OWIN and Katana Project - Not Only IIS - NoIISBilal Haidar
This presentation is an introduction to OWIN and Katana project. The title states it all, NOT ONLY IIS, meaning that, we can now host Web Apps outside IIS.
A brief introduction to OWIN and Katana, the basics and few basic details on the analysis of the internal workings of OWIN and functions, the middleware registrations and how they all compare to the traditional request processing pipelines.
ASP.NET over the years
- Introduced ASP.NET WebForms in 2002
- Object-oriented
- Similar design time experience for WinForms developers
- Rich set of user interface controls and infrastructure features
- Server-side event model
- Monolithic Framework
- Tighly coupled with System.Web.dll and IIS
- Included as part of the .NET framework
- Tied to .NET Framework releases
O que é esse tal de OWIN e por que ele é tão importante para o futuro do ASP.NET? Venha conhecer como tirar proveito hoje mesmo de uma nova maneira de se desenvolver aplicações ASP.NET desacopladas e entender a base da próxima versão desse framework tão poderoso.
Running SOA in the Cloud: SOA CS for SOA Suite CustomersSimon Haslam
A presentation discussing the approaches for running SOA in the cloud for existing on-premises SOA Suite customers, based on experiences of running production SOA CS. First delivered by Simon & Bruno Neves Alves at the UKOUG Apps17 conference in Birmingham in December 2017.
Tips & Tricks for Java & SOA Cloud ServiceSimon Haslam
In autumn 2015 Simon recorded an OTN webinar sharing his thoughts on Java Cloud Service based on his early testing; 18 months on, drawing on production experiences with CIMA's award-winning SOA Cloud Service platform (the first SOACS go-live in EMEA), Simon explained tricks and tips he has learnt by using Oracle PaaS over this period. This presentation was first delivered at the UKOUG Tech17 conference.
Discover what are OWIN and Katana projects, and how Microsoft became able to release a family of modular components rather than a monolithic framework.
SOA & WebLogic - Lift & Shift to the CloudSimon Haslam
A presentation about moving SOA and WebLogic java workloads to the Oracle Cloud. First delivered by myself & Bruno Neves Alves at the UKOUG Middleware & Integration Special Interest Group in London on 28 September 2017.
You can find many articles in the web that cover how to prevent to get the target of getting hacked. But how do you actually detect that your site was compromised?
It's probably just a matter of time that you get hacked. And a WordPress plugin is never the solution since a plugin should support the site. In this presentation, I'm discussing the basics you can do with WordPress and which software you can use to prevent – and detect! – hacking.
Experiences of implementing Oracle SOA Cloud Service in mid 2016. Topics include: topologies; user and key management; SSL and certificates; provisioning automation (eProseed Accelerator for Oracle Cloud); monitoring post go-live, etc.
This presentation was delivered by Simon Haslam and Kiran Tailor at the UKOUG Tech16 conference in Birmingham on 5/12/16.
WebLogic Scripting Tool allows easy management of many Weblogic Server based products. Oracle has strategically implemented WLST in many products to make provisioning and configuring of environments easy and reproducible. This among other things enables tools like Chef and Puppet to do their magic. WLST is based on Jython. Jython is an implementation of Python running on the Java VM. Both Python and the Java VM provide many options for extending WLST functionality beyond what is commonly done. This will be elaborated and demonstrated with several advanced use cases and their implementations. This technical presentation will provide you with the knowledge to get most out of your investment in Oracle products!
Node.js 101 with Rami Sayar
Presented on September 18 2014 at
FITC's Web Unleashed Toronto 2014 Conference
More info at www.fitc.ca
OVERVIEW
Node.js is a runtime environment and library for running JavaScript applications outside the browser. Node.js is mostly used to run real-time server applications and shines through its performance using non-blocking I/O and asynchronous events. This talk will introduce you to Node.js by showcasing the environment and its two most popular libraries: express and socket.io.
TARGET AUDIENCE
Beginner web developers
ASSUMED AUDIENCE KNOWLEDGE
Working knowledge of JavaScript and HTML5.
OBJECTIVE
Learn how to build a chat engine using Node.js and WebSockets.
