Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016

•

5 likes•4,179 views

Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk. We’ll use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Heroku, Kubernetes, Docker, ELK, Spring Cloud, Stormpath; there will be plenty of interesting demos to see!

Technology

Microservices for the Masses
Spring Boot · JWT · JHipster
Brought to you by Matt Raible and Stormpath

Conway’s Law
Any organization that designs a system (deﬁned
broadly) will produce a design whose structure is a copy
of the organization’s communication structure.
Melvyn Conway 1967

You shouldn’t start with a microservices architecture.
Instead begin with a monolith, keep it modular, and split
it into microservices once the monolith becomes a
problem.
Martin Fowler March 2014

Microservices are awesome, but they’re not free.
Les Hazlewood Stormpath CTO

JHipster by the numbers
+250 contributors
+5400 Github stars
+320,000 installations
+100 companies ofﬁcially using it

How to use JHipster
To install JHipster, you run an npm command:
$ npm install -g generator-jhipster
$ mkdir myapp && cd myapp
$ yo jhipster

What’s Generated?
Spring Boot application
AngularJS application
Liquibase changelog ﬁles
Conﬁguration ﬁles

Security Screens
Several generated screens
Login, logout, forgot password
Account management
User management
Useful for most applications
Pages must be tweaked
User roles will be added/extended
Provides good examples of working screens
Forms, directives, validation…

Admin Screens
Monitoring
Health
Spring Boot conﬁguration
Spring Security audits
Log management
Very useful in production

Securing your API
Choose the Right API Security Protocol
Basic API Authentication w/ TLS (formlerly known as SSL)
OAuth1.0a, OAuth2
API Keys vs. Username/Password Authentication
Store Your API Security Key securely
Use globally unique IDs (e.g. Url62)
Avoid sessions, especially in URLs

How to Secure your API
https://www.youtube.com/watch?v=hdSrT4yjS1g
Learn more on the Stormpath blog

Create a JWT in Java
String jwt = Jwts.builder()
.setSubject("users/TzMUocMF4p")
.setExpiration(new Date(1300819380))
.claim("name", "Robert Token Man")
.claim("scope", "self groups/admins")
.signWith(
SignatureAlgorithm.HS256,
"secret".getBytes("UTF-8")
)
.compact();

Validating a JWT
String jwt = // get JWT from Authorization header
Jws<Claims> claims = Jwts.parser()
.setSigningKey("secret".getBytes("UTF-8"))
.parseClaimsJws(jwt)
String scope = claims.getBody().get("scope")
assertEquals(scope, "self groups/admins");

Better Secret
String b64EncodedSecret =
"Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E=";
.signWith(SignatureAlgorithm.HS256,
TextCodec.BASE64.decode(b64EncodedSecret))

JWTs in Java for CSRF and Microservices
https://www.youtube.com/watch?v=QSYK4OCmycI
Learn more on the Stormpath blog

Microservices are not free, but you get a deep discount
on microservices with JHipster.
Matt Raible 2016

JHipster.next
Angular 2
JUnit 5
Spring 5 and Reactive
Apache Kafka
HTTP/2
Progressive Web App Support

Do one thing and do it well.
Unix philosophy

This Presentation and Demos
https://github.com/mraible/microservices-for-the-masses

Image Credits
Fountain of colours - Paulius Malinovskis on Flickr
Ponte dell’Accademia at Sunrise - Trey Ratcliff on Stuck in Customs
Conway’s Law - Martin Fowler and James Lewis on Microservices
Good Morning Denver - Sheila Sund on Flickr
Monoliths - Arches National Park on Flickr
Mexico - Trish McGinity on McGinity Photo
Future - vivianhir on Flickr
Spring Runoff - Ian Sane on Flickr
The memory Seeker, Santa Monica Pier, CA - Pacheco on Flickr
San Francisco By Night - Trish McGinity on McGinity Photo

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or JWT. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - DOSUG February 2016

Matt Raible

YouTube of this presentation's JHipster Demo: https://www.youtube.com/watch?v=ZGF4gEM4FuA Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and Browsersync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or JWT authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx UK 2016

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx 2015

Matt Raible

YouTube of this talk: https://www.youtube.com/watch?v=baVOGuFIe9M Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 7 or 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry, Heroku and Openshift.

Get Hip with JHipster - Denver JUG 2015

Matt Raible

My presentation as delivered at the Denver Java User Group on April 8, 2015. Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 7 or 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry, Heroku and Openshift.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Angular Summit 2015

Matt Raible

Presentation from Angular Summit talk in September 2015. http://angularsummit.com/conference/boston/2015/09/session?id=34190 Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 7 or 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry, Heroku and Openshift.

Getting Started with Angular - Stormpath Webinar, January 2017

Matt Raible

YouTube video of webinar: https://www.youtube.com/watch?v=Jq3szz2KOOs This presentation is from a Stormpath Webinar I did on January 12, 2017. It was designed to teach developers how to build apps using Angular. Topics covered: tools needed, how to setup a project, how to run/deploy and how to deploy it to the cloud. I also talked about TypeScript, components, RxJS, routing, CSS frameworks and security.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Rich Web Experie...

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 7 or 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry, Heroku and Openshift.

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx 2015

Matt Raible

Get Hip with JHipster - Denver JUG 2015

Matt Raible

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Angular Summit 2015

Matt Raible

Getting Started with Angular - Stormpath Webinar, January 2017

Matt Raible

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Rich Web Experie...

