Group items tagged

From Spring to Java EE 6

free and more feature rich alternative to BlazeDS, but also outranks LCDS’ out-of-the-box features when it comes to data management, streaming media and integrating with mobile devices and Cloud computing

developer tools like code generation, invocation test drive and interoperability with multiple IDEs and frameworks

supporting integration with mobile clients (Android, Windows Phone 7, RIM Playbook and soon iOS) and the Java service layer, which includes support for Java POJOs, EJBs, Spring Beans, Grails controllers, Hibernate Objects and XML Web Services

list of reasons why I feel more productive on Java EE 6 than on Spring 3.1

these days there's really no reason for preferring vendor-specific APIs over JPA 2.0

Spring and Java EE applications mostly differ in the following areas only: the web framework (Spring MVC vs. JSF vs. Wicket vs. Vaadin vs. Struts vs.....) Spring Beans vs. EJB Spring Dependency Injection vs. CDI or Java EE 5 @EJB or @Resource injection

Spring MVC feels rather old-school

EJB MDG Technology for Enterprise Java Beans allows the user to model EJB entities and EJB sessions, complete with UML profiles for modeling EJB, EJB patterns and Code Management. (requires Enterprise Architect 4.1 or later)

ICONIX AGILE DDT ICONIX Agile Developer - Design-Driven Testing (DDT) streamlines the ICONIX modeling process, providing: Convenient modeling of robustness diagrams Automatic generation of sequence diagram structures from robustness diagrams Transformation of robustness control elements to test diagrams Transformation of sequence diagram elements to test diagrams Transformation of requirement diagrams to test diagrams Transformation between test cases and test classes. (JUnit & NUnit) Built-in model validation rules for ICONIX robustness diagrams (requires Enterprise Architect 7.5 or later)

Testing MDG Technology for Testing helps users to rapidly model a wide range of testing procedures including component testing, SUT, Test Cases and more. (requires Enterprise Architect 4.1 or later)

Instructions for loading an MDG Technology EXE file: Download and run the .exe file to install the MDG technology. Open Enterprise Architect. Select from the Main Menu Add-Ins | XYZ Technology | Load.

Built-in MDG Technologies: Most of the MDG Technologies provided by Sparx Systems are built into Enterprise Architect directly. Depending on your edition of Enterprise Architect, some or all of the following MDG Technologies will be available:

Gang of Four Patterns

Mind Mapping

Web Modeling

Data Flow (DFD)

Entity-Relationship (ERD)

Business Rule Model

BPMN™

Principle of least privilege

object-capability model, any software entity can potentially act as both a subject and object

Access control models used by current systems tend to fall into one of two classes:

Both capability-based and ACL-based models have mechanisms to allow access rights to be granted to all members of a group of subjects (often the group is itself modeled as a subject)

identification and authentication determine who can log on to a system, and the association of users with the software subjects that they are able to control as a result of logging in; authorization determines what a subject can do; accountability identifies what a subject (or all subjects associated with a user) did.

Authorization determines what a subject can do on the system

Authorization

Access control models

categorized as either discretionary or non-discretionary

three most widely recognized models are

Attribute-based access control

Discretionary access control

Discretionary access control (DAC) is a policy determined by the owner of an object. The owner decides who is allowed to access the object and what privileges they have.

Every object in the system has an owner

access policy for an object is determined by its owner

DAC systems, each object's initial owner is the subject that caused it to be created

Mandatory access control

Mandatory access control refers to allowing access to a resource

that allow a given user to access the resource

Management is often simplified (over what can be required) if the information can be protected using

or by implementing sensitivity labels.

Sensitivity labels

A subject's sensitivity label specifies its

level of trust required for access

subject must have a sensitivity level equal to or higher than the requested object

Role-based access control

Role-based access control (RBAC) is an

access policy

Access control

Entity Beans in combination with an EntityManager

use CDI to inject the EntityManager into my JpaRealm

JpaRealm is not container managed but is instantiated by Shiro

delegate your JpaRealm into @Stateless EJB, which can @Inject EntityManager

JpaRealm

@PersistenceContext   private EntityManager entityManager;

EnvironmentLoaderListener

found the cause

Instead of configuring the ShiroFilter in my web.xml I had the IniShiroFilter configured. The IniShiroFilter creates a new SecurityManager from the ini file. This new SecurityManager didn't know about the realm I've added in my EnvironmentLoader, so it didn't have any realms.

I replaced it with the ShiroFilter in my web.xml and all seems to be working now with my CdiEnvironmentLoaderListener.

Type-safe Scheduled Method Execution

Built-in Qualifiers for Common Scheduling Needs

Asynchronous Method Execution with CDI Event-driven Callbacks

JSON-P

we believe that providing solid support for standardized PaaS-based programming and multi-tenancy would delay the release of Java EE 7 until the spring of 2014

way too long

defer the remaining aspects of our agenda for PaaS enablement and multi-tenancy support to

already laid some of the infrastructure for cloud support in Java EE 7

resource definition metadata

improved security configuration

JPA schema generation

Java EE 8 Platform release for the

support for HTML 5 in the form of Web Sockets

JSON-P

simplified JMS 2.0 APIs

improved Managed Bean alignment, including

JAX-RS 2.0 client API

method-level validation

more comprehensive expression language

other CDI Extensions projects.

container agnostic

different containers get activated via

CDI container integration via

Building Apache DeltaSpike

DeltaSpike-0.3

Release Notes

[DELTASPIKE-62] - Discuss security module

[DELTASPIKE-74] - unit and integration tests for @Secured

 [DELTASPIKE-75] - documentation for @Secured

[DELTASPIKE-78] - review and discuss Authentication API

 [DELTASPIKE-77] - review and discuss Identity API

[DELTASPIKE-79] - review and discuss Authorization API

[DELTASPIKE-81] - review and discuss Identity Management

[DELTASPIKE-82] - review and discuss external authentication

[DELTASPIKE-176] - unit and integration tests for @Transactional

[DELTASPIKE-177] - documentation for @Transactional

 [DELTASPIKE-179] - unit and integration tests for @TransactionScoped

[DELTASPIKE-175] - @Transactional for EntityTransaction

 [DELTASPIKE-178] - @TransactionScoped

 [DELTASPIKE-190] - Create ConfigurableDataSource

[DELTASPIKE-219] - @Transactional for JTA UserTransaction

[DELTASPIKE-230] - Fallback stragtegy for resource bundles and locales

  [DELTASPIKE-223] - Add convention for @MessageResource annotated types.

Class as parameter

serverside

Remote call using class as parameter

Does GraniteDS could manage date and TimeZone ?

Flash Player (GMT +X) -> IExternizable methods (GMT + X - X = GMT + 0) - > AMF over HTTP (GMT + 0) -> Granite AMF0Deserializer (GMT + 0) -> Granite Converter (GMT + 0 + Y = GMT + Y) -> Java Services (GMT + Y)Java Services (GMT + Y) -> Granite Converter (GMT + Y - Y = GMT + 0) -> Granite AMF0Deserializer (GMT + 0) -> AMF over HTTP (GMT + 0) -> IExternizable methods (GMT + 0 + X = GMT + X) -> Flash Player (GMT + X)

We use

for AMF for convention

define a

for your AMF that is over HTTP

: timezone for your flex client

: timezone for your server

don't want to modify the default templates