FIVE THINGS AUDIENCE MEMBERS WILL LEARN
Node.js environment and basics
Node Package Manager overview
Web Framework, express, basics
WebSockets and Socket.io basics
Building a chat engine using Node.js
Save 10% off ANY FITC event with discount code 'slideshare' - http://www.fitc.ca
OVERVIEW
Node.js is a runtime environment and library for running JavaScript applications outside the browser. Node.js is mostly used to run real-time server applications and shines through its performance using non-blocking I/O and asynchronous events. This talk will introduce you to Node.js by showcasing the environment and its two most popular libraries: express and socket.io.
TARGET AUDIENCE
Beginner web developers
ASSUMED AUDIENCE KNOWLEDGE
Working knowledge of JavaScript and HTML5.
OBJECTIVE
Learn how to build a chat engine using Node.js and WebSockets.
FIVE THINGS AUDIENCE MEMBERS WILL LEARN
Node.js environment and basics
Node Package Manager overview
Web Framework, express, basics
WebSockets and Socket.io basics
Building a chat engine using Node.js
OWIN and Katana Project - Not Only IIS - NoIISBilal Haidar
This presentation is an introduction to OWIN and Katana project. The title states it all, NOT ONLY IIS, meaning that, we can now host Web Apps outside IIS.
A brief introduction to OWIN and Katana, the basics and few basic details on the analysis of the internal workings of OWIN and functions, the middleware registrations and how they all compare to the traditional request processing pipelines.
ASP.NET over the years
- Introduced ASP.NET WebForms in 2002
- Object-oriented
- Similar design time experience for WinForms developers
- Rich set of user interface controls and infrastructure features
- Server-side event model
- Monolithic Framework
- Tighly coupled with System.Web.dll and IIS
- Included as part of the .NET framework
- Tied to .NET Framework releases
O que é esse tal de OWIN e por que ele é tão importante para o futuro do ASP.NET? Venha conhecer como tirar proveito hoje mesmo de uma nova maneira de se desenvolver aplicações ASP.NET desacopladas e entender a base da próxima versão desse framework tão poderoso.
Running SOA in the Cloud: SOA CS for SOA Suite CustomersSimon Haslam
A presentation discussing the approaches for running SOA in the cloud for existing on-premises SOA Suite customers, based on experiences of running production SOA CS. First delivered by Simon & Bruno Neves Alves at the UKOUG Apps17 conference in Birmingham in December 2017.
Tips & Tricks for Java & SOA Cloud ServiceSimon Haslam
In autumn 2015 Simon recorded an OTN webinar sharing his thoughts on Java Cloud Service based on his early testing; 18 months on, drawing on production experiences with CIMA's award-winning SOA Cloud Service platform (the first SOACS go-live in EMEA), Simon explained tricks and tips he has learnt by using Oracle PaaS over this period. This presentation was first delivered at the UKOUG Tech17 conference.
Discover what are OWIN and Katana projects, and how Microsoft became able to release a family of modular components rather than a monolithic framework.
SOA & WebLogic - Lift & Shift to the CloudSimon Haslam
A presentation about moving SOA and WebLogic java workloads to the Oracle Cloud. First delivered by myself & Bruno Neves Alves at the UKOUG Middleware & Integration Special Interest Group in London on 28 September 2017.
You can find many articles in the web that cover how to prevent to get the target of getting hacked. But how do you actually detect that your site was compromised?
It's probably just a matter of time that you get hacked. And a WordPress plugin is never the solution since a plugin should support the site. In this presentation, I'm discussing the basics you can do with WordPress and which software you can use to prevent – and detect! – hacking.
Experiences of implementing Oracle SOA Cloud Service in mid 2016. Topics include: topologies; user and key management; SSL and certificates; provisioning automation (eProseed Accelerator for Oracle Cloud); monitoring post go-live, etc.
This presentation was delivered by Simon Haslam and Kiran Tailor at the UKOUG Tech16 conference in Birmingham on 5/12/16.
WebLogic Scripting Tool allows easy management of many Weblogic Server based products. Oracle has strategically implemented WLST in many products to make provisioning and configuring of environments easy and reproducible. This among other things enables tools like Chef and Puppet to do their magic. WLST is based on Jython. Jython is an implementation of Python running on the Java VM. Both Python and the Java VM provide many options for extending WLST functionality beyond what is commonly done. This will be elaborated and demonstrated with several advanced use cases and their implementations. This technical presentation will provide you with the knowledge to get most out of your investment in Oracle products!
