<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>spring on Brave New Geek</title><link>https://bravenewgeek.com/tag/spring-2/</link><description>Recent content in spring on Brave New Geek</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Tue, 29 Jan 2019 15:01:21 -0600</lastBuildDate><atom:link href="https://bravenewgeek.com/tag/spring-2/index.xml" rel="self" type="application/rss+xml"/><item><title>API Authentication with GCP Identity-Aware Proxy</title><link>https://bravenewgeek.com/api-authentication-with-gcp-identity-aware-proxy/</link><pubDate>Fri, 25 Jan 2019 11:21:53 -0600</pubDate><guid>https://bravenewgeek.com/api-authentication-with-gcp-identity-aware-proxy/</guid><description>&lt;p&gt;&lt;a href="https://cloud.google.com/iap/"&gt;Cloud Identity-Aware Proxy (Cloud IAP)&lt;/a&gt; is a free service which can be used to implement authentication and authorization for applications running in Google Cloud Platform (GCP). This includes &lt;a href="https://cloud.google.com/appengine/"&gt;Google App Engine&lt;/a&gt; applications as well as workloads running on &lt;a href="https://cloud.google.com/compute/"&gt;Compute Engine (GCE)&lt;/a&gt; VMs and &lt;a href="https://cloud.google.com/kubernetes-engine/"&gt;Google Kubernetes Engine (GKE)&lt;/a&gt; by way of &lt;a href="https://blog.realkinetic.com/http-to-https-using-google-cloud-load-balancer-dda57ac97c"&gt;Google Cloud Load Balancers&lt;/a&gt;.&lt;/p&gt;
&lt;p&gt;When enabled, IAP requires users accessing a web application to login using their Google account and ensure they have the appropriate role to access the resource. This can be used to provide secure access to web applications without the need for a VPN. This is part of what Google now calls &lt;a href="https://cloud.google.com/beyondcorp/"&gt;BeyondCorp&lt;/a&gt;, which is an enterprise security model designed to enable employees to work from untrusted networks without a VPN. At Real Kinetic, we frequently bump into companies practicing &lt;a href="https://www.onelogin.com/blog/the-death-star-a-lesson-in-cybersecurity"&gt;Death-Star security&lt;/a&gt;, which is basically relying on a hard outer shell to protect a soft, gooey interior. It’s simple and easy to administer, but it’s also vulnerable. That’s why we always approach security from a perspective of &lt;a href="https://en.wikipedia.org/wiki/Defense_in_depth_(computing)"&gt;&lt;em&gt;defense in depth&lt;/em&gt;&lt;/a&gt;.&lt;/p&gt;</description></item><item><title>Implementing Spring-like Classpath Scanning in Android</title><link>https://bravenewgeek.com/implementing-spring-like-classpath-scanning-in-android/</link><pubDate>Sat, 05 Jan 2013 02:53:36 -0600</pubDate><guid>https://bravenewgeek.com/implementing-spring-like-classpath-scanning-in-android/</guid><description>&lt;p&gt;One of the things that Spring 2.5 introduced back in 2007 was component scanning, a feature which removed the need for XML bean configuration and instead allowed developers to declare their beans using Java annotations. Rather than this:&lt;/p&gt;
&lt;script src="https://gist.github.com/tylertreat/7688bafe73aa1eaeaa24.js"&gt;&lt;/script&gt;
&lt;p&gt;We can do this:&lt;/p&gt;
&lt;script src="https://gist.github.com/tylertreat/937b3e36d6ecdcbc7c3b.js"&gt;&lt;/script&gt;
&lt;p&gt;It’s a pretty simple idea since Java makes it very easy to introspectively check a class’s annotations at runtime through its reflection API. Spring’s component scan feature also allows you to specify the base package(s) to scan for beans.&lt;/p&gt;</description></item><item><title>A Look at Spring’s BeanFactoryPostProcessor</title><link>https://bravenewgeek.com/a-look-at-springs-beanfactorypostprocessor/</link><pubDate>Tue, 04 Dec 2012 22:42:54 -0600</pubDate><guid>https://bravenewgeek.com/a-look-at-springs-beanfactorypostprocessor/</guid><description>&lt;p&gt;One of the issues my team faced during my time at Thomson Reuters was keeping developer build times down. Many of the groups within WestlawNext had a fairly comprehensive check-in policy in that, after your code was reviewed, you had to run a full build which included running all unit tests and endpoint tests before you could commit your changes. This is a good practice, no doubt, but the group I was with had somewhere in the ballpark of 6000 unit tests. Moreover, since we were also testing our REST endpoints, it was necessary to launch an embedded Tomcat instance and deploy the application to it before those tests could execute.&lt;/p&gt;</description></item></channel></rss>