The world’s leading
brands run on Azure
Spring – trusted and growing
Spring is fantastic for developer productivity
When asked, 67% of managers, 66% of architects, and 50% of
developers strongly agreed that they care deeply about
developer productivity, and Spring delivers; 95% of
respondents agreed that Spring Boot has a huge positive
impact on productivity; and 91% agreed that, compared to
other Java development platforms, Spring has a bigger impact.
95% of respondents say
Spring Boot has a huge
positive impact on productivity.
91% say Spring has a bigger
impact on developer
productivity than other Java
programs.
Spring Boot downloads per month are
growing YoY
61% of developers surveyed use Spring Boot as their only or primary
development program.
Source – The State of Spring 2021
95%
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. 2
52%
91%
61%
2021
2020
52%
2022
Integrated into Azure’s ecosystem and services
Fully managed infrastructure Built-in app lifecycle management Productivity Boost
Jointly built, operated, and supported by Microsoft and VMware
3
Azure Spring Apps Enterprise
A Fully Managed App Platform
Note: Most features covered today are only in the Enterprise Tier
Zero Management. Maximum Productivity.
Focus on Code
Not Toil
K8s Without
Learning K8s
VMware Tanzu
Productivity Boost
For Developers
The Tanzu Productivity Boost
5x Productivity
Boost for Junior
Devs
(with higher quality)
70% Time Saved
for App Operators
Accelerates
Customer’s
Timelines by Years
What We’ve Seen
Zero Management. Maximum Efficiency.
Developer
Self-Service
Less Work
More ROI
Security Baked In
For Operators
Harness the power of Kubernetes.
Without having to learn or manage
Kubernetes.
8
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Azure Spring Apps
Spring Boot Apps Service runtime
9
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Azure Spring Apps
Home for enterprise Spring Boot applications
11
Three simple
operations
az spring create --name ${ASA_SERVICE_NAME} 
--sku enterprise 
--resource-group ${RESOURCE_GROUP} 
--location ${REGION}
Create service
1
az spring app create --name ${APP_NAME}
Create app
2
Deploy app
az spring app deploy --name ${APP_NAME} 
--source-path ${PATH_TO_CODE}
3
12
Azure Spring Apps Enterprise
13
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Azure Spring Apps
Enterprise
Unlock Spring’s full potential
with VMware Spring Runtime Support
Ship faster
with VMware Tanzu components
14
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Ship faster
with VMware Tanzu
components
15
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• Buildpacks with app
integrations
• Management of app
container creation
• Out-of-the-box SSO with
any identity provider
• Out-of-the-box
throttling and caching
• Accelerators for hardening
app config and best
practices
• Cloud-native streaming
and
batch data processing
pipelines
• ….
• Build Service
• Application
Configuration Service
• Service Registry
• Spring Cloud Gateway
• API portal
• Application Accelerator
• Application Live View
• SLA: 99.95
• ….
Deploy and manage
Spring and polyglot
applications.
16
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Effortlessly route
client requests
to apps.
