Category: Java

  • JavaOne 2012 roundup

    My first JavaOne ever is over. Had a great time there. San Francisco is a great city, and the weather was perfect, a least the first couple of days. I did enjoy all keynotes, especially of course the Java Community Keynote with James Goslings‘ surprise visit and presentation. Most sessions I‘ve attended were really great.…

  • Still some seats available in my JavaOne session on Apache Camel Security

    Hurry up, JavaOne starts in one week! And there still some spots available in my session on Apache Camel Security. Save the date, October 3rd 2012 (Wednesday) at 10 a.m. at Parc 55 – Embarcadero. My session will introduce you to Apache Camel Security and show how to secure your Camel routes and messages using…

  • Total failure of Java security

    Wow, that’s a sentence I believed I would never write in my professional life: deactivate Java in your web browser immediately! In any browser and on any operating system. Instructions are e.g. available here and normally on your browser manufacturer home page. Turning it off does not have an impact on normal Java applications, those…

  • Nasty NullPointerException in org.springframework.beans.factory.BeanDefinitionStoreException

    I had a lot of trouble with Camel 2.9.2/Spring 3.0.7 projects lately (though the issue is related to Spring, not Camel). During development, a lot of server starts (I used VMware vFabric tc Server Developer Edition v2.7, but others seem to be affected as well) failed with a really nasty exception: org.springframework.beans.factory.BeanDefinitionStoreException: Unexpected exception parsing…

  • Integrating Jenkins build results into JIRA issues

    After linking Subversion (or Git) with JIRA, the build server looks like a worthwhile target too. Aim of the JIRA integration for Jenkins is to link JIRA issues with the resulting build artifact and to answer the question “Which build contains the bug fix for issue 1234?”. The Jenkins JIRA plugin therefore updates the JIRA…

  • Camel Security @ JavaOne – What is it all about?

    As JavaOne 2012 is coming closer, it's time for some more information on my session CON3418 – Confident Data Transfers with Apache Camel Security. As you might have already guessed, it's all about Apache Camel security. So, what exactly is so special about Camel security? Well, it is of course possible to secure any Camel…

  • Get ready for the Java Forum Stuttgart 2012

    July 5th 2012 is coming closer, and with that the Java Forum Stuttgart as well as my (German) session Sichere Software vom Java-Entwickler. This session will give you some ideas and recommendations for all of the problems and risks mentioned in the current OWASP Top 10. Since 10 is quite a number for 45 minutes,…

  • Confident Data Transfers with Apache Camel Security at JavaOne 2012

    Fantastic news today (with a little delay due to various reasons): My session on Confident Data Transfers with Apache Camel Security at JavaOne 2012 was accepted! So hurry up, sign up for it! It‘ll be all about securing Camel routes with XML-Security or normal cryptography and how to use Apache Shiro or Spring Security components…

  • Security is every developer’s job

    In one of his latest blog posts published in the OWASP feed, Dinis Cruz points out, that secure development and application security itself must be invisible to developers. I can’t completely agree to that. On one side, Dinis is right: The frameworks we use must be way more secure out of the box and way…

  • Using interceptors with version 2.1 Enterprise Beans

    I recently hit the requirement to use Interceptors with some EJB 2.1 beans. Those beans should be migrated to 3.1, and tracing should make their complex flow easier to understand. As this blog post points out, it is possible to use interceptors with old EJB versions. Simply update the deployment descriptor to 3.0 or 3.1…