As our last blog for the year, here’s a quick tip to improve the exception handling in your Spring-MVC applications! Cross-controller error handling using ControllerAdvice In a Spring-MVC web application it’s common to use a class annotated with @(Rest)ControllerAdvice to handle uncaught exceptions via @ExceptionHandler methods. This way it’s easy to produce different HTTP responses […]
How I got rid of privileged mode Docker-in-Docker in GitLab CI/CD jobs with Podman
Docker-in-Docker requires privileged mode to function, which is a significant security concern. Docker deamons have root privileges, which makes them a preferred target for attackers. In its earliest releases, Kubernetes offered compatibility with one container runtime: Docker. In the context of GitLab CI/CD jobs that build and publish Docker images to a container registry, docker commands in scripts might seem like an obvious choice.
Helm your way to Kubernetes with Spring Boot Admin
In this blog post I am experimenting with Helm, the package manager for Kubernetes by packaging codecentric’s Spring Boot Admin for out of the box real-time insights into a suite of Spring Boot Java services deployed to Amazon Elastic Kubernetes Service (EKS).
Getting out of a codependent relationship, or: how I moved to a healthy component-based Spring Security configuration
In a recent blog post, the Spring Security team announced that they’ll be deprecating the configuration setup where you subclass the WebSecurityConfigurerAdapter. Instead, you simply define beans that allow you to set up the SecurityFilterChain by calling methods on the HttpSecurity object, and configure the WebSecurity object using a configurer. These options have been available […]
Don’t let regulatory compliance hold you back!
Trifork works with several customers who are operating in businesses with strict regulations, like finance or online betting. Assuring that your software and processes are in compliance with these regulations is challenging, and can easily lead to a situation where compliance officers and thus organizations become risk-averse. Changes take weeks or even months to be […]
Customers Drive Modern Applications
As companies are moving more and more of their business online, it becomes ever so clear that this isn’t just a matter of offering an additional sales channel. Acquiring new customers, providing them with a service that lets them come back for more and adapting to their ever-changing demands requires a true digital transformation. As […]
The case of the lost id field
Chapter 1: a new case Morning arrived like a Windows Update you couldn’t postpone anymore, forcing you to accept a harsh new reality you didn’t ask for. As I biked by the Amstel river I wondered what the day would bring: I was visiting a client that was porting their old Spring-based monolith over to […]
OpenAI Codex – making programmers more productive
Last year OpenAI introduced GPT3 – a text-writing AI that is so powerful, that it is able to write articles, reviews and other text that ordinary people cannot tell is written by an AI. Impressive, but also a bit scary when we know how this could influence the content on social media. Now OpenAI has […]
“In My Previous Project…” and Other Cognitive Biases
This article is part of one of Wilco Koorn’s “42 Years of Programming” series of short stories. Wilco Koorn is a senior developer at Trifork retiring after a long career in the software industry. During this series, he discusses 42 lessons and revelations he’s had throughout his career as a programmer. This series alludes to […]
Get the Inside Scoop on Trifork’s Podcasts!
We’re thrilled to announce our new series of blog posts based on our live Ask Me Anything (AMA) sessions! At Trifork, we often host renowned software experts as part of our collaborative initiative with GOTO Conferences. During these sessions, GOTO experts are invited to answer questions on topics related to programming and software. These subjects […]