Thursday, December 23, 2021

I'm anything but tired when I work with Quarkus

Things have been hectic in Quarkus in 2021 for everyone involved - and therefore it is important, when contributing to such an active project, to listen to good music. 

Luckily I have rediscovered the music and songs of Bruce Springsteen and his band. Of course I've heard it before, I bought a CD with his best songs about 10-15 years ago, but somehow listening to it did not inspire me back then, not sure if it happened to you at some point as well.

But something has changed this year. I have bought a new set of CDs and started listening to Bruce Springsteen again, sometimes when I was coding but more often when driving after work when I can make the music very loud 😀.

It is amazing how much power, energy and positive messaging is emanating from so many of Bruce Springsteen's songs.

I honestly don't understand how I managed before without listening to them. I feel energized after it - and I start looking to the next day of exciting coding even if it was busy today in Quarkus. I'm anything but tired when I work with Quarkus 😀.

And I hope all of you who have discovered and started embracing Quarkus have felt the same this year.

Happy Christmas and New Year to All. Enjoy !



Thursday, March 21, 2019

Quarkus is all about Developer Joy

No doubt that you, being an open source developer, have already browsed through the QuarkusIO GitHub projects, been impressed by the cool Quarkus web site, and seen a lot of very positive feedback about this truly innovative project which will disrupt the current application runtime ecosystem.

So, I'm not going to go into the details into why Quarkus is such a brilliant project from the technical point of view. I'd only touch on why the Developer Joy is what Quarkus is all about IMHO.

I'm not a member of the Quarkus core team, but I was privileged to witness the launch of the project and observe the team doing the final preparations for the few days. It was obvious that what was really driving this talented team was the desire to make the features and the documentation as simple and accessible as possible from the very start.

Back in the Apache CXF days, I tried very hard with my dear Apache CXF colleagues, to make things as simple as possible for the users. Those of you who followed our progress will hopefully agree.

So, please believe me, and hope you don't mind me saying it, I do see when making the developers happy is what really drives a team. I trust you will confirm it yourself after working with Quarkus.

Get engaged with the project which will fly, become the part of its community now.

Finally, what about a link to some nice music ? Back in May 2018, I blogged about Thorntail v4. As you know by now, Thorntail v4 has not materialized. But, consider Thorntail v4 be an early version of Quarkus, given the core Thorntail v4 contributors helped to shape Quarkus. So that blog post of mine was not a complete flop :-). Besides I had a link there to the most beautiful piece of music, albeit that was a mix one.

So here is a real one. Because it is real now, here comes another new day, here comes Quarkus !

Enjoy !

Wednesday, October 3, 2018

[OT] Your Software Project is the Best Thing About You

The open source software project you've been contributing to 'encapsulates' your thoughts, ideas, energy, drive to help. It is quite obvious if you start thinking about it.

The API you have contributed to does not have to be perfect, what makes a difference is that you will 'connect' with the developers and users all around the world who have downloaded the released library. The fewer bugs the project has the better you are represented :-).

It is quite possible then that your software project is one of the best things about you :-).
   

Monday, August 13, 2018

Thorntail Goes Total JOSE

JOSE is a set of modern security specifications developed by the best security experts in the industry. It has not always had the best press, with some weaknesses being identified. But it is still evolving, the JOSE libraries become more robust and it is always worth remembering that no ideal security specification exists, a given security mechanism always needs to be applied very carefully, with the support from the experts.

You may or may not be surprised but JOSE is nearly everywhere now. Many of  the current leading SSO providers use OIDC. They use ID and access tokens which are JOSE instances, JWT tokens, typically signed or even encrypted using the JOSE JWS and/or JOSE JWE mechanisms.

Thorntail has been OIDC/JOSE aware for a while. For a start it offers a comprehensive Keycloak integration which not only lets users easily secure their HTTP endpoints with the Keycloak adapters but also offers a pretty unique Keycloak Server integration which will be the topic of one of the next posts.

Next, Thorntail provided an integration with Microprofile JWT, the effort led by Red Hat. It offers an easy access to the individual claims inside a validated JWT token - often it is not enough for the endpoint to validate the token, it may need to make some application specific decisions based on the token content.

