Spring Boot Actuator is a useful feature that provides developers with a set of tools to monitor and manage their applications. However, some of the actuator endpoints are sensitive and can potentially expose sensitive information about your application. In this article, we’ll explore different ways to secure these endpoints to ensure your application is protected.…
Read More Securing Spring Boot Actuator Endpoints: Best PracticesIn this tutorial, I will explain in detail how to secure sensitive Spring Boot Actuator Endpoints using Spring Boot version 3. This tutorial is intended for beginners who want to learn how to monitor and manage their Spring Boot applications using Actuator. Spring Boot Actuator is a sub-module of Spring Boot that provides production-ready features…
Read More How to Secure Spring Boot Actuator Endpoints with Basic AuthenticationIn a microservices architecture, it is common to have multiple services communicating with each other over the network. This distributed nature of the architecture can make it challenging to diagnose and debug issues when they arise. To address this problem, developers often use monitoring(Micrometer) and tracing tools(Zipkin) to track the flow of requests between microservices.…
Read More Micrometer and Zipkin: How to Trace HTTP Requests in Spring Boot 3The RestTemplate class within the Spring Framework is a simple HTTP client that enables your code to send HTTP requests and handle HTTP responses. This tutorial will demonstrate how to use RestTemplate to send various types of HTTP requests. Create Spring Boot App RestTemplate is a component of the Spring Framework and is typically utilized…
Read More Spring RestTemplate TutorialIn this tutorial, you will learn how to enable OpenAPI(Swagger) in your Spring Boot version 3 application. What is OpenAPI? OpenAPI (formerly known as Swagger) is a specification for building and documenting RESTful APIs. It allows developers to describe their API operations, inputs, outputs, and other aspects in a structured and machine-readable format. This documentation…
Read More Enable OpenAPI 3(Swagger) in Spring Boot 3In this tutorial, you’ll learn how to use the @PutMapping annotation in your RESTful web services app to handle HTTP PUT requests with a JSON or XML payload. This allows you to update user details, for example. Here’s an example CURL command to send an HTTP PUT request with JSON data containing user details: HTTP…
Read More @PutMapping in Spring Boot RESTThis tutorial covers three distinct methods for reading application properties in a Spring Boot application. These methods include: Using the Environment object. Using the @ConfigurationProperties annotation. Using the @Value annotation. I made a simple Spring Boot Web App to show you how to read application properties. You can use the tutorial Create a Simple Web…
Read More Spring Boot: Reading Application PropertiesMethod security testing is the process of testing the security of each method to make sure that only authorized users can access them. By testing the method-level security, we can ensure that our application is secure and that users can only perform the actions that they are authorized to do. Let’s say we built an…
Read More Testing Method Security in Spring BootIn this blog post, I will share how to run a Spring Boot app from the command line in a Terminal window. There are a couple of ways to do this, and both assume that you have already created your Spring Boot app. If you need help creating a new Spring Boot app, please check…
Read More How to Run Spring Boot App via Command LineThis Spring Data JPA tutorial will demonstrate how to use the LIKE % expression in a Native SQL Query. In an advanced SQL LIKE expression, the % sign represents zero, one, or multiple characters within the SQL query. Let’s take a look at a Native JPA SQL Query that employs an advanced SQL LIKE expression…
Read More LIKE % Expression in JPA SQL QueriesThis blog post will guide you on reading the body of an HTTP request in the filter class of your Spring Boot application. For more code examples, you can refer to the Spring Boot tutorials page. What is a Spring Filter? A Spring Filter is an object that intercepts incoming HTTP requests and outgoing HTTP…
Read More Reading Request Body in Spring FilterThis tutorial will teach you how to use the @Query annotation to execute custom SQL queries. Spring Data JPA provides many query methods that are ready to use, allowing us to perform basic CRUD(Create, Read, Update and Delete) operations. However, there may be situations where we need to execute a custom SQL query even though…
Read More Spring Data JPA Native SQL QueryIn this blog post, I will share the Spring annotations used to map HTTP requests to specific handler methods. These annotations include @PostMapping, @GetMapping, @PutMapping, and @DeleteMapping. While most Spring Boot applications use the @RequestMapping annotation, which I will also cover in this post, I’ll begin with the newer shortcut annotations that have been available…
Read More Spring Annotations @PostMapping, @GetMapping, @PutMapping and @DeleteMappingIn this Spring Security tutorial, you will learn how to enable and use the Method Level Security with a @Secured annotation. @Secured is a Spring Security annotation used to specify that a method should be executed only if the authenticated user has the required roles or authorities. When you use this annotation, you can specify…
Read More Spring Security @Secured: Method-Level ProtectionIn this tutorial, you will learn how to use the @PostAuthorize annotation to secure the return of the method’s return value in your Spring Boot Application. The @PostAuthorize annotation is evaluated after the business logic in a method is executed and if needed will prevent the method from returning a return value. There are other…
Read More @PostAuthorize Security Annotation Example