Flyway is a tool that supports database migrations on multiple types of relational databases. It is open-source and licensed under Apache 2.0 License. What are the Advantages? Facilitates seamless updates to a database schema from one version to another as an application evolves with the code. Keeps a record of the updates applied on…

I was working as a java software engineer for more than 4 years. Recently I joined a firm that uses Kotlin instead of Java and I have been learning Kotlin for the past few weeks. Learning Kotlin has been fun and interesting. Also, I feel it is fairly easy for…

In this post, we’ll discuss the best practices of identifying the authorized user of an access token and what approach we recommend in doing so. WSO2 Identity Server supports OAuth2 and OpenID Connect frameworks that define standard protocols on authorizing third-party applications when accessing user identities such that access to…

What is Helm? When deploying an application on Kubernetes, it is required to define and manage several Kubernetes resources such as pods, services, deployments, and replicasets. Each of these require to write a group of manifest files in YAML format. In the context of a complex application deployment it becomes a difficult task…

CSRF (Cross-Site Request Forgery) can allow an attacker to coerce a user into unknowingly and unintentionally dispatch responses to an application. …

TLS which is the successor of SSL is a protocol that provides a secure mechanism for authentication using x509 certificates. It also provides a two-way encrypted channel between two parties. …

In the present day, the most common approach for protecting APIs is by using shared secrets. Every time the API is called, this secret must be presented which is not that secure. Then there are other mechanisms such as OAuth which is used to enforce access control on APIs. However…

When using HTTP Requester to establish HTTPS connection to remote server, you may be encountering the following exception. ERROR — TargetHandler I/O error: Host name verification failed for host : 172.20.5.110 javax.net.ssl.SSLException: Host name verification failed for host : <host-name> at org.apache.synapse.transport.http.conn.ClientSSLSetupHandler.verify(ClientSSLSetupHandler.java:152) at org.apache.http.nio.reactor.ssl.SSLIOSession.doHandshake(SSLIOSession.java:285)

When you are running a Java application, if you add these JVM arguments, it would log the Java Garbage collection details to a log file. -Xloggc:gc_memory_logs.log -XX:+PrintGCDetails -XX:+PrintGCTimeStamps Typically these logs would looks like this. 1.703: [GC [PSYoungGen: 132096K->16897K(153600K)] 132096K->16905K(503296K), 0.0171210 secs] [Times: user=0.05 sys=0.01, real=0.01 secs] 3.162: [GC [PSYoungGen…