17
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Commercial Support for Spring Projects
Here’s just one example: Spring Boot
2017 2018 2019 2020 2021 2022 2023 2024 2025 2026
3.0x
2.7x
2.6x
2.5x
2.4x
2.3x
2.2x
2.1x
2.0x
1.5x Today
with VMware Spring Runtime Support
Unlock Spring’s full potential
AspectJ
Micrometer
Reactor
Spring AMQP
Spring Batch
Spring Boot
Spring Apps Commons
Spring Apps Config
Spring Apps Netflix
Spring Apps Bus
Spring Apps
Cloud Foundry
Spring Apps Open
Service Broker
Spring Apps Consul
Spring Apps Security
Spring Apps Sleuth
Spring Apps Zookeeper
Spring Apps Kubernetes
Spring Apps CLI
Spring Apps OpenFeign
Spring Cloud Gateway
Spring Apps Function
Spring Apps Contract
Spring Apps Task
Spring Apps Stream
Spring Apps Stream Binder
for Apache Kafka®
Spring Apps Stream Binder
for RabbitMQ
Spring Apps Stream Binder
for Kafka Streams
Spring Apps Vault
Spring CredHub
Spring Data for
Apache Cassandra™
Spring Data Commons
Spring Data KeyValue
Spring Data LDAP
Spring Data JDBC
Spring Data JPA
Spring Data MongoDB
Spring Data GemFire
Spring Data For
Apache Geode™
Spring Data Redis
Spring Data Rest
Spring Data Solr
Spring Framework
Spring HATEOAS
Spring Integration
(Core Modules + Kafka)
Spring For Apache Kafka®
Spring LDAP
Spring Kerberos
Spring Rest Docs
Spring Retry
Spring Statemachine
Spring Security
Spring Security OAuth
Spring Security SAML
Spring Apps Data Flow
Spring Session
Spring Session
for MongoDB
Spring Session for GemFire/
Apache Geode™
Spring Tool Suite
Spring Tools 4
Spring Vault
Spring Apps Skipper
Spring Apps Stream/
Task App Starters
Get 24/7 support
19
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Demo:
Three simple
operations
az spring create --name ${ASA_SERVICE_NAME} 
--sku enterprise 
--resource-group ${RESOURCE_GROUP} 
--location ${REGION}
Create service
1
az spring app create --name ${APP_NAME}
Create app
2
Deploy app
az spring app deploy --name ${APP_NAME} 
--source-path ${PATH_TO_CODE}
3
20
Typical application architecture
21
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Runtime
API Gateway
Frontend User Interface
Automation
Monitoring Identity Provider Databases for Business State Secrets Management
Backend APIs
Runtime
Azure Spring Apps
Azure Active Directory PostgreSQL
Spring Cloud Gateway
Automation
Monitoring
Common application architecture
22
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Key Vault
Backend APIs
Identity Catalog Payment
Order
Cart
Frontend: NodeJS
Popular and easy to get started
Dockerfile: Most common way of creating containers
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. 23
Confidential │ ©2020 VMware, Inc.
• Dockerfiles are the most common way
of creating Docker Images
• Their flexibility is their power
• Run any command, mutate any file
• Their flexibility is their weakness
• Keeping consistent, ensuring security
• Takes a lot of effort for "good"
Dockerfiles
5
Creating Docker Images
DOCKERFILE TO CREATE JVM
Descriptive file specification
Good starting point
Flexibility is their power
When dev teams build images differently, they introduce vulnerabilities and complexity
Containers built using Dockerfile are hard to
productionize and scale
24
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Broken
build
Unverified
update
Hard to track
and patch CVE
Out of
compliance
Image updates
Security posture
Full stack container audits
IT governance
Specification to translate application code to OCI-compliant container image
Cloud Native Buildpacks
25
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Buildpacks ecosystem
26
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Specification-only project that transforms application code to images
that can run on any cloud
Cloud Native Buildpacks
27
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
dependency
Let’s start with a route and understand how the gateway helps me with XCCs
Understanding the Spring Cloud Gateway building blocks
28
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Link to Spring Cloud Gateway doc
• Routes define how the Gateway will process incoming requests.
• Each route is composed of Predicates, Filters, and a Service.
• Predicates determine whether the route matches any given
request.
• Filters apply behavior to matching requests or their responses.
• The Service determines where the request will be forwarded after
filtering.
The logic for executing the cross-cutting concerns
How they all work − Spring Cloud Gateway
29
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
1. Client makes a
request to the
Gateway.
2. Evaluates
Predicates to match
a request to a route.
Spring Cloud Gateway
3. Runs through the “pre” filter logic chain
specific to the request.
Pre-request
Post-request
4. Proxy routes the
request to the service.
Proxied
Service
5. Service is executed.
6. Runs the “post” filter logic.
Evaluate conditions to map requests to a route
Spring Cloud Gateway Predicates
30
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• HTTP Method matches a list?