Node.js 101 with Rami Sayar
Presented on September 18 2014 at
FITC's Web Unleashed Toronto 2014 Conference
More info at www.fitc.ca
OVERVIEW
Node.js is a runtime environment and library for running JavaScript applications outside the browser. Node.js is mostly used to run real-time server applications and shines through its performance using non-blocking I/O and asynchronous events. This talk will introduce you to Node.js by showcasing the environment and its two most popular libraries: express and socket.io.
TARGET AUDIENCE
Beginner web developers
ASSUMED AUDIENCE KNOWLEDGE
Working knowledge of JavaScript and HTML5.
OBJECTIVE
Learn how to build a chat engine using Node.js and WebSockets.
FIVE THINGS AUDIENCE MEMBERS WILL LEARN
Node.js environment and basics
Node Package Manager overview
Web Framework, express, basics
WebSockets and Socket.io basics
Building a chat engine using Node.js
Save 10% off ANY FITC event with discount code 'slideshare' - http://www.fitc.ca
OVERVIEW
Node.js is a runtime environment and library for running JavaScript applications outside the browser. Node.js is mostly used to run real-time server applications and shines through its performance using non-blocking I/O and asynchronous events. This talk will introduce you to Node.js by showcasing the environment and its two most popular libraries: express and socket.io.
TARGET AUDIENCE
Beginner web developers
ASSUMED AUDIENCE KNOWLEDGE
Working knowledge of JavaScript and HTML5.
OBJECTIVE
Learn how to build a chat engine using Node.js and WebSockets.
FIVE THINGS AUDIENCE MEMBERS WILL LEARN
Node.js environment and basics
Node Package Manager overview
Web Framework, express, basics
WebSockets and Socket.io basics
Building a chat engine using Node.js
Deep Dive: Alfresco Core Repository (... embedded in a micro-services style a...J V
Alfresco Summit 2014 (London)
Though best practice is to leverage Alfresco through the well defined API's, it can be useful to understand the internals of the repository so that your development efforts are the most effective. A deep understanding of the repository will help you to evaluate performance bottlenecks, look for bugs, or make contributions. This session provides an overview of the repository internals, including the major components, the key services, subsystems, and database. We then provide an example where we leverage the repository in a micro-service architecture while building Alfresco's future cloud products and show how the different parts of the repository interact to fulfill requests.
http://summit.alfresco.com/london/sessions/diving-deep-alfresco-repository
https://www.youtube.com/watch?v=TAE9UjC0xxc
In an increasingly competitive marketplace, speed and business agility are paramount. And integration between customer-facing systems and back-end applications is more crucial than ever.
At this event, you'll learn how open source software built by communities, like Apache Camel, Docker, Kubernetes, OpenShift Origin, and Fabric8, can help organizations integrate services and establish effective continuous integration and delivery (CI/CD) pipelines.
WildFly AppServer - State of the Union
as presented at SoftShake Geneva, Oct 2015
http://soft-shake.ch/2015/en/
Covering the whole WildFly v8/9/10 series and the key aspects of the base AS7 architecture.
Confluent REST Proxy and Schema Registry (Concepts, Architecture, Features)Kai Wähner
High level introduction to Confluent REST Proxy and Schema Registry (leveraging Apache Avro under the hood), two components of the Apache Kafka open source ecosystem. See the concepts, architecture and features.
The presentation was given on 11/12/2018 on CloudExpo NY. The presentation talks about software portability approaches and technologies on Kubernetes, microservices, service mesh, and serverless platforms
Amazon EKS 그리고 Service Mesh
Kubernetes는 컨테이너 서비스를 도입하는 기업들에게 가장 있기있는 Orchestration 플랫폼입니다. 이 세션에서는 아마존에서 6월 정식 출시한 managed Kubenetes서비스인 EKS를 소개해드리며, 오픈소스 버전과의 차이점 및 장점 등에 대해 설명하고, 진보한 마이크로 서비스인 Service Mesh를 구현하는 Linkerd 소개 및 데모를 진행하고자 합니다.
The Liberty Deep Dive presentation from IBM InterConnect 2017. This presentation covers some of the key technical details of Liberty, some production deployment options, and what has changed between March 2016 and March 2017.
DevOoops (Increase awareness around DevOps infra security)
DevOps is increasingly blending the work of both application and network security professionals. In a quest to move faster, organisations can end up creating security vulnerabilities using the tools and products meant to protect them. What happens when these tools are used insecurely or - even worse - they are just insecure? Technologies discussed will encompass AWS, Puppet, Hudson/Jenkins, Vagrant, Docker and much, much more. Everything from common misconfigurations to remote code execution.
