1. Spring and Java

>> Don’t expose your JPA entities in your REST API [thoughts-on-java.org]

We can’t fully avoid coupling, but mixing web and persistence layers is almost always a bad choice.

Also worth reading:

Webinars and presentations:

Time to upgrade:

2. Technical

>> How CloudFront solves CORS problems [advancedweb.hu]

When working with modern architectures, dealing with CORS can be annoying at times. Luckily, CloudFront has a handy solution to the problem.

Also worth reading:

3. Musings

>> Job negotiation for programmers: the basic principles [codewithoutrules.com]

A huge collection of much-needed job negotiation tips – definitely worth your time!

Also worth reading:

4. Comics

And my favorite Dilberts of the week:

>> Morning Meetings [dilbert.com]

>> Software Specs [dilbert.com]

>> Mindless Tasks [dilbert.com]

4. Pick of the Week

Last week I talked about the new security-focused course I’m releasing, exploring the new OAuth2 stack in Spring Security 5:

>> The new Learn Spring Spring Security OAuth

If you’re doing OAuth2 work, definitely have a look at the lesson plan.