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project for you and allow you to use Java 7 or 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Grunt or Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry, Heroku and Openshift.

The Art of Angular in 2016 - Devoxx France 2016

Matt Raible

The Art of Angular in 2016 - vJUG24

Matt Raible

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx France 2016

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Testing Angular 2 Applications - Rich Web 2016

Matt Raible

The best reason for writing tests is to automate your testing. Without tests, you'll likely be testing manually. This manual testing will take longer and longer as your codebase grows. In this session, you’ll learn how to test an Angular 2 application. You'll learn how to use Jasmine to unit test components and Protractor for integration testing. We’ll also take a look at code coverage options and explore continuous integration tools.

Spring Boot and JHipster

Eueung Mulyana

Get Hip with JHipster - Colorado Springs OSS Meetup April 2016

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Testing Angular 2 Applications - HTML5 Denver 2016

Matt Raible

The best reason for writing tests is to automate your testing. Without tests, you'll likely be testing manually. This manual testing will take longer and longer as your codebase grows. In this session, you’ll learn how to test an Angular 2 application. You'll learn how to use Jasmine to unit testing components and Protractor for integration testing. We’ll also take a look at code coverage options and explore continuous integration tools.

Developing PWAs and Mobile Apps with Ionic, Angular, and JHipster - Devoxx Mo...

Matt Raible

In this session, I show how to build a Progressive Web App (PWA) AND a mobile app using Ionic, Angular and JHipster. PWAs are being hyped as the next big thing in mobile development. This talk describes the trials and tribulations of developing the Ionic Module for JHipster. It will show how you can easily generate Ionic UIs and describe the pain points of working with Node and Yeoman to develop this module. My Dev Story about Ionic for JHipster on YouTube: https://www.youtube.com/watch?v=B7TjR_rJVeU

Testing Mobile JavaScript

jeresig

Testing Angular Applications - Jfokus 2017

Matt Raible

The best reason for writing tests is to automate your testing. Without tests, you'll likely be testing manually. This manual testing will take longer and longer as your codebase grows. In this session, you’ll learn how to test an Angular 2 application. You'll learn how to use Jasmine to unit testing components and Protractor for integration testing. We’ll also take a look at code coverage options and explore continuous integration tools. Tutorial: https://github.com/mraible/ng-demo/blob/master/README.adoc Source code: https://github.com/mraible/ng-demo

Java Web Application Security with Java EE, Spring Security and Apache Shiro ...

Matt Raible

Play Framework vs Grails Smackdown - JavaOne 2013

Matt Raible

Cloud Native Progressive Web Applications - Denver JUG 2016

Matt Raible

In this session, we covered how to build microservices with Spring, deploy them to the cloud and expose their functionality with an progressive web application that can run offline. You’ll learn how to “build to fail” and create a quality, resilient application. Live coding will show how to use: Spring Boot, Spring Cloud, Spring Security, Cloud Foundry, IntelliJ IDEA, Angular 2, JWT, Stormpath, and Progressive Web Apps.

JHipster

Yuen-Kuei Hsueh

What's New in Spring 3.1

Matt Raible

Avoiding Common Pitfalls in Ember.js

Alex Speller

What's New in JHipsterLand - DevNexus 2017

Matt Raible

Comparing Hot JavaScript Frameworks: AngularJS, Ember.js and React.js - Sprin...

Matt Raible

JavaScript MVC Frameworks are all the rage these days. They’ve taken the web development world by storm. This session explores the various features of the three hottest JavaScript MVC frameworks: AngularJS, Ember.js and React.js. It also compares client-side templating vs. server-side templating and how well each framework supports Isomorphic JavaScript (code that can run both client-side and server-side). Finally, it ranks each framework on 10 different criteria using Yevgeniy Brikman’s framework scorecard. Video on InfoQ: https://www.infoq.com/presentations/comparing-angular-ember-react

Choosing the best JavaScript framework/library/toolkitHristo Chakarov

Going Node At Netflix

Ryan Anklam

Deploying JHipster Microservices

Joe Kutner

Building a PWA with Ionic, Angular and Spring Boot - Jfokus 2017

Matt Raible

In this session, you'll learn how to build a Progressive Web App (PWA) using Ionic, Angular and Spring Boot. PWAs are being hyped as the next big thing in mobile development. This talk will cut through the hype and get down to the nitty-gritty. Are they really better than native applications? Can you develop PWAs and easily target mobile and desktop with the same application? Tutorial: https://github.com/stormpath/stormpath-spring-boot-ionic-example/blob/master/TUTORIAL.md Source code: https://github.com/stormpath/stormpath-spring-boot-ionic-example

What's hot

The Art of Angular in 2016 - Devoxx France 2016

Matt Raible

The Art of Angular in 2016 - vJUG24

Matt Raible

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx France 2016

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Testing Angular 2 Applications - Rich Web 2016

Matt Raible

Spring Boot and JHipster

Eueung Mulyana

Get Hip with JHipster - Colorado Springs OSS Meetup April 2016

Matt Raible

Building a modern web (or mobile) application requires a lot of tools, frameworks and techniques. This session shows how JHipster unites popular frameworks like AngularJS, Spring Boot and Bootstrap. Using Yeoman, a scaffolding tool for modern webapps, JHipster will generate a project that uses Java 8, SQL or NoSQL databases, Spring profiles, Maven or Gradle, Gulp.js, WebSockets and BrowserSync. It also supports a number of different authentication mechanisms: classic session-based auth, OAuth 2.0, or token-based authentication. For cloud deployments, JHipster includes out-of-the-box support for Cloud Foundry and Heroku.