Gianluca Varisco - DevOoops (Increase awareness around DevOps infra security)Codemotion
DevOps is increasingly blending the work of both application and network security professionals. In a quest to move faster, organisations can end up creating security vulnerabilities using the tools and products meant to protect them. What happens when these tools are used insecurely or - even worse - they are just insecure? Technologies discussed will encompass AWS, Puppet, Hudson/Jenkins, Vagrant, Docker and much, much more. Everything from common misconfigurations to remote code execution.
Graspan: A Big Data System for Big Code AnalysisAftab Hussain
We built a disk-based parallel graph system, Graspan, that uses a novel edge-pair centric computation model to compute dynamic transitive closures on very large program graphs.
We implement context-sensitive pointer/alias and dataflow analyses on Graspan. An evaluation of these analyses on large codebases such as Linux shows that their Graspan implementations scale to millions of lines of code and are much simpler than their original implementations.
These analyses were used to augment the existing checkers; these augmented checkers found 132 new NULL pointer bugs and 1308 unnecessary NULL tests in Linux 4.4.0-rc5, PostgreSQL 8.3.9, and Apache httpd 2.2.18.
- Accepted in ASPLOS ‘17, Xi’an, China.
- Featured in the tutorial, Systemized Program Analyses: A Big Data Perspective on Static Analysis Scalability, ASPLOS ‘17.
- Invited for presentation at SoCal PLS ‘16.
- Invited for poster presentation at PLDI SRC ‘16.
Navigating the Metaverse: A Journey into Virtual Evolution"Donna Lenk
Join us for an exploration of the Metaverse's evolution, where innovation meets imagination. Discover new dimensions of virtual events, engage with thought-provoking discussions, and witness the transformative power of digital realms."
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxrickgrimesss22
Discover the essential features to incorporate in your Winzo clone app to boost business growth, enhance user engagement, and drive revenue. Learn how to create a compelling gaming experience that stands out in the competitive market.
GraphSummit Paris - The art of the possible with Graph TechnologyNeo4j
Sudhir Hasbe, Chief Product Officer, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeAftab Hussain
Understanding variable roles in code has been found to be helpful by students
in learning programming -- could variable roles help deep neural models in
performing coding tasks? We do an exploratory study.
- These are slides of the talk given at InteNSE'23: The 1st International Workshop on Interpretability and Robustness in Neural Software Engineering, co-located with the 45th International Conference on Software Engineering, ICSE 2023, Melbourne Australia
Do you want Software for your Business? Visit Deuglo
Deuglo has top Software Developers in India. They are experts in software development and help design and create custom Software solutions.
Deuglo follows seven steps methods for delivering their services to their customers. They called it the Software development life cycle process (SDLC).
Requirement — Collecting the Requirements is the first Phase in the SSLC process.
Feasibility Study — after completing the requirement process they move to the design phase.
Design — in this phase, they start designing the software.
Coding — when designing is completed, the developers start coding for the software.
Testing — in this phase when the coding of the software is done the testing team will start testing.
Installation — after completion of testing, the application opens to the live server and launches!
Maintenance — after completing the software development, customers start using the software.
Enterprise Resource Planning System includes various modules that reduce any business's workload. Additionally, it organizes the workflows, which drives towards enhancing productivity. Here are a detailed explanation of the ERP modules. Going through the points will help you understand how the software is changing the work dynamics.
To know more details here: https://blogs.nyggs.com/nyggs/enterprise-resource-planning-erp-system-modules/
Atelier - Innover avec l’IA Générative et les graphes de connaissancesNeo4j
Atelier - Innover avec l’IA Générative et les graphes de connaissances
Allez au-delà du battage médiatique autour de l’IA et découvrez des techniques pratiques pour utiliser l’IA de manière responsable à travers les données de votre organisation. Explorez comment utiliser les graphes de connaissances pour augmenter la précision, la transparence et la capacité d’explication dans les systèmes d’IA générative. Vous partirez avec une expérience pratique combinant les relations entre les données et les LLM pour apporter du contexte spécifique à votre domaine et améliorer votre raisonnement.
Amenez votre ordinateur portable et nous vous guiderons sur la mise en place de votre propre pile d’IA générative, en vous fournissant des exemples pratiques et codés pour démarrer en quelques minutes.
