Archive from October 2021
A realm is the security policy domain within an application server. It defines how the authentication and authorization for your application is performed. Most of the time, your application is used by a person that can provide username and passwords as credentials (directly or indirectly through providers like an OpenId Connect provider) but some use cases exist where another process needs to use your endpoints.
Jakarta EE, previously Java EE, is a set of specifications that enables the world wide community of Java developers to work on cloud native Java enterprise applications. It is an open source project maintained by theEclipse Foundation.
Jakarta Concurrency is a small, but fundamental, specification under the Jakarta EE umbrella. As project lead, I provide more information on what it is, its future and how to be involved.
Data is sent to and received from the endpoints within Payara Platform. When large chunks of data are sent to the client in response to a request, it might be an option to compress the data when the bandwidth is limited. This speeds up the transfer, but requires more CPU on the server and the client to perform the compression and handle the response.
With the October 2021 release, the Payara Platform allows configuring the compression level and the compression algorithm so you can better tune your environment for your requirements.
The Client Certificates security extensions continue to receive improvements in this release. In previous releases (July and September 2021) we added Client Certificate Authentication improvements, giving the ability to define multiple TrustStores and implement a SPI to allow developers to perform additional checks on the Client Certificate.
Previously, any Client Certificate that is used and matched within the KeyStore was accepted, even when the certificate was expired. Starting in the October 2021 releases (Payara Community 5.2021.8 and Payara Enterprise 5.32.0), using the newly developed SPI, we have implemented an additional check when using the Client Certificate authentication option to ensure the certificate is valid.
The October 2021 Payara Platform release is here! Payara Platform Enterprise 5.32.0 includes 8 improvements, 9 bug fixes, 1 security fix, and 5 component upgrades. The Payara Platform Community 5.2021.8 release offers 7 improvements, 7 bug fixes, 1 security fix, and 5 component upgrades.
And don't forget to join the 'October Release Overview + Client Certificate Authentication and Security Realms in Payara' webinar with Rudy De Busscher on October 26th 2021 3 PM BST. Find out more & registerhere.
We also invite you to participate in the Payara Platform Survey- for your chance to win one of two $25 Amazon vouchers. The survey is mostly multiple choice and takes about 6 minutes to complete. Thank you!
Read more below to learn more about the highlights of this release.
You may have seen that our Payara Forum has recieved an update. We've moved from Google Groups to a brand new location: https://forum.payara.fish/
Below you will find out more about why we made the new decision, what the Forum is for and how to use it!
You can now catch up on the videos: vendor talks, discussing what we do at Payara Services, benefits of our products, and more about our customers; and at Jakarta One - Spanish, an informative microservices security talk, using identity platformOkta.
A key goal of Jakarta Concurrency is creating a simple path betweenJava SEandJakarta EE (previously Java EE) - making it easy for organisations scaling up to migrate their mission-critical applications to the enterprise-orientated Jakarta EE specifications.
Payara Server has a strong relationship withMicrosoft Azureand theJava at Microsoft team - and now, there's an official best practice Azure Sample for running Payara MicroonAzure Kubernetes Service(AKS)!
This is a reaction to more and more Azure customers wanting to run Payara on Azure, with many moving from GlassFishto Payara Micro on AKS. It also precedes the next step for Azure and Payara: releasingPayara Cloud as a PaaS running on Azure.
Payara Cloud (launching soon!) delivers an easier way to run your Jakarta EE applications on the cloud. You can upload any web application that follows the Jakarta Web profile specification and click deploy - Payara Cloud will configure and run it in a containerized Payara Micro instance.
Unlike building an application server deployment on a Cloud Infrastructure as a Service or on raw Kubernetes, Payara Cloud takes on a Platform as a Service (PaaS) role and handles provisioning of the infrastructure, installation, configuration, deployment, and scaling your application to eliminate costs and reduce the risks of managing Jakarta EE application servers on Cloud.
You can search the log entries easily within Payara Cloud if you suspect errors or expect a message within the log file.
This month the major news for the Enteprise Java community community was the release ofJDK 17, the next Long-Term Support (LTS) OpenJDK release. Find our pick of the best resources relating to this below, including Payaran Rudy De Busscherexplaining how Payara Platform will soon support JDK 17 and why.
It's also been a great month for resources and compatabilities for our related technologies: Jelastic has introduced an auto-clustering option for use with Payara, andAzure produced an official best practice sample. More related technologies are realising how many of their users want to use Payara Platform, and creating tools to make this easier!