Testing Angular 2 Applications - HTML5 Denver 2016

Matt Raible

The best reason for writing tests is to automate your testing. Without tests, you'll likely be testing manually. This manual testing will take longer and longer as your codebase grows. In this session, you’ll learn how to test an Angular 2 application. You'll learn how to use Jasmine to unit testing components and Protractor for integration testing. We’ll also take a look at code coverage options and explore continuous integration tools.

Developing PWAs and Mobile Apps with Ionic, Angular, and JHipster - Devoxx Mo...

Matt Raible

Testing Mobile JavaScript

jeresig

Testing Angular Applications - Jfokus 2017

Matt Raible

The best reason for writing tests is to automate your testing. Without tests, you'll likely be testing manually. This manual testing will take longer and longer as your codebase grows. In this session, you’ll learn how to test an Angular 2 application. You'll learn how to use Jasmine to unit testing components and Protractor for integration testing. We’ll also take a look at code coverage options and explore continuous integration tools. Tutorial: https://github.com/mraible/ng-demo/blob/master/README.adoc Source code: https://github.com/mraible/ng-demo

Java Web Application Security with Java EE, Spring Security and Apache Shiro ...

Matt Raible

Play Framework vs Grails Smackdown - JavaOne 2013

Matt Raible

Cloud Native Progressive Web Applications - Denver JUG 2016

Matt Raible

JHipster

Yuen-Kuei Hsueh

What's New in Spring 3.1

Matt Raible

Avoiding Common Pitfalls in Ember.js

Alex Speller

What's New in JHipsterLand - DevNexus 2017

Matt Raible

Comparing Hot JavaScript Frameworks: AngularJS, Ember.js and React.js - Sprin...

Matt Raible

Choosing the best JavaScript framework/library/toolkitHristo Chakarov

Going Node At Netflix

Ryan Anklam

What's hot (20)

The Art of Angular in 2016 - Devoxx France 2016

The Art of Angular in 2016 - vJUG24

Get Hip with JHipster: Spring Boot + AngularJS + Bootstrap - Devoxx France 2016

Testing Angular 2 Applications - Rich Web 2016

Spring Boot and JHipster

Get Hip with JHipster - Colorado Springs OSS Meetup April 2016

Testing Angular 2 Applications - HTML5 Denver 2016

Developing PWAs and Mobile Apps with Ionic, Angular, and JHipster - Devoxx Mo...

Testing Mobile JavaScript

Testing Angular Applications - Jfokus 2017

Java Web Application Security with Java EE, Spring Security and Apache Shiro ...

Play Framework vs Grails Smackdown - JavaOne 2013

Cloud Native Progressive Web Applications - Denver JUG 2016

JHipster

What's New in Spring 3.1

Avoiding Common Pitfalls in Ember.js

What's New in JHipsterLand - DevNexus 2017

Comparing Hot JavaScript Frameworks: AngularJS, Ember.js and React.js - Sprin...

Choosing the best JavaScript framework/library/toolkit

Going Node At Netflix

Viewers also liked

Deploying JHipster Microservices

Joe Kutner

Building a PWA with Ionic, Angular and Spring Boot - Jfokus 2017

Matt Raible

How we built a job board in one week with JHipster

Kile Niklawski

@KileNiklawski with @IpponUSA presents on how we built a job board in one week using JHipster. About JHipster: Our goal is to generate for you a complete and modern Web app, unifying: - A high-performance and robust Java stack on the server side with Spring Boot - A sleek, modern, mobile-first front-end with AngularJS and Bootstrap - A powerful workflow to build your application with Yeoman, Bower, Grunt and Maven

Cloud Native PWAs (progressive web apps with Spring Boot and Angular) - DevNe...

Matt Raible

In this session, we show how to build microservices with Spring, deploy them to the cloud and expose their functionality with an progressive web application that can run offline. You’ll learn how to “build to fail” and create a quality, resilient application. Live coding will show how to use: Spring Boot, Spring Cloud, Spring Security, Cloud Foundry, IntelliJ IDEA, Angular 2, JWT, Stormpath, and Progressive Web Apps. Demo code: https://github.com/mraible/cloud-native-pwas

Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin

Java User Group Latvia

Have you ever wondered how single-sign-on on sites like Google and Facebook works? Are you a fan of stateless application architectures? Do you want to learn how to put together a modern security approach for your next Spring Boot project? If the answer is yes, to anything above, then this session is for you. Dmitry will explain what is OAuth 2.0 and JWT, why are they popular, and how to integrate them in Java project.

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Alvaro Sanchez-Mariscal

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorisation. He will explore the existing impl More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro. Authentication is normally a stateful service. Most of the implementations rely on the HTTP session, thus introducing state as the session is an in-memory data structure in the application server. In the microservices era, most of the companies are developing such called RESTful services, where one of the principles is to create stateless systems. In such scenario, authentication should be stateless too. There is a standard specification to secure web application and API's, that is being adopted massively by the industry: OAuth 2. The specification doesn't explicitly cover how to make a stateless implementation. And most of the existing ones depend on some sort of external storage (such as a DB) to store the tokens generated for a later validation. Fortunately, there is another specification by the IETF called JSON Web Token, that can be combined with OAuth 2 to achieve a stateless authentication system. In the session, Alvaro will explain the core concepts of OAuth 2, as well as JWT and how can them be used together to achieve the last 2 letters of REST: State Transfer.