Code reviews are vital for ensuring good code quality. They serve as one of our last lines of defense against bugs and subpar code reaching production.
Yet, they often turn into annoying tasks riddled with frustration, hostility, unclear feedback and lack of standards. How can we improve this crucial process?
In this session we will cover:
- The Art of Effective Code Reviews
- Streamlining the Review Process
- Elevating Reviews with Automated Tools
By the end of this presentation, you'll have the knowledge on how to organize and improve your code review proces
Utilocate offers a comprehensive solution for locate ticket management by automating and streamlining the entire process. By integrating with Geospatial Information Systems (GIS), it provides accurate mapping and visualization of utility locations, enhancing decision-making and reducing the risk of errors. The system's advanced data analytics tools help identify trends, predict potential issues, and optimize resource allocation, making the locate ticket management process smarter and more efficient. Additionally, automated ticket management ensures consistency and reduces human error, while real-time notifications keep all relevant personnel informed and ready to respond promptly.
The system's ability to streamline workflows and automate ticket routing significantly reduces the time taken to process each ticket, making the process faster and more efficient. Mobile access allows field technicians to update ticket information on the go, ensuring that the latest information is always available and accelerating the locate process. Overall, Utilocate not only enhances the efficiency and accuracy of locate ticket management but also improves safety by minimizing the risk of utility damage through precise and timely locates.
AI Genie Review: World’s First Open AI WordPress Website CreatorGoogle
AI Genie Review: World’s First Open AI WordPress Website Creator
👉👉 Click Here To Get More Info 👇👇
https://sumonreview.com/ai-genie-review
AI Genie Review: Key Features
✅Creates Limitless Real-Time Unique Content, auto-publishing Posts, Pages & Images directly from Chat GPT & Open AI on WordPress in any Niche
✅First & Only Google Bard Approved Software That Publishes 100% Original, SEO Friendly Content using Open AI
✅Publish Automated Posts and Pages using AI Genie directly on Your website
✅50 DFY Websites Included Without Adding Any Images, Content Or Doing Anything Yourself
✅Integrated Chat GPT Bot gives Instant Answers on Your Website to Visitors
✅Just Enter the title, and your Content for Pages and Posts will be ready on your website
✅Automatically insert visually appealing images into posts based on keywords and titles.
✅Choose the temperature of the content and control its randomness.
✅Control the length of the content to be generated.
✅Never Worry About Paying Huge Money Monthly To Top Content Creation Platforms
✅100% Easy-to-Use, Newbie-Friendly Technology
✅30-Days Money-Back Guarantee
See My Other Reviews Article:
(1) TubeTrivia AI Review: https://sumonreview.com/tubetrivia-ai-review
(2) SocioWave Review: https://sumonreview.com/sociowave-review
(3) AI Partner & Profit Review: https://sumonreview.com/ai-partner-profit-review
(4) AI Ebook Suite Review: https://sumonreview.com/ai-ebook-suite-review
#AIGenieApp #AIGenieBonus #AIGenieBonuses #AIGenieDemo #AIGenieDownload #AIGenieLegit #AIGenieLiveDemo #AIGenieOTO #AIGeniePreview #AIGenieReview #AIGenieReviewandBonus #AIGenieScamorLegit #AIGenieSoftware #AIGenieUpgrades #AIGenieUpsells #HowDoesAlGenie #HowtoBuyAIGenie #HowtoMakeMoneywithAIGenie #MakeMoneyOnline #MakeMoneywithAIGenie
Quarkus Hidden and Forbidden ExtensionsMax Andersen
Quarkus has a vast extension ecosystem and is known for its subsonic and subatomic feature set. Some of these features are not as well known, and some extensions are less talked about, but that does not make them less interesting - quite the opposite.
Come join this talk to see some tips and tricks for using Quarkus and some of the lesser known features, extensions and development techniques.
Artificia Intellicence and XPath Extension FunctionsOctavian Nadolu
The purpose of this presentation is to provide an overview of how you can use AI from XSLT, XQuery, Schematron, or XML Refactoring operations, the potential benefits of using AI, and some of the challenges we face.
May Marketo Masterclass, London MUG May 22 2024.pdfAdele Miller
Can't make Adobe Summit in Vegas? No sweat because the EMEA Marketo Engage Champions are coming to London to share their Summit sessions, insights and more!
This is a MUG with a twist you don't want to miss.