Finally, to complete the picture, Thorntail master now offers a support for the generic JOSE, for the users be able to experiment with protecting their data using all that JOSE offers today: signing and/or encrypting the arbitrary data, complete payloads or only their specific parts, using the Java JKS or JOSE JWK key stores.

The application code will be able to inject Jose and configure its properties in YAML files like this one. Currently both Apache CXF JOSE and Jose4J are being tested as Jose implementations. The CXF implementation is currently offered by default - it has proven itself in the production and it also supports JWS and JWE JSON formats , but please do not be concerned if you prefer a quality Jose4J library - we hope the users will show the interest in this feature over time and then we can easily offer a Jose4J option out of the box as well. 

Have a look at the demo please. It shows how JOSE can be used to sign the data in the detached mode. It is actually a very cool feature which is not well known due to JOSE being primarily used in the OIDC/OAuth2 space for now, as opposed to in the regular HTTP service communications. It allows to create a custom envelope where the data to be protected go alongside the signature. Yes, no need to come up with yet another specification to standardize on the envelope format, just choose whatever bean format you prefer, choose the data to be signed, and where the signature in this bean has to be collocated, it is so good.

So, here you go. Are you interested in the modern security ? If yes - see what Thorntail can do.

Enjoy!

Thursday, May 10, 2018

Thorntail Bird Brings New Day in Container Development

WildFly Swarm team started thinking about renaming the project awhile back, with the first message to the community coming in February.

Ken and Bob have put a lot of effort into finalizing the process, with the announcements starting coming this week, the week of Red Hat Summit.

The most exciting part is the fact that a new Thorntail Project GitHub organization has been created with the main concepts of this new 4.x line being captured here.

It is going to be a very cool project. For a start, many tests run in Docker Machine. The new project already ships and will add the best and proven components, ready to run in the micro services and Cloud centric environments. It is expected to be light-weight and easy to work with. I hope you are already forking the repository while you are reading this post :-).

Here Comes Another New Day. New Day in the application container development. Start enjoying it now !

Tuesday, February 13, 2018

Adieu Talend, Hello Red Hat !

Seems it was nearly yesterday when I joined Talend seven years ago. Time has flown so fast... Next week I will be returning to Red Hat but first I will talk a bit about my years with Talend.

I'd like to believe that working for Talend has helped me become a better engineer, grow in confidence.  And what about those unforgettable Talend R&D events :-) ? No doubt, it has been an interesting and exciting journey.

It has not been easy to find a link to a piece of music which would associate well with the company, but I think I've got it in the end. The text there is a bit sombre, but the music reflects well what I'd like to remember about Talend, the energy and the style: enjoy Ave Cesaria By Stromae. Thank you Talend, Goodbye.

And now I'll be heading back to Red Hat :-). I will be joining a WildFly Swarm team and I look forward to and optimistic about it and the new challenge. I'll have to learn new things. I will enjoy it too. And in time, after I settle well, I will return to this blog and talk about WildFly Swarm and other related projects.

Stay Tuned !

Thursday, February 8, 2018

Apache CXF Story Will Continue

When I started working on Apache CXF full time it was already a well established project, shipping a production quality JAX-WS and an early JAX-RS implementations.

During the next N years, with some short breaks, all of us did put a lot of effort into supporting the CXF community,  keeping enhancing the JAX-RS, various security features, fixing lots and lots of bugs, and trying to support the idea that "CXF was more than just a library" :-).

I'm curious, how many SOAP or pure HTTP calls have been made over the years with the help of CXF ? Sometimes one can read: "This product supports thousands of transactions per minute". Would be fun to read somewhere that "CXF has supported several millions of service calls over 10 years" :-). Or how many downloads have been made ? Who knows...

It is satisfying to see that today the users keep coming to CXF and ask questions and open new issues. No doubt it has helped many users, helped to completely mainstream JAX-WS and then JAX-RS, alongside its Jersey and RestEasy 'colleague' frameworks.

No doubt the Apache CXF story will continue and I've been happy to be part of this story. Thank You !