Devoxx : being productive with JHipster

Julien Dubois

Hipster lab

Hipster LAB

From Angular to Angular 2 via the UpgradeAdapter

Tony May

Web 2.0 Expo Berlin: OpenID Emerging from Web 2.0

David Recordon

JWT Agile Framework

Emmanuel Flores Elías

Deploy, Scale and Sleep at Night with JRubyJoe Kutner

Understanding OpenID

Prabath Siriwardena

Stateless Auth using OAUTH2 & JWT

Mobiliya

Spring Boot quickstart

Jonas Hecht

Java & JWT Stateless authentication

Karlo Novak

As REST is rising in power and importance, statelessness is becoming a priority which is not always easy to acquire since we all love cookies. Even though it’s hard to believe, I have something you’ll like more than cookies – JSON Web Tokens. Join me in this session to learn using a fully stateless authentication with Java (+Spring Security) and JWT, therefore obeying strong REST principles most applications require nowadays.

Depression und Social Media

Uwe Hauck

JWT Authentication with AngularJS

robertjd

Integrate Spring MVC with RequireJS & Backbone.js & Spring Data JPA

Cheng Ta Yeh

Angular 2 Migration - JHipster Meetup 6

William Marques

Viewers also liked (20)

Deploying JHipster Microservices

Building a PWA with Ionic, Angular and Spring Boot - Jfokus 2017

How we built a job board in one week with JHipster

Cloud Native PWAs (progressive web apps with Spring Boot and Angular) - DevNe...

Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Devoxx : being productive with JHipster

Hipster lab

From Angular to Angular 2 via the UpgradeAdapter

Web 2.0 Expo Berlin: OpenID Emerging from Web 2.0

JWT Agile Framework

Deploy, Scale and Sleep at Night with JRuby

Understanding OpenID

Stateless Auth using OAUTH2 & JWT

Spring Boot quickstart

Java & JWT Stateless authentication

Depression und Social Media

JWT Authentication with AngularJS

Integrate Spring MVC with RequireJS & Backbone.js & Spring Data JPA

Angular 2 Migration - JHipster Meetup 6

Similar to Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016

Microservices for the Masses with Spring Boot, JHipster, and JWT - Devoxx UK...

Matt Raible

Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk. You'll see how to use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Heroku, Kubernetes, Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!

Microservices for the Masses with Spring Boot, JHipster, and JWT - J-Spring 2017

Matt Raible

Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk. We’ll use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!

jRecruiter - The AJUG Job Posting Service

Gunnar Hillert

Microservices for the Masses with Spring Boot, JHipster, and OAuth - South We...

Matt Raible

Microservices are being deployed by many Java Hipsters. If you're working with a large team that needs different release cycles for product components, microservices can be a blessing. If you're working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. This presentation will show you how to use JHipster to create a microservices architecture with Spring Boot, Spring Cloud, Keycloak, and run it all in Docker. You will leave with the know-how to create your own excellent apps! Related blog posts: * Java Microservices with Spring Boot and Spring Cloud: https://developer.okta.com/blog/2019/05/22/java-microservices-spring-boot-spring-cloud * Java Microservices with Spring Cloud Config and JHipster: https://developer.okta.com/blog/2019/05/23/java-microservices-spring-cloud-config * Secure Reactive Microservices with Spring Cloud Gateway: https://developer.okta.com/blog/2019/08/28/reactive-microservices-spring-cloud-gateway

#NoXML: Eliminating XML in Spring Projects - SpringOne 2GX 2015

Matt Raible

JS Fest 2019. Виктор Турский. 6 способов взломать твое JavaScript приложение

JSFestUA

Choose Your Own Adventure with JHipster & Kubernetes - Utah JUG 2020

Matt Raible

Remember the choose your own adventure books that you used to read as a kid? This session is a reincarnation of a choose your own adventure book as a conference talk! You'll learn about Spring Boot, Docker, and Kubernetes in this talk, along with the choices you make in the following areas: * What kind of application architecture to build? Monolith or microservices? * Would you like to use Java or Kotlin? * MySQL, PostgreSQL, or MongoDB? * Spring MVC or Spring WebFlux? * Angular, React, or Vue.js? * PWA or mobile app? * Istio with Kubernetes or Kubernetes without Istio? GitHub repos of demos: * Monolith: https://github.com/mraible/healthy-hipster * Microservices: https://github.com/mraible/ujug-microservices

Experienced Selenium Interview questions

archana singh

Automatic deployment on .NET web stack (Minsk .NET meetup 12.02.14)

Is Antipov

Microservices for the Masses with Spring Boot, JHipster, and OAuth - Switzerl...

