OWASP Security Principles for CISOs, CSOs, AppSec & DevSecOps Teams

OWASP security principles provide a neat list of proactive controls for CISOs, CSOs, AppSec and DevSecOps teams working to develop secure web and API applications. But what is the Open Web Application Security Project (OWASP) model? How do the OWASP requirements and methodology contribute to information security standards? 

What’s New In The Payara Platform January 2025 Release?

We're excited to announce the latest releases across our Payara Platform lineup: Community 6.2025.1, Enterprise 5.71.0 and Enterprise 6.22.0. These releases bring significant improvements in a number of areas. We advanced system configuration, delivering greater flexibility and efficiency for your applications to help you build, deploy, and maintain secure, scalable applications with confidence.. Additionally, we've addressed key security concerns, bolstering the platform's resilience against evolving threats, and delivered critical bug fixes to enhance overall stability and reliability.

Continue reading to learn more about what you can find in the January release of the Payara Platform suite of application server technologies for Jakarta EE applications.

Web Server vs. Application Server: What's the Difference?

Planning to develop and deploy an application but unsure where to start? Whether you’re new to software engineering or managing a team of developers for the first time, you’ve likely heard you need a server—but what kind? Aren’t all servers essentially the same? 

Not exactly. Servers play specialized roles in hosting and running applications, with web servers and application servers serving distinct purposes. In this post, we’ll explore what each does, how they differ, and help you decide which one is right for your project. 

Nugget Friday - Getting Started with MicroProfile OpenAPI Documentation

Clear and accurate API documentation is essential. It bridges the gap between your REST APIs and the developers who rely on them, ensuring smooth integration and usage. However, creating and maintaining up-to-date documentation often feels like a daunting task, requiring either tedious manual effort or complex tooling.

In this Nugget Friday, we’ll discuss how you can streamline API documentation to deliver outstanding API experiences with minimal overhead.

Accelerate Application Development with AI

Sample full stack applications are crucial to support multiple activities, such as testing, validation and experimentation. However, their creation involves repetitive and less value-adding activities that are nonetheless essential. These often require considerable time and resources that can take software developers and engineers like you away from other, more meaningful and stimulating tasks.  

If you are looking for ways to streamline the development of applications for deployment testing, prototyping, proof-of-concept and other purposes, this blog post is for you! It shows you how to leverage artificial intelligence (AI)-based automation with Payara Starter to cut the time needed for one of the fundamental activities that many software specialists dislike, the creation of Entity Relationship (ER) diagrams. 

Jakarta EE vs. Spring Boot: Choosing the Right Framework for Your Project

In the Java ecosystem, two main frameworks stand out for enterprise application development: Jakarta EE (formerly Java EE) and Spring Boot. While both options aim to simplify enterprise Java development, they take distinctly different approaches. This comprehensive comparison will help you make an informed decision on which framework is best suited to support your next project.

Jakarta Persistence Provider: Choosing the Right Solution for Your Jakarta EE Applications

Jakarta Persistence (formerly JPA) is a cornerstone of enterprise Java development, offering a standardized approach to object relational mapping (ORM). But when it comes to selecting a persistence provider, the decision isn’t one-size-fits-all. Hibernate, EclipseLink and OpenJPA are three leading options, each with unique strengths. But how do you know which is right for your project?

In this blog, we’ll give you a short overview of the core features, advantages and ideal use cases of these Jakarta Persistence providers to help you make an informed decision.

Nugget Friday - Understanding Jakarta Batch Step Processing: A Developer's Guide

One of the most common questions about Jakarta Batch specification is "How do steps actually work under the hood?" Today's nugget takes a look at batch processing in enterprise Java applications by exploring step execution and the different types of steps available in Jakarta Batch. So grab your favorite beverage and let's dig in!

The Payara Monthly Catch - December 2024

As the year wraps up, we’ve got some holiday treats for Jakarta EE developers! Whether you’re updating legacy applications, improving your testing strategy, or exploring flexible cloud pricing, this month’s resources are here to help you stay on track.

Here’s what we have in store for you! 🎁