• URI Path matches a pattern?
• URI Query matches a regex?
• RemoteAddr matches CIDRs?
• Weight within a route group
Link to available Predicates
• After a certain datetime?
• Before a certain datetime?
• Between two datetimes?
• Cookie matches a regex?
• Header value matches a regex?
• Host matches a pattern list?
Allow you to do things with requests/responses
Spring Cloud Gateway Filters
31
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Link to available Filters
• Add, remove, modify headers; map values; add security headers.
• Rewrite path, extract segments, add / remove prefix.
• Redirect users.
• Retry and use Circuit Breaker.
• Change response status.
• List authorized roles and scopes to access route.
Allows you to limit number of requests
Spring Cloud Gateway – Rate Limiting Filter
32
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• The Rate Limiting Filter limits the number of requests
allowed from a route, with the ability to burst the limit to
a max number.
• Duration specified in seconds(s), minutes(m), or hours(h).
• Within limits: response will succeed + report how many
requests can still be made.
• Exceeded limits: fail with 429 Too Many Requests.
• Ex.: Limit users to 2 requests every 5 seconds.
Link to Rate Limit Filter
Provides several custom filters in addition to those included in the open-source project
Spring Cloud Gateway – Commercial filters
33
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• Rate Limiting Filter
• Circuit Breaker Filter
• Single Sign-on Authorized Endpoint –
Security Filter
• Scope Authorization – Security Filter
• Role-Based Access Control – Security Filter
• Token Relay – Security Filter
• Request / Response Modification Filter
• Client Certificate Authorization Filter
• …
Link to Commercial Route Filters
Configurable single sign-on (SSO) integration with your preferred identity provider (IDP)
SSO integration with OIDC
34
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Authenticated?
No
Yes
Azure Active Directory
Backend APIs
Order
Cart
Spring Cloud Gateway
Identity Catalog Payment
Passes authenticated user’s identity token to the app when user accesses the app’s route
Token relay
35
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Cookie
Session
Authentication:
Bearer
xznjs….
Authentication:
Bearer
xznjs….
Azure Active Directory
Backend APIs
Order
Cart
Spring Cloud Gateway
Identity Catalog Payment
Route filter
Single sign-on authorized endpoint – Security
36
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• The SSO-enabled filter will force the client to be
authenticated before allowing access to a route.
• If the client is not authenticated, they will receive a
302 HTTP response with redirect URL to API
Gateway’s configured SSO login page.
• Ex: The /api/adopt route has the SSO-enabled
filter enabled, when accessed through an HTTP
GIT request.
Link to SSO Filters
Azure Spring Apps
Enterprise
37
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Unlock Spring’s full potential
with VMware Spring Runtime Support
Ship faster
with VMware Tanzu components
Ship faster
with VMware Tanzu
components
38
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• Buildpacks with app
integrations
• Management of app
container creation
• Out-of-the-box SSO with
any identity provider
• Out-of-the-box
throttling and caching
• Accelerators for hardening
app config and best
practices
• Cloud-native streaming
and
batch data processing
pipelines
• ….
• Build Service
• Application
Configuration Service
• Service Registry
• Spring Cloud Gateway
• API portal
• Application Accelerator
• Application Live View
• SLA: 99.95
• ….
Azure Spring Apps in a nutshell
• Home for distributed workloads that
leverage services on Azure, on-premises,
and externals.
• Eliminate middleware management efforts
– say patching, running middleware, etc.
• Unlimited scale without additional
hardware procurement or datacenters.
• Define roles and responsibilities to match
your team structure – Azure RBAC
(developer, DevOps, SRE, tester, security).
• Monitor end-to-end – detect and react
faster.
• Automate end-to-end.
• Implement charge backs in line with your
funding model – through Azure cost
management system.
• Minimize costs.
• High availability through
unpredictable volumes and
recover faster from failures.