Matt Raible

Microservices are being deployed by many Java Hipsters. If you're working with a large team that needs different release cycles for product components, microservices can be a blessing. If you're working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. This presentation will show you how to use JHipster to create Angular + Spring Boot apps with a unified front-end. You will leave with the know-how to create your own excellent apps! Related blog posts: * Java Microservices with Spring Boot and Spring Cloud: https://developer.okta.com/blog/2019/05/22/java-microservices-spring-boot-spring-cloud * Java Microservices with Spring Cloud Config and JHipster: https://developer.okta.com/blog/2019/05/23/java-microservices-spring-cloud-config * Secure Reactive Microservices with Spring Cloud Gateway: https://developer.okta.com/blog/2019/08/28/reactive-microservices-spring-cloud-gateway

Track 5 Session 1_如何藉由多層次防禦搭建網路應用安全.pptxAmazon Web Services

Track 5 Session 1_如何藉由多層次防禦搭建網路應用安全Amazon Web Services

#MBLTdev: Разработка первоклассных SDK для Android (Twitter)

e-Legion

Internet and Web Technology (CLASS-9) [React.js] | NIC/NIELIT Web Technology

Ayes Chinmay

The Awesome jOOQ JavaOne Talk

Lukas Eder

Entrepreneurship3

Yenwen Feng

Building Twitter's SDKs for Android

Andy Piper

Learn hints, tips and tricks from the Twitter Fabric development team, and the principles that guided their creation of this modular and powerful SDK. Presentation delivered at DroidconNL, Amsterdam, Nov 2014 Thanks to Andrea Falcone and the Fabric team for content and materials. You can see a lightning version of this talk delivered at Twitter Flight here -> https://www.youtube.com/watch?v=3h7jQU1AOvw&index=2&list=PLFKjcMIU2WsjUiy7UcPiWNxktpin0WDgu

Microservices for the Masses with Spring Boot, JHipster, and OAuth - Utah JUG...

Matt Raible

Microservices are all the rage and being deployed by many Java Hipsters. If you’re working with a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk. We’ll use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Heroku, Kubernetes, Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!

10 Excellent Ways to Secure Your Spring Boot Application - The Secure Develop...

Matt Raible

Spring Boot is an excellent way to build Java applications with the Spring Framework. If you’re developing apps that handle sensitive data, you should make sure they’re secure. This session will cover HTTPS, dependency checking, CSRF, using a CSP to prevent XSS, OIDC, password hashing, and much more! You’ll learn how to add these features to a real application, using the Java language you know and love. YouTube: https://www.thesecuredeveloper.com/post/10-excellent-ways-to-secure-your-spring-boot-application Blog post: https://developer.okta.com/blog/2018/07/30/10-ways-to-secure-spring-boot Cheat sheet: https://snyk.io/blog/spring-boot-security-best-practices/

6 ways to hack your JavaScript application by Viktor Turskyi

OdessaJS Conf

Similar to Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016 (20)

Microservices for the Masses with Spring Boot, JHipster, and JWT - Devoxx UK...

Microservices for the Masses with Spring Boot, JHipster, and JWT - J-Spring 2017

jRecruiter - The AJUG Job Posting Service

Microservices for the Masses with Spring Boot, JHipster, and OAuth - South We...

#NoXML: Eliminating XML in Spring Projects - SpringOne 2GX 2015

JS Fest 2019. Виктор Турский. 6 способов взломать твое JavaScript приложение

Choose Your Own Adventure with JHipster & Kubernetes - Utah JUG 2020

Experienced Selenium Interview questions

Automatic deployment on .NET web stack (Minsk .NET meetup 12.02.14)

Microservices for the Masses with Spring Boot, JHipster, and OAuth - Switzerl...

Track 5 Session 1_如何藉由多層次防禦搭建網路應用安全.pptx

Track 5 Session 1_如何藉由多層次防禦搭建網路應用安全

#MBLTdev: Разработка первоклассных SDK для Android (Twitter)

Internet and Web Technology (CLASS-9) [React.js] | NIC/NIELIT Web Technology

The Awesome jOOQ JavaOne Talk

Entrepreneurship3

Building Twitter's SDKs for Android

Microservices for the Masses with Spring Boot, JHipster, and OAuth - Utah JUG...

10 Excellent Ways to Secure Your Spring Boot Application - The Secure Develop...

6 ways to hack your JavaScript application by Viktor Turskyi

More from Matt Raible

Keep Identities in Sync the SCIMple Way - ApacheCon NA 2022

Matt Raible

What if keeping your user stores in sync across domains was as simple as running "java -jar"? With Apache SCIMPle, it is! Apache SCIMple is a SCIM 2.0-compliant server powered by Spring Boot 3. You can run it standalone or embedded in your existing app. It exposes user management REST endpoints and handles the hassle of user synchronization for you. If your identity provider supports SCIM, use the simple way! GitHub example: https://github.com/mraible/okta-scim-spring-boot-example Demo script: https://github.com/mraible/okta-scim-spring-boot-example/blob/main/demo.adoc

Micro Frontends for Java Microservices - Belfast JUG 2022

Matt Raible

You've figured out how to split up your backend services into microservices and scale your teams to the moon, right? But what about the frontend? Are you still building monoliths for your UI? If so, you might want to check out micro frontends—basically extensions to the microservices pattern, where the concept is extended to the frontend. Find out how to package and deploy your microservices and their UIs in the same artifact, as well as make it possible to test and develop them independently. In this live session, Matt will show you how to build a microservices and micro frontends architecture using Angular, Spring Boot, and Spring Cloud. Related blog post: https://auth0.com/blog/micro-frontends-for-java-microservices GitHub repo: https://github.com/oktadev/auth0-micro-frontends-jhipster-example