Launch Your Streaming Platforms in MinutesRoshan Dwivedi
The claim of launching a streaming platform in minutes might be a bit of an exaggeration, but there are services that can significantly streamline the process. Here's a breakdown:
Pros of Speedy Streaming Platform Launch Services:
No coding required: These services often use drag-and-drop interfaces or pre-built templates, eliminating the need for programming knowledge.
Faster setup: Compared to building from scratch, these platforms can get you up and running much quicker.
All-in-one solutions: Many services offer features like content management systems (CMS), video players, and monetization tools, reducing the need for multiple integrations.
Things to Consider:
Limited customization: These platforms may offer less flexibility in design and functionality compared to custom-built solutions.
Scalability: As your audience grows, you might need to upgrade to a more robust platform or encounter limitations with the "quick launch" option.
Features: Carefully evaluate which features are included and if they meet your specific needs (e.g., live streaming, subscription options).
Examples of Services for Launching Streaming Platforms:
Muvi [muvi com]
Uscreen [usencreen tv]
Alternatives to Consider:
Existing Streaming platforms: Platforms like YouTube or Twitch might be suitable for basic streaming needs, though monetization options might be limited.
Custom Development: While more time-consuming, custom development offers the most control and flexibility for your platform.
Overall, launching a streaming platform in minutes might not be entirely realistic, but these services can significantly speed up the process compared to building from scratch. Carefully consider your needs and budget when choosing the best option for you.
OpenMetadata Community Meeting - 5th June 2024OpenMetadata
The OpenMetadata Community Meeting was held on June 5th, 2024. In this meeting, we discussed about the data quality capabilities that are integrated with the Incident Manager, providing a complete solution to handle your data observability needs. Watch the end-to-end demo of the data quality features.
* How to run your own data quality framework
* What is the performance impact of running data quality frameworks
* How to run the test cases in your own ETL pipelines
* How the Incident Manager is integrated
* Get notified with alerts when test cases fail
Watch the meeting recording here - https://www.youtube.com/watch?v=UbNOje0kf6E
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...Crescat
Crescat is industry-trusted event management software, built by event professionals for event professionals. Founded in 2017, we have three key products tailored for the live event industry.
Crescat Event for concert promoters and event agencies. Crescat Venue for music venues, conference centers, wedding venues, concert halls and more. And Crescat Festival for festivals, conferences and complex events.
With a wide range of popular features such as event scheduling, shift management, volunteer and crew coordination, artist booking and much more, Crescat is designed for customisation and ease-of-use.
Over 125,000 events have been planned in Crescat and with hundreds of customers of all shapes and sizes, from boutique event agencies through to international concert promoters, Crescat is rigged for success. What's more, we highly value feedback from our users and we are constantly improving our software with updates, new features and improvements.
If you plan events, run a venue or produce festivals and you're looking for ways to make your life easier, then we have a solution for you. Try our software for free or schedule a no-obligation demo with one of our product specialists today at crescat.io
Mobile App Development Company In Noida | Drona InfotechDrona Infotech
Looking for a reliable mobile app development company in Noida? Look no further than Drona Infotech. We specialize in creating customized apps for your business needs.
Visit Us For : https://www.dronainfotech.com/mobile-application-development/
2. Your Speaker
• VP - Open Source Development at Talend
• Team of engineers devoted to Apache Projects
• Worked on WebService/SOA related technology for over 10
years
• Apache Software Foundation
• Apache CXF - since the beginning
• Apache Maven, Apache WebServices, Apache Camel, Apache
ServiceMix, Apache Aries, etc…
• Apache Member
3. A Little About Apache CXF
• Entered the Apache Incubator in August 2006
• Merge of Celtix and XFire
• Compete with Axis/Axis2?
• Graduated in April 2008
• JAX-WS 2.x certified, JAX-RS 1.1 certified
• 8 “minor” versions (2.0 - 2.7), 86 patch releases
• 33 committers - 21 active
4. • The most complete implementation of WS-*
specifications.
• DOSGi Reference Implementation of OSGi
Remote Service Specification
• Apache CXF Fediz - Web Security Framework
• Used in products by Talend, JBoss, Fuse,
WSO2, Pramati, MuleSoft, TomEE, IBM, etc…
• Embedded all over - Google “CXF - Service List”
5. 2010 - Is CXF Finished?
• Go into maintenance mode? NO!!!!
