PinnedI won’t use Wiremock with Spring Boot anymore for smaller simpler services.Spring and Spring boot is my day to day tech as part of my present organisation, along with it unit/ integration testing is something which we all do for maintaining the code quality and code coverage. Recently I was just writing few unit tests in my code, used @SpringBootTest for…Spring Boot3 min readSpring Boot3 min read
PinnedZitadel & Spring Boot Oauth2 Client & Resource serversZitadel is a new age sibling of Keycloak, available both as self managed & zitadel managed options. It is straightforward enough to setup and manage. I very recently started using it, along with it I just did integration with the Spring Boot 3 Oauth2 client/ resource server configuration. The present…Spring Boot 36 min readSpring Boot 36 min read
PinnedSmallStep and Traefik Integration ArchitectureSmallstep is an awesome tool for sure and this blog post is about noting down my understanding about it plus sharing the same back with the community Smallstep — one liner definition It is an automated certificate management for devops. It helps issue and renew certificates for your setup of tools, workloads and uses world…Acme2 min readAcme2 min read
PinnedAWS CloudFormation Custom ResourceAWS & cloud are the two words you will hear together in the area of cloud. And one awesome thing which I interacted recently with was AWS custom resources for the AWS CloudFormation. This story/ article is going to focus mainly on custom resource for the AWS CloudFormation & AWS…AWS3 min readAWS3 min read
PinnedSystem Design — 2 way JWT, not 2 way TLS, JWS — JWEOverview The problem — MASSL/ 2 way TLS is complex most of the times and certificate/ PKI management is also complex. Creating certificates for clients and servers, then renewing it is quite complex and process oriented. Further, configuring the clients with truststores & keystores is again an added complexity. Complexity with…Jwt4 min readJwt4 min read
Aug 19Spring Boot 3 OAuth2 Client for non reactive projectSpring Boot 2.x.x sometime back had introduced a WebClient based OAuth2 Client & when we say WebClient that is Reactive & that does not works with a servlets based project out of the box in a go. You will get some errors for sure. Reason for the error is the…Spring Boot2 min readSpring Boot2 min read
Jun 23JWT — JWS or JWE? JWK? JWKS?I have been always impressed by JWTs, the concept overall, the usage, the technicalities around it. In fact it is the thing that forced me to learn details about the key pair(private + public keys), cryptography, etc. In this blog post I would love to share the brief(less is good)…Jwt5 min readJwt5 min read
May 8MTLS with Traefik & SmallstepIn enterprise world, Mutual TLS, Mutual Authenticated SSL, 2 way TLS, 2 Way SSL all point out to the great concept of mandating requestor to present it’s certificate and key while calling the apis, system, app, etc. …Mtls Authentication6 min readMtls Authentication6 min read
Mar 29Spring Webflux — wrap responseSpring webflux — the reactive universe of the Spring framework is very interesting place. This post is dedicated to wrapping around the response to a common response that solves the purpose of having common fields which are always required for all API endpoints. The code repository is here — https://github.com/krnbr/spring-webflux-wrap-response …Spring Boot 32 min readSpring Boot 32 min read
Mar 3Spring Boot 3 Oauth2 Declarative Http ExchangeSpring Boot 3 is just recently launched and one of the attractions with it is the @HttpExhange based declarative HTTP clients. There are ample amount of articles online which share the details of using the @HttpExhange and it is actually a good way of reducing the extra piece of code…Spring Boot 32 min readSpring Boot 32 min read