This year I went again to SpringOne Platform to check out the latest changes and what's to come. In this post I'll try to give an overview of everything that's just been released or coming in the future. Because there were A LOT of sessions, I wasn't able to gather or note down everything. All sessions except for the workshops were recorded and I'll update this post to get you directed straight to…

7 min read

CDCT, or Consumer-Driven Contract Testing Consumer-driven contract tests are actually integration tests that are targetting your API, whether it's REST-based or messaging-based. Imagine you're working on an application that exposes its data using a REST API. Another team is using your exposed data for some functionality that they are providing. In order to guarantee that the functionality of the…

5 min read

This post can be useful for everyone who wants to have insights on their application's internal architecture when integrating with other systems using Spring Integration. From the developer that just started in your team and who wants to have an overview, to the seasoned team member that needs to troubleshoot a problem in production. Currently we are working on the phased roll out of a…

3 min read

The problem Recently one of my colleagues came across a problem when he wanted to create an Angular application which needed to have different configuration values between environments. In 2016, Jurgen Van de Moere wrote a blogpost which explained how to create environment-agnostic applications with AngularJS. A year later, Rich Franzmeier explained in his blogpost a solution for Angular…

3 min read

When we want to instrument our application, we don't want to worry about which monitoring system we want to use, now or in the future. Nor do we want to change a lot of code throughout our microservice because we need to change from system X to system Y. Meet Micrometer! So what is Micrometer you ask? Basically, it comes down to this: Think SLF4J, but for metrics. A simple facade over the…

7 min read

What is a digital signature? A digital signature is a mathematical scheme for demonstrating the authenticity of a digital message or documents. A valid digital signature gives a recipient reason to believe that the message was created by a known sender, that the sender cannot deny having sent the message ( authentication and non-repudiation ), and that the message was not altered in transit…

11 min read

What kind of sorcery is this? HTTP Public Key Pinning, or short HPKP, is a security mechanism which allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates. This was standardized in RFC 7469 and creates a new opportunity for server validation. Instead of using static certificate pinning, where public key hashes are hardcoded within an…

4 min read

The problem A couple of days ago I was working on a project of one of our customers. One of their new applications needed to expose a public API, and of course we needed to hand over a set of documentation about those REST endpoints. Some people were already starting to do this manually in Confluence, but after a while (and we're talking about a timespan just under 2 hours) this became a tedious…

3 min read