Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Dec 04 21:28
    stevehu closed #1078
  • Dec 04 21:28
    stevehu commented #1078
  • Dec 04 20:46

    stevehu on master

    upgrade to common codec 1.13 to… (compare)

  • Dec 04 20:30

    stevehu on 1.6.x

    upgrade to common codec 1.13 to… (compare)

  • Dec 04 20:16

    stevehu on 1.6.x

    upgrade to common codec 1.13 to… (compare)

  • Dec 04 20:08

    stevehu on master

    upgrade to logback 1.2.7 to res… (compare)

  • Dec 04 19:01

    stevehu on 1.6.x

    upgrade undertow to 2.2.14.Fina… (compare)

  • Dec 04 16:25

    stevehu on master

    upgrade to undertow 2.2.14 to r… (compare)

  • Dec 02 19:36
    KalevGonvick edited #1078
  • Dec 02 19:36
    KalevGonvick synchronize #1078
  • Dec 02 19:17
    KalevGonvick opened #1078
  • Nov 25 03:48

    stevehu on master

    update test case port to avoid … (compare)

  • Nov 24 21:30

    stevehu on master

    update the port number for test… (compare)

  • Nov 22 19:19

    stevehu on master

    disable the rule-loader startup… (compare)

  • Nov 22 03:22
    dependabot[bot] labeled #1077
  • Nov 22 03:22
    dependabot[bot] opened #1077
  • Nov 22 03:22

    dependabot[bot] on maven

    Bump httpclient from 4.5.6 to 4… (compare)

  • Nov 22 03:22
    stevehu commented #1075
  • Nov 22 03:22

    stevehu on issue1075

    (compare)

  • Nov 22 03:22
    stevehu closed #1075
narayanab16
@narayanab16
No, there is a flaw in the jdbc client code
Steve Hu
@stevehu
Could you please raise an issue? Thanks.
narayanab16
@narayanab16
i am new to this site how to raise request, pls help me?, you can download, test
Steve Hu
@stevehu
If you have a Github account you can open an issue here and describe your findings.
container analysis
@container_analysis:matrix.org
[m]
Hello, Mr Hu. I found two null pointer exception in light-4j and submitted two issue. Could you please check and confirm them? Here are the links(networknt/light-4j#962 https://github.com/networknt/light-4j/issues/981)
@stevehu: I scan the source code of light-4j. The bug trace has been validated by the constraint solver. Although we did not provide the input to trigger these two NPEs, they are possible to be triggered in certain cases. To improve the security of the code, we'd better check the nullness before the use.
Steve Hu
@stevehu
@container_analysis:matrix.org Thanks a lot for your help. I am looking into these PRs.
container analysis
@container_analysis:matrix.org
[m]
Could you please reply these issues? I will submit the PRs after your confirmation.
@stevehu: I developed a static analyzer based on the program analysis theory. Your replies will help us to promote the impact of our tool. Thank you.
Steve Hu
@stevehu
I think these two issues are focusing on the same class. I will reply the latest issue to confirm. Thanks.
container analysis
@container_analysis:matrix.org
[m]
Yes. It is easy to fix them by a single change, while they are essentially two bugs from the perspectives of static analysis.
container analysis
@container_analysis:matrix.org
[m]
I submitted the PR. Please check and merge it. THX
Steve Hu
@stevehu
Merged it. Thanks a lot for your help.
Kim Ming Yap
@yapkm01
Hi Steve .. I am from CIBC .. think we chat couple of times ..
Steve Hu
@stevehu
Hi Kim. Welcome to the board.
Kim Ming Yap
@yapkm01
i have 1 question for you in regards to enableVerifyJWT being true .. does this applies across different resource URI in openapi.yml?
Steve Hu
@stevehu
It only applies to the endpoints that have security wire in the request/response chain.
Kim Ming Yap
@yapkm01
supposedly i have 2 resource uri .. say /a/abc with the oauth2 security turn on .. and another resource uri /b/bcd with no security .. i notice the enableVerifyJWT applies even to the 2nd resource uri
what i want is for 1 resource uri to have JWT enabled and another one JWT disabled
i noticed light-4j does not do that
i am using 1.6.26
Steve Hu
@stevehu
If you want the second endpoint disable the security, you need to create two chains and the second chain doesn't have the security in the definition.
1.6.26 should work.
Kim Ming Yap
@yapkm01
got it
tx
so the 2nd chain just does not have the JWT handler
right?
Steve Hu
@stevehu
Yes.
Kim Ming Yap
@yapkm01
oki doki
Steve Hu
@stevehu
Here is an example
Kim Ming Yap
@yapkm01
ok cool
appreciate
tx
Steve Hu
@stevehu
The /health doesn't have security so no token is required.
Kim Ming Yap
@yapkm01
k
Steve Hu
@stevehu
You can define another chain with several middleware handlers.
Kim Ming Yap
@yapkm01
yeap
i will try it out
tx a lot
Steve Hu
@stevehu
We have released 2.0.30 for jdk11. It is backward compatible with some defects addressed, and some enhancements added.
For more all the PRs included in each release, please visit https://trello.com/b/189msq9S/release-schedule or individual release note.
Steve Hu
@stevehu
I have written a tutorial with some videos for the kafka-sidecar. It might help if you are using Kafka with the services in K8s.
Saurabh Bhatia
@saurabhzx
Hi Team, We are running a small e-commerce startup and wish to consider light4j to develop our small REST microservices, Can anyone please provide some bottlenecks or the cases where this framework might not be a good fit?
Steve Hu
@stevehu
We actually have an e-commerce platform built on top of light-4j already and you can use it if you are interested.
We build it wiht Event Sourcing and CQRS with Kafka/Kafka streams
Steve Hu
@stevehu
We have released 2.0.32 for jdk11. It is backward compatible with some defects addressed, and some enhancements added.
For more all the PRs included in each release, please visit https://trello.com/b/189msq9S/release-schedule or individual release note.