• Development Efforts Centered around:
• Deployment options
• REST/JAX-RS Based Services
• Services
• Security
6. Deployment Models
• Always have had
• Good for standalone applications
• Top notch Spring support
• Good for WAR based applications (other than conflicts with various
app servers)
• OSGi support has “improved”
• Single big bundle -> little bundles (big bundle is GONE for 3.0)
• Blueprint support and enhancements
• Better management
7. Changed for 3.0
• Major refactoring of “api”, “core”, and WSDL based
APIs
• No more wsdl4j.jar or neethi.jar or mail.jar needed
for JAX-RS (amongst others)
• Smaller core - removed a lot of duplicate
functionality, unused code, deprecated code, etc….
• Better hooks for embedders like TomEE, JBoss, and
Talend
8. REST/JAX-RS
• 2.3.x-2.6.x are JAX-RS 1.1 Compliant
• 2.7.x started work on JAX-RS 2.0
• Filters, Interceptors, parts of Async Invocation,
dynamic features, exception classes, etc…
• 3.0 will implement JAX-RS 2.0
• Client API, Bean Validation, Suspended
requests
9. • OAuth 1, OAuth 2, SAML, Kerberos
• XML Signature/Encryption
• WADL generation from services
• Interface generation from WADL
• $filter query defined as part of Open Data
Protocol
• FIQL searches
// Find all employees younger than 25 or older than 35 living in London!
http://server.com/employees?_s=(age=lt=25,age=gt=35);city==London
10. Services
• 2.5.0 - introduced “out of the box” services based on CXF
technology
• WS-Notification
• Ported from ServiceMix
• WS-Notification Service using ActiveMQ backend
• JBI removed, pure JAX-WS API’s
• API module added
• WS-Eventing - new for CXF 3.0
11. • Security Token Service (STS)
• Initially developed for a Talend Customer
• Full production ready STS
• Supports Issue, Validate, Cancel, Renew binding
• Pluggable token validators, claims handlers, SAML
customizers, etc…
• Advanced use cases: KeyTypes (Public/Symmetric/
Bearer), OnBehalfOf, ActAs, Claims, etc…
• Enhanced support for Roles
12. • WS-Discovery (CXF 2.7)
• “Probe” the network for services
• Services can announce their availability
• Not just “software services”
• ONVIF compliant IP cameras
• Network Printers
• Network Scanners
13. • XML Key Management
Service (XKMS)
• New for CXF 3.0, back
ported for 2.7.7
• Normal - Java KeyStores
• XKMS front end for
organizations PKI
• Supports LDAP and File
based back ends
14. • XKMS - continued
• WSS4J Crypto
Providers
• Adding support to
CXF’s STS to validate
keys via XKMS
15. Fediz
• Framework that implements WS-
Federation Passive Requestor
Profile
• Plugins to Tomcat to redirect to
an IDP for authentication
• Contains a light weight IDP
• Support for Tomcat, WebSphere,
Jetty, Spring Security, CXF
16. Security
“I’m going to make CXF’s WS-Security implementation the
best WS-Security implementation.”
!
- Colm O hEigeartaigh
http://coheigea.blogspot.com/
17. Security
• STS, XKMS services
• XACML/SAML utilities
• SPNego/Kerberos profiles
• Prevent various DOS attacks
• ehCache based Nonce/Timestamp caches
• XML based attacks (DTD, size, limits)
• New algorithms
18. • Streaming WS-Security Implementation for 3.0
• StAX Based - MUCH lower memory
• No more DOM/SAAJ (unless required)
• Higher performance
• Quicker failures
• Support attachments
19. Other 3.0 Things
• WS-RM updates
• Full 1.1 support, tested extensively with .NET
• Termination of sequences
• JMX management
• Support for WS-RM with WS-Security and WS-
SecureConversation
20. • CXF specific front end code generator
• Allow passing Bus instances, CXF features
• Guarantees that CXF is picked up
• Allows future configuration points
21. • New Transports
• Netty based HTTP
• WebSocket
• New JMS Transports (no more Spring)
22. 3.0 Roadmap
• Milestone 2 released - PLEASE TEST
• 3.0 by end of April
• Normal 2.7.x patch releases every 8 weeks
• One more 2.6.x patch release
23. Questions and
More Information
• Apache CXF
• http://cxf.apache.org
• users@cxf.apache.org
• Me
• dkulp@apache.org or dkulp@talend.com