Micro Frontends for Java Microservices - Dublin JUG 2022

Matt Raible

You've figured out how to split up your backend services into microservices and scale your teams to the moon, right? But what about the frontend? Are you still building monoliths for your UI? If so, you might want to check out micro frontends—basically extensions to the microservices pattern, where the concept is extended to the frontend. Find out how to package and deploy your microservices and their UIs in the same artifact, as well as make it possible to test and develop them independently. In this live session, Matt will show you how to build a microservices and micro frontends architecture using Angular, Spring Boot, and Spring Cloud. YouTube: https://youtu.be/lKC55S-OxPQ Related blog post: https://auth0.com/blog/micro-frontends-for-java-microservices GitHub repo: https://github.com/oktadev/auth0-micro-frontends-jhipster-example

Micro Frontends for Java Microservices - Cork JUG 2022

Matt Raible

Comparing Native Java REST API Frameworks - Seattle JUG 2022

Matt Raible

Use Spring Boot! No, use Micronaut!! Nooooo, Quarkus is the best!!! What about Helidon? There are a lot of developers praising the hottest, and fastest, Java REST frameworks: Micronaut, Quarkus, Spring Boot, and Helidon. In this session, you'll learn how to do the following with each framework: ✅ Build a REST API ✅ Secure your API with OAuth 2.0 ✅ Optimize for production with Docker and GraalVM I'll also share some performance numbers and pretty graphs to compare community metrics. Related blog post: https://developer.okta.com/blog/2021/06/18/native-java-framework-comparison Helidon companion post: https://developer.okta.com/blog/2022/01/06/native-java-helidon GitHub repo: https://github.com/oktadev/native-java-examples

Reactive Java Microservices with Spring Boot and JHipster - Spring I/O 2022

Matt Raible

Microservice architectures are all the rage in JavaLand. They allow teams to develop services independently and deploy autonomously. Why microservices? IF you are developing a large/complex application AND you need to deliver it rapidly, frequently, and reliably over a long period of time THEN the Microservice Architecture is often a good choice. Reactive architectures are becoming increasingly popular for organizations that need to do more, with less hardware. Reactive programming allows you to build systems that are resilient to high load. In this session, I'll show you how to use JHipster to create a reactive microservices architecture with Spring Boot, Spring Cloud, Keycloak, and run it all in Docker. You will leave with the know-how to create your own resilient apps! Related blog post: https://developer.okta.com/blog/2021/01/20/reactive-java-microservices YouTube demo: https://youtu.be/clkEUHWT9-M GitHub repo: https://github.com/oktadev/java-microservices-examples/tree/main/reactive-jhipster

Comparing Native Java REST API Frameworks - Devoxx France 2022

Matt Raible

Lock That Sh*t Down! Auth Security Patterns for Apps, APIs, and Infra - Devne...

Matt Raible

In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps. The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open-source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them? If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!

Native Java with Spring Boot and JHipster - Garden State JUG 2021

Matt Raible

Do you want to deploy your Spring Boot apps in a serverless environment and have them start up in milliseconds? Of course, you do! In this talk, Josh Long and Matt Raible will introduce you to Spring Native. They'll teach you all about how it can compile Spring Boot apps into native binaries that start faster than a speeding bullet! You'll learn about native testing support with JUnit 5 and the pros and cons of native vs JVM deployments. This talk will also highlight a customer, the JHipster project. JHipster generates Spring Boot-based monoliths and microservices. You'll learn about the project's experience with Spring Boot, Spring Cloud, Spring WebFlux, and Spring Native. It ain't easy being a Java Hipster, but the Spring ecosystem does simplify the process quite a bit. Recording on YouTube: https://youtu.be/k6nBB8FOmQ8 Examples on GitHub: https://github.com/mraible/spring-native-examples Writeup on LinkedIn: https://www.linkedin.com/pulse/jhipster-works-spring-native-part-2-matt-raible/

Java REST API Framework Comparison - PWX 2021

Matt Raible

Use Spring Boot! No, use Micronaut!! Nooooo, Quarkus is the best!!! There's a lot of developers praising the hottest, and fastest, Java REST frameworks: Micronaut, Quarkus, and Spring Boot. In this session, you'll learn how to do the following with each framework: ✅ Build a REST API ✅ Secure your API with OAuth 2.0 ✅ Optimize for production with Docker and GraalVM I'll also share some performance numbers and pretty graphs to compare community metrics. Related blog post: https://developer.okta.com/blog/2021/06/18/native-java-framework-comparison

Web App Security for Java Developers - PWX 2021

Matt Raible

Web app security is not just authentication and authorization. It's also the things you do to protect your web app from attackers with their XSS (cross-site scripting), SQL injection, DoS/DDoS attacks, and CSRF (cross-site request forgery), to name a few. Web app security is a central component of any web-based business. The internet exposes web apps to attacks from different locations and various levels of scale and complexity. Web application security deals specifically with the security surrounding websites, web applications, and web services such as APIs. In this presentation, you'll learn seven ways to better web app security, using Spring Security for code samples. You'll also see some quick demos of Spring Boot, Angular, and JHipster with Keycloak, Auth0, and Okta.

Mobile App Development with Ionic, React Native, and JHipster - Connect.Tech ...

