Vulnerability Scan as part of Continuous Integration
Have you ever imagined how many vulnerabilities exist in your applications since it was created? And how many of them come from its dependencies?
Have you ever imagined how many vulnerabilities exist in your applications since it was created? And how many of them come from its dependencies?
It exists many “Docker for Java developers” guides, but most of them does not take care of small and efficient Docker images. I have combined many resources how to make a simple and fast Docker image containing any of Spring Boot like application. My goals: Create a single and portable Dockerfile (as general […]
This post is about an example of securing REST API with a client certificate (a.k.a. X.509 certificate authentication). In other words, a client verifies a server according to its certificate and the server identifies that client according to a client certificate (so-called the mutual authentication). In connection with Spring Security, we will be […]
This post is about using Spring Shell to make a simple application for scanning open TCP ports. Technologies used: Spring Boot 2.0.5.RELEASE Spring Shell 2.0.1.RELEASE Quick Overview: Final Project Structure Creating a new base Spring Boot project Needs for parallelism How check whether a port is open? Integrating with Spring […]
This post is about creating PKCS #12 to serve e.g. your content via HTTPS in your application itself or in another web container (such a Tomcat or another application server). The PKCS #12 format is a binary format for storing cryptography objects. It usually contains the server certificate, any intermediate certificates (i.e. […]
This post is about installing an Ubuntu desktop on your Synology NAS. You are able to install any other Linux distribution using this recipe, it does not matter whether desktop or server type of any distro. To install any virtual machine to your Synology, you need to install Virtual Machine Manager to […]
In this example, we will secure a home page (/home) with Spring Security using Radius authentication. Technologies used: Spring Boot 2.0.4.RELEASE TinyRadius 1.0.1 Embedded Tomcat 8.5.23 Quick Overview: Create a new base Spring Boot project with required dependencies Create a simple login using Spring Security Create your own RadiusAuthenticationProvider Simple […]
This example will demonstrate how to use Spring Integration for downloading files from a remote SFTP server. Two possible authentications could be used, i.e. public key or password. Technologies used: Spring Boot 2.0.4.RELEASE Spring Integration 5.0.7.RELEASE (managed by Spring Boot) Spring 5.0.8.RELEASE (managed by Spring Boot) Quick overview: Create SFTP […]
This example will demonstrate how to use Spring Integration for uploading files to a remote SFTP server. You can use both of possible authentication methods, i.e. with a public key or with a password. The real example shows the public key authentication only because it is a more production-ready choice. […]
This post shows how to implement parallelism in Java using its native java.util.concurrent classes. I mean especially using parallel Fork-Join Framework (available since Java 1.7), which is most suitable for processing of high complex (CPU intensive) tasks. I mean that case when you have one very complex task and you […]