• Expand across the globe – 60+
Azure regions with speed and
scale to meet your needs.
• Strengthen your security
posture with Azure.
• Supported by Microsoft and
VMware.
• Build and scale distributed
workloads at cloud scale.
• Externalize config, enable
service registry, secure,
automate end-to-end, and
monitoring.
• Harness the power of K8S
without learning or operating it.
• Easy to spawn environments.
• Automate testing.
• Advance to production across
the globe.
Developers
Easily build and deploy
IT Operators
Simple to operate at scale
Executives
Peace be with you!
39
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
Enterprise
Accelerate Spring apps to cloud at scale today!
Develop your first
Spring Boot app
aka.ms/Start-Spring
Learn using a self-paced
workshop
aka.ms/Learn-Spring
Watch Demos
aka.ms/Spring-Playlist
Leverage Best Practices
aka.ms/Spring-Boot
Build and Deploy Java apps
on Azure
aka.ms/LearnJava
Interact With Azure Services
Using Spring
aka.ms/Spring-Cloud-Azure
Start Today!
aka.ms/spring-apps-enterprise
50 vCPU hours
100 Memory GB hours
Special Offers
42
Interested in a hands-on workshop?
What about a free app suitability assessment?
You bring your app, and our experts will tell you
the level of effort to deploy it onto Azure Spring
Apps Enterprise.
There are limited slots for both, so sign up early!
https://via.vmw.com/asa-e-signup
SIGNUP – Discover and Assess Spring apps (Private Preview)
– using Azure Migrate!
43
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
• App Discovery: Spot any active Spring
application, detailing Java and Spring Boot
versions, environment variables, JVM options,
binary locations, static content, binding ports,
and more.
• Cloud Readiness: Evaluate how ready your apps
are for the cloud.
• Cost Forecast: Get estimated expenses of cloud
deployment.
• Resourceful Docs: Access relevant migration
docs with ease. aka.ms/discover-spring-apps
44
We will be at SpringOne, and
VMware Explore!
©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.

Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023

  • 1.
  • 2.
    Spring – trustedand growing Spring is fantastic for developer productivity When asked, 67% of managers, 66% of architects, and 50% of developers strongly agreed that they care deeply about developer productivity, and Spring delivers; 95% of respondents agreed that Spring Boot has a huge positive impact on productivity; and 91% agreed that, compared to other Java development platforms, Spring has a bigger impact. 95% of respondents say Spring Boot has a huge positive impact on productivity. 91% say Spring has a bigger impact on developer productivity than other Java programs. Spring Boot downloads per month are growing YoY 61% of developers surveyed use Spring Boot as their only or primary development program. Source – The State of Spring 2021 95% ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. 2 52% 91% 61% 2021 2020 52% 2022
  • 3.
    Integrated into Azure’secosystem and services Fully managed infrastructure Built-in app lifecycle management Productivity Boost Jointly built, operated, and supported by Microsoft and VMware 3 Azure Spring Apps Enterprise A Fully Managed App Platform
  • 4.
    Note: Most featurescovered today are only in the Enterprise Tier
  • 5.
    Zero Management. MaximumProductivity. Focus on Code Not Toil K8s Without Learning K8s VMware Tanzu Productivity Boost For Developers
  • 6.
    The Tanzu ProductivityBoost 5x Productivity Boost for Junior Devs (with higher quality) 70% Time Saved for App Operators Accelerates Customer’s Timelines by Years What We’ve Seen
  • 7.
    Zero Management. MaximumEfficiency. Developer Self-Service Less Work More ROI Security Baked In For Operators
  • 8.
    Harness the powerof Kubernetes. Without having to learn or manage Kubernetes. 8 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 9.
    Azure Spring Apps SpringBoot Apps Service runtime 9 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 11.
    Azure Spring Apps Homefor enterprise Spring Boot applications 11
  • 12.