Matt Raible

Mobile development offers a lot of options. To develop native apps, you can use Java or Kotlin on Android. On iOS, you can use Objective C or Swift. There are other options, too. You can build hybrid mobile apps and Progressive Web Apps (PWAs). Hybrid mobile apps are those created with web technologies (HTML, JavaScript, and CSS) that look like native apps. PWAs have the ability to work offline and act like mobile apps. In this talk, we'll explore a few different mobile technologies: PWAs, React Native, and Ionic (with Angular). You'll walk away with knowledge of how to build mobile + Spring Boot apps in minutes with JHipster. * GitHub repo: https://github.com/mraible/mobile-jhipster * Demo script: https://github.com/mraible/mobile-jhipster/blob/main/demo.adoc

Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Joker...

Matt Raible

Web App Security for Java Developers - UberConf 2021

Matt Raible

Java REST API Framework Comparison - UberConf 2021

Matt Raible

Native Java with Spring Boot and JHipster - SF JUG 2021

Matt Raible

Do you want to deploy your Spring Boot apps in a serverless environment and have them start up in milliseconds? Of course, you do! In this talk, Josh Long and Matt Raible will introduce you to Spring Native. They'll teach you all about how it can compile Spring Boot apps into native binaries that start faster than a speeding bullet! You'll learn about native testing support with JUnit 5 and the pros and cons of native vs JVM deployments. This talk will also highlight a customer, the JHipster project. JHipster generates Spring Boot-based monoliths and microservices. You'll learn about the project's experience with Spring Boot, Spring Cloud, Spring WebFlux, and Spring Native. It ain't easy being a Java Hipster, but the Spring ecosystem does simplify the process quite a bit. Recording on YouTube: https://youtu.be/F9oydL_MndA Examples on GitHub: https://github.com/mraible/spring-native-examples Writeup on LinkedIn: https://www.linkedin.com/pulse/jhipster-works-spring-native-matt-raible/

Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Sprin...

Matt Raible

In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps. The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them? If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!

Reactive Java Microservices with Spring Boot and JHipster - Denver JUG 2021

Matt Raible

Microservice architectures are all the rage in JavaLand. They allow teams to develop services independently and deploy autonomously. Why microservices? IF you are developing a large/complex application AND you need to deliver it rapidly, frequently, and reliably over a long period of time THEN the Microservice Architecture is often a good choice Reactive architectures are becoming increasingly popular for organizations that need to do more, with less hardware. Reactive programming allows you to build systems that are resilient to high loads. In this session, I'll show you how to use JHipster to create a reactive microservices architecture with Spring Boot, Spring Cloud, Keycloak, and run it all in Docker. You will leave with the know-how to create your own resilient apps! Related blog post: https://developer.okta.com/blog/2021/01/20/reactive-java-microservices YouTube demo: https://youtu.be/clkEUHWT9-M YouTube recording: https://youtu.be/8OuZMFyh0xE GitHub repo: https://github.com/oktadev/java-microservices-examples/tree/main/reactive-jhipster

Get Hip with JHipster - Colorado Springs Open Source User Group 2021

Matt Raible

JHipster is bad-ass. It's an Apache-licensed open source project that allows you to generate Spring Boot APIs and Angular (or React/Vue) apps. It has a vibrant community and ecosystem with support for deploying to many cloud providers and using the latest DevOps buzzwords, like Docker and K8s. This session will show you JHipster, why it's cool, and show you how to create an app with it. JHipster 7 Demo: https://www.youtube.com/watch?v=6lf64CctDAQ JHipster 7 Tutorial: https://github.com/mraible/jhipster7-demo#readme

JHipster and Okta - JHipster Virtual Meetup December 2020

Matt Raible

YouTube video: https://www.youtube.com/watch?v=ym-OPn4e_nQ When I first started working at Okta, I refactored JHipster's OAuth support to move from authentication on the client to the server, leveraging Spring Security. This allowed for easier client integration since we didn't need to worry about finding an OIDC client for each frontend framework. Fast forward four years and JHipster's OAuth 2.0 and OIDC support is first-class! It uses Keycloak in a Docker container by default, but it's easy to switch to another identity provider (IdP) thanks to Spring Boot. Other blueprints like Micronaut, Quarkus, Node.js, and .NET support OAuth and OIDC too! This presentation explains what OAuth 2.0 and OIDC is, gives an overview of JHipster’s OAuth implementation, and provides three quick demos with Keycloak, the Okta CLI, and Heroku. See https://developer.okta.com/blog/tags/jhipster for Okta + JHipster tutorials and screencasts! 邏 You also might enjoy my What the Heck is OAuth? blog post: https://developer.okta.com/blog/2017/06/21/what-the-heck-is-oauth

More from Matt Raible (20)

Keep Identities in Sync the SCIMple Way - ApacheCon NA 2022

Micro Frontends for Java Microservices - Belfast JUG 2022

Micro Frontends for Java Microservices - Dublin JUG 2022

Micro Frontends for Java Microservices - Cork JUG 2022

Comparing Native Java REST API Frameworks - Seattle JUG 2022

Reactive Java Microservices with Spring Boot and JHipster - Spring I/O 2022

Comparing Native Java REST API Frameworks - Devoxx France 2022

Lock That Sh*t Down! Auth Security Patterns for Apps, APIs, and Infra - Devne...

Native Java with Spring Boot and JHipster - Garden State JUG 2021

Java REST API Framework Comparison - PWX 2021

Web App Security for Java Developers - PWX 2021

Mobile App Development with Ionic, React Native, and JHipster - Connect.Tech ...

Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Joker...

Web App Security for Java Developers - UberConf 2021

Java REST API Framework Comparison - UberConf 2021

Native Java with Spring Boot and JHipster - SF JUG 2021

Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Sprin...

