter. • Stateless by default, with JWT (signed and encrypted) • Memcached, Redis, GORM and Grails Cache token storages. • Implicit grant support through 3rd party providers. • RFC 6750 Bearer Token support.

29. Create the project $ grails create-app -profile angular -features hibernate,json-views,security todo | Application created at /tmp/todo

30. The interceptor angular  .module("todo")  .factory('authInterceptor', function ($rootScope, $window) {  return {  request: function (config) {  config.headers = config.headers || {};  if ($window.sessionStorage.token) {  config.headers.Authorization = 'Bearer ' + $window.sessionStorage.token;  }  return config;  }  };  })  .config(function ($httpProvider) {  $httpProvider.interceptors.push('authInterceptor');  })  .controller("TodoController", TodoController);

31. Demo - All together

32. Thank you! Álvaro Sánchez-Mariscal

Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (18)

Similar to Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016

Similar to Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016 (20)

More from Alvaro Sanchez-Mariscal

More from Alvaro Sanchez-Mariscal (17)

Recently uploaded

Recently uploaded (20)

Creating applications with Grails, Angular JS and Spring Security - G3 Summit 2016