    Three simple operations az springcreate --name ${ASA_SERVICE_NAME} --sku enterprise --resource-group ${RESOURCE_GROUP} --location ${REGION} Create service 1 az spring app create --name ${APP_NAME} Create app 2 Deploy app az spring app deploy --name ${APP_NAME} --source-path ${PATH_TO_CODE} 3 12
  • 13.
    Azure Spring AppsEnterprise 13 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 14.
    Azure Spring Apps Enterprise UnlockSpring’s full potential with VMware Spring Runtime Support Ship faster with VMware Tanzu components 14 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 15.
    Ship faster with VMwareTanzu components 15 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • Buildpacks with app integrations • Management of app container creation • Out-of-the-box SSO with any identity provider • Out-of-the-box throttling and caching • Accelerators for hardening app config and best practices • Cloud-native streaming and batch data processing pipelines • …. • Build Service • Application Configuration Service • Service Registry • Spring Cloud Gateway • API portal • Application Accelerator • Application Live View • SLA: 99.95 • ….
  • 16.
    Deploy and manage Springand polyglot applications. 16 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 17.
    Effortlessly route client requests toapps. 17 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 18.
    Commercial Support forSpring Projects Here’s just one example: Spring Boot 2017 2018 2019 2020 2021 2022 2023 2024 2025 2026 3.0x 2.7x 2.6x 2.5x 2.4x 2.3x 2.2x 2.1x 2.0x 1.5x Today
  • 19.
    with VMware SpringRuntime Support Unlock Spring’s full potential AspectJ Micrometer Reactor Spring AMQP Spring Batch Spring Boot Spring Apps Commons Spring Apps Config Spring Apps Netflix Spring Apps Bus Spring Apps Cloud Foundry Spring Apps Open Service Broker Spring Apps Consul Spring Apps Security Spring Apps Sleuth Spring Apps Zookeeper Spring Apps Kubernetes Spring Apps CLI Spring Apps OpenFeign Spring Cloud Gateway Spring Apps Function Spring Apps Contract Spring Apps Task Spring Apps Stream Spring Apps Stream Binder for Apache Kafka® Spring Apps Stream Binder for RabbitMQ Spring Apps Stream Binder for Kafka Streams Spring Apps Vault Spring CredHub Spring Data for Apache Cassandra™ Spring Data Commons Spring Data KeyValue Spring Data LDAP Spring Data JDBC Spring Data JPA Spring Data MongoDB Spring Data GemFire Spring Data For Apache Geode™ Spring Data Redis Spring Data Rest Spring Data Solr Spring Framework Spring HATEOAS Spring Integration (Core Modules + Kafka) Spring For Apache Kafka® Spring LDAP Spring Kerberos Spring Rest Docs Spring Retry Spring Statemachine Spring Security Spring Security OAuth Spring Security SAML Spring Apps Data Flow Spring Session Spring Session for MongoDB Spring Session for GemFire/ Apache Geode™ Spring Tool Suite Spring Tools 4 Spring Vault Spring Apps Skipper Spring Apps Stream/ Task App Starters Get 24/7 support 19 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 20.
    Demo: Three simple operations az springcreate --name ${ASA_SERVICE_NAME} --sku enterprise --resource-group ${RESOURCE_GROUP} --location ${REGION} Create service 1 az spring app create --name ${APP_NAME} Create app 2 Deploy app az spring app deploy --name ${APP_NAME} --source-path ${PATH_TO_CODE} 3 20
  • 21.
    Typical application architecture 21 ©2022VMware, Inc. and Microsoft Corporation. All rights reserved. Runtime API Gateway Frontend User Interface Automation Monitoring Identity Provider Databases for Business State Secrets Management Backend APIs Runtime
  • 22.
    Azure Spring Apps AzureActive Directory PostgreSQL Spring Cloud Gateway Automation Monitoring Common application architecture 22 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Key Vault Backend APIs Identity Catalog Payment Order Cart Frontend: NodeJS
  • 23.
