If you want secure code, or code with fewer bugs, you want to track the kind of data you’re passing around. In your code, do not pass around strings or any other built-in built-in primitive type. Those are for the edges: we have to accept strings as input, we have to write VARCHAR to the …
Read moreSpring and JPA: use custom value types inside entities with a custom converter
When I’m developing on a Spring Boot app, I want to see when a request comes in, how it was authenticated, and where it was handled. By default, log levels are set to INFO. Nothing prints per-request. I don’t know a good way to get the information I need, so I turn them way up: …
^ that’s what I googled, so that’s the title of the blog post that solves it. When I added spring-boot-starter-security to my dependencies, I expected my whole app to suddenly be behind a login screen. But I expected it to work after logging in. Instead, it failed at the first form submission. And it failed …
Read moreI turned on Spring Security and my POSTs don’t work anymore
In Spring Boot example apps, H2 is the easiest database to get started with. Its data is in memory or in a local file. When the app is running in development mode, you can access the database at /h2-console. It gives you a lovely little SQL admin app. That is, after you turn it on …
At work, we use dependency injection to build up small, decoupled classes each with a single responsibility. DI lets us assemble these in multiple different ways, so we can use the same class for similar processes. This strategy of combining small pieces of functionality in different ways is also a goal of functional programming. Let’s …
Remember the early days of XML, when people were all excited about using it to wire up applications? “You can change which implementation is used without changing any code!” Sure, right, XML isn’t code. It gets packaged in your jar files, with the code. It controls how your application works, like the code. It breaks …