Reactive Java Microservices with Spring Boot and JHipster - Denver JUG 2021

Get Hip with JHipster - Colorado Springs Open Source User Group 2021

JHipster and Okta - JHipster Virtual Meetup December 2020

Recently uploaded

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

FIDO Alliance

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

Product School

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

PHP Frameworks: I want to break free (IPC Berlin 2024)

Ralf Eggert

In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development. This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

91mobiles

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx

Abida Shariff

How world-class product teams are winning in the AI era by CEO and Founder, P...

Product School

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Knowledge engineering: from people to machines and back

Elena Simperl

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

Paul Groth

The Future of Platform Engineering

Jemma Hussein Allen

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

Recently uploaded (20)

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

PHP Frameworks: I want to break free (IPC Berlin 2024)

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

UiPath Test Automation using UiPath Test Suite series, part 3

IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx

How world-class product teams are winning in the AI era by CEO and Founder, P...

FIDO Alliance Osaka Seminar: Overview.pdf

The Art of the Pitch: WordPress Relationships and Sales

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Knowledge engineering: from people to machines and back

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

The Future of Platform Engineering

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Connector Corner: Automate dynamic content and events by pushing a button

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

JMeter webinar - integration with InfluxDB and Grafana

Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016

1. Microservices for the Masses Spring Boot · JWT · JHipster Brought to you by Matt Raible and Stormpath

6. Conway’s Law Any organization that designs a system (deﬁned broadly) will produce a design whose structure is a copy of the organization’s communication structure. Melvyn Conway 1967

7. "Do one thing and do it well."

8. The Future?

9. You shouldn’t start with a microservices architecture. Instead begin with a monolith, keep it modular, and split it into microservices once the monolith becomes a problem. Martin Fowler March 2014

10.

11.

12.

13. start.spring.io

14.

15.

16.

17. Microservices are awesome, but they’re not free. Les Hazlewood Stormpath CTO

18. Spring Boot Demo

19.

20.

21. JHipster by the numbers +250 contributors +5400 Github stars +320,000 installations +100 companies ofﬁcially using it

22. How to use JHipster To install JHipster, you run an npm command: $ npm install -g generator-jhipster $ mkdir myapp && cd myapp $ yo jhipster

23. What’s Generated? Spring Boot application AngularJS application Liquibase changelog files Configuration files

24. Security Screens Several generated screens Login, logout, forgot password Account management User management Useful for most applications Pages must be tweaked User roles will be added/extended Provides good examples of working screens Forms, directives, validation…

25. Admin Screens Monitoring Health Spring Boot conﬁguration Spring Security audits Log management Very useful in production

26. Liquibase

27.

28.

29.

30.

31.

32. ThoughtWorks Radar

33.

34.

35.

36.

37. Securing your API Choose the Right API Security Protocol Basic API Authentication w/ TLS (formlerly known as SSL) OAuth1.0a, OAuth2 API Keys vs. Username/Password Authentication Store Your API Security Key securely Use globally unique IDs (e.g. Url62) Avoid sessions, especially in URLs

38. How to Secure your API https://www.youtube.com/watch?v=hdSrT4yjS1g Learn more on the Stormpath blog

39.

40. Anatomy of a JWT

41. Create a JWT in Java String jwt = Jwts.builder() .setSubject("users/TzMUocMF4p") .setExpiration(new Date(1300819380)) .claim("name", "Robert Token Man") .claim("scope", "self groups/admins") .signWith( SignatureAlgorithm.HS256, "secret".getBytes("UTF-8") ) .compact();

42. Validating a JWT String jwt = // get JWT from Authorization header Jws<Claims> claims = Jwts.parser() .setSigningKey("secret".getBytes("UTF-8")) .parseClaimsJws(jwt) String scope = claims.getBody().get("scope") assertEquals(scope, "self groups/admins");

43. Better Secret String b64EncodedSecret = "Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E="; .signWith(SignatureAlgorithm.HS256, TextCodec.BASE64.decode(b64EncodedSecret))

44. JWTs in Java for CSRF and Microservices https://www.youtube.com/watch?v=QSYK4OCmycI Learn more on the Stormpath blog

45. Microservices with JHipster

46.

47.

48. Microservices are not free, but you get a deep discount on microservices with JHipster. Matt Raible 2016

49. JHipster.next Angular 2 JUnit 5 Spring 5 and Reactive Apache Kafka HTTP/2 Progressive Web App Support

50.

51. Do one thing and do it well. Unix philosophy

52. This Presentation and Demos https://github.com/mraible/microservices-for-the-masses

53.

54. Image Credits Fountain of colours - Paulius Malinovskis on Flickr Ponte dell’Accademia at Sunrise - Trey Ratcliff on Stuck in Customs Conway’s Law - Martin Fowler and James Lewis on Microservices Good Morning Denver - Sheila Sund on Flickr Monoliths - Arches National Park on Flickr Mexico - Trish McGinity on McGinity Photo Future - vivianhir on Flickr Spring Runoff - Ian Sane on Flickr The memory Seeker, Santa Monica Pier, CA - Pacheco on Flickr San Francisco By Night - Trish McGinity on McGinity Photo

Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (20)

Similar to Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016

Similar to Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016 (20)

More from Matt Raible

More from Matt Raible (20)

Recently uploaded

Recently uploaded (20)

Microservices for the Masses with Spring Boot, JHipster, and JWT - Rich Web 2016