    Popular and easyto get started Dockerfile: Most common way of creating containers ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. 23 Confidential │ ©2020 VMware, Inc. • Dockerfiles are the most common way of creating Docker Images • Their flexibility is their power • Run any command, mutate any file • Their flexibility is their weakness • Keeping consistent, ensuring security • Takes a lot of effort for "good" Dockerfiles 5 Creating Docker Images DOCKERFILE TO CREATE JVM Descriptive file specification Good starting point Flexibility is their power
  • 24.
    When dev teamsbuild images differently, they introduce vulnerabilities and complexity Containers built using Dockerfile are hard to productionize and scale 24 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Broken build Unverified update Hard to track and patch CVE Out of compliance Image updates Security posture Full stack container audits IT governance
  • 25.
    Specification to translateapplication code to OCI-compliant container image Cloud Native Buildpacks 25 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.
  • 26.
    Buildpacks ecosystem 26 ©2022 VMware,Inc. and Microsoft Corporation. All rights reserved.
  • 27.
    Specification-only project thattransforms application code to images that can run on any cloud Cloud Native Buildpacks 27 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. dependency
  • 28.
    Let’s start witha route and understand how the gateway helps me with XCCs Understanding the Spring Cloud Gateway building blocks 28 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Link to Spring Cloud Gateway doc • Routes define how the Gateway will process incoming requests. • Each route is composed of Predicates, Filters, and a Service. • Predicates determine whether the route matches any given request. • Filters apply behavior to matching requests or their responses. • The Service determines where the request will be forwarded after filtering.
  • 29.
    The logic forexecuting the cross-cutting concerns How they all work − Spring Cloud Gateway 29 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. 1. Client makes a request to the Gateway. 2. Evaluates Predicates to match a request to a route. Spring Cloud Gateway 3. Runs through the “pre” filter logic chain specific to the request. Pre-request Post-request 4. Proxy routes the request to the service. Proxied Service 5. Service is executed. 6. Runs the “post” filter logic.
  • 30.
    Evaluate conditions tomap requests to a route Spring Cloud Gateway Predicates 30 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • HTTP Method matches a list? • URI Path matches a pattern? • URI Query matches a regex? • RemoteAddr matches CIDRs? • Weight within a route group Link to available Predicates • After a certain datetime? • Before a certain datetime? • Between two datetimes? • Cookie matches a regex? • Header value matches a regex? • Host matches a pattern list?
  • 31.
    Allow you todo things with requests/responses Spring Cloud Gateway Filters 31 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Link to available Filters • Add, remove, modify headers; map values; add security headers. • Rewrite path, extract segments, add / remove prefix. • Redirect users. • Retry and use Circuit Breaker. • Change response status. • List authorized roles and scopes to access route.
  • 32.
    Allows you tolimit number of requests Spring Cloud Gateway – Rate Limiting Filter 32 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • The Rate Limiting Filter limits the number of requests allowed from a route, with the ability to burst the limit to a max number. • Duration specified in seconds(s), minutes(m), or hours(h). • Within limits: response will succeed + report how many requests can still be made. • Exceeded limits: fail with 429 Too Many Requests. • Ex.: Limit users to 2 requests every 5 seconds. Link to Rate Limit Filter
  • 33.
    Provides several customfilters in addition to those included in the open-source project Spring Cloud Gateway – Commercial filters 33 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • Rate Limiting Filter • Circuit Breaker Filter • Single Sign-on Authorized Endpoint – Security Filter • Scope Authorization – Security Filter • Role-Based Access Control – Security Filter • Token Relay – Security Filter • Request / Response Modification Filter • Client Certificate Authorization Filter • … Link to Commercial Route Filters
  • 34.
    Configurable single sign-on(SSO) integration with your preferred identity provider (IDP) SSO integration with OIDC 34 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Authenticated? No Yes Azure Active Directory Backend APIs Order Cart Spring Cloud Gateway Identity Catalog Payment
  • 35.
