Sunday, 1 May 2022

Quick, Easy and Comprehensive API Validation with Open API & Atlassian

Validation is a fundamental part of API developement which can often be complex and difficult to implement consistently and comprehensively ...
Tuesday, 10 December 2019

Use SpEL to Conditionally Suppress JSON Fields During Serialisation

If you use the Jackson Framework to serialise objects to Json, exposed through a Spring REST API,  then you might often come across a requir...
Thursday, 1 August 2019

Spring Boot Caching

In a microservices environment caching is an important none functional requirement which can help reduce load overhead, latency and improve ...
Tuesday, 1 January 2019

Spring Cloud AWS - Parameter Store

Externalising configuration is key to managing and automating the deployment of an application into different environments. Since Spring Boo...
6 comments:
Monday, 10 December 2018

Understanding PKCE as a Solution for Interception Attack

The OAuth2 Code Grant flow allows a secure Client be granted access to a protected resource on behalf of the owner. The Client, usually a se...
Monday, 19 November 2018

Implementing OAuth2 & JWT in a Micro Services Architecture with Spring Boot 2

The theme of loosely coupled independent software components underpins the rationale of the modern micro services architecture. Of course, t...
Wednesday, 24 October 2018

White Listing S3 Bucket Access for AWS Resources

Limiting access to data with a white list is a security requirement of any serious data governance policy. In the Cloud the obvious stora...