    Passes authenticated user’sidentity token to the app when user accesses the app’s route Token relay 35 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Cookie Session Authentication: Bearer xznjs…. Authentication: Bearer xznjs…. Azure Active Directory Backend APIs Order Cart Spring Cloud Gateway Identity Catalog Payment
  • 36.
    Route filter Single sign-onauthorized endpoint – Security 36 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • The SSO-enabled filter will force the client to be authenticated before allowing access to a route. • If the client is not authenticated, they will receive a 302 HTTP response with redirect URL to API Gateway’s configured SSO login page. • Ex: The /api/adopt route has the SSO-enabled filter enabled, when accessed through an HTTP GIT request. Link to SSO Filters
  • 37.
    Azure Spring Apps Enterprise 37 ©2022VMware, Inc. and Microsoft Corporation. All rights reserved. Unlock Spring’s full potential with VMware Spring Runtime Support Ship faster with VMware Tanzu components
  • 38.
    Ship faster with VMwareTanzu components 38 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • Buildpacks with app integrations • Management of app container creation • Out-of-the-box SSO with any identity provider • Out-of-the-box throttling and caching • Accelerators for hardening app config and best practices • Cloud-native streaming and batch data processing pipelines • …. • Build Service • Application Configuration Service • Service Registry • Spring Cloud Gateway • API portal • Application Accelerator • Application Live View • SLA: 99.95 • ….
  • 39.
    Azure Spring Appsin a nutshell • Home for distributed workloads that leverage services on Azure, on-premises, and externals. • Eliminate middleware management efforts – say patching, running middleware, etc. • Unlimited scale without additional hardware procurement or datacenters. • Define roles and responsibilities to match your team structure – Azure RBAC (developer, DevOps, SRE, tester, security). • Monitor end-to-end – detect and react faster. • Automate end-to-end. • Implement charge backs in line with your funding model – through Azure cost management system. • Minimize costs. • High availability through unpredictable volumes and recover faster from failures. • Expand across the globe – 60+ Azure regions with speed and scale to meet your needs. • Strengthen your security posture with Azure. • Supported by Microsoft and VMware. • Build and scale distributed workloads at cloud scale. • Externalize config, enable service registry, secure, automate end-to-end, and monitoring. • Harness the power of K8S without learning or operating it. • Easy to spawn environments. • Automate testing. • Advance to production across the globe. Developers Easily build and deploy IT Operators Simple to operate at scale Executives Peace be with you! 39 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. Enterprise
  • 40.
    Accelerate Spring appsto cloud at scale today! Develop your first Spring Boot app aka.ms/Start-Spring Learn using a self-paced workshop aka.ms/Learn-Spring Watch Demos aka.ms/Spring-Playlist Leverage Best Practices aka.ms/Spring-Boot Build and Deploy Java apps on Azure aka.ms/LearnJava Interact With Azure Services Using Spring aka.ms/Spring-Cloud-Azure
  • 41.
  • 42.
    Special Offers 42 Interested ina hands-on workshop? What about a free app suitability assessment? You bring your app, and our experts will tell you the level of effort to deploy it onto Azure Spring Apps Enterprise. There are limited slots for both, so sign up early! https://via.vmw.com/asa-e-signup
  • 43.
    SIGNUP – Discoverand Assess Spring apps (Private Preview) – using Azure Migrate! 43 ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved. • App Discovery: Spot any active Spring application, detailing Java and Spring Boot versions, environment variables, JVM options, binary locations, static content, binding ports, and more. • Cloud Readiness: Evaluate how ready your apps are for the cloud. • Cost Forecast: Get estimated expenses of cloud deployment. • Resourceful Docs: Access relevant migration docs with ease. aka.ms/discover-spring-apps
  • 44.
    44 We will beat SpringOne, and VMware Explore! ©2022 VMware, Inc. and Microsoft Corporation. All rights reserved.