Part 2 - Using Vagrant and Ansible to setup Jenkins

Part 2 on setting up a Jenkins machine with plugins. Since the previous article, I've been asked by people what is Vagrant and how they can use it. Somehow I took this for granted and I did not consider it a key subject in our CI journey. However when trying…

#Tags: ansible

Part 1 - Continous Integration with Jenkins, Docker, WebDriver ...

The plan I'm going to start the series on Continuos Integration(CI) for java web projects with explaining the part related to integration tests, then in Part 2 talk about how we glue things together in Jenkins. Use Jenkins jobs for running unit tests and coverage report. Building our artifacts.…

#Tags:

Maven lifecycles and plugins explained

Maven is much more than just a simple dependency management and packaging tool. Through a set of plugins it becomes a powerful tool for handling the "backbone" of CI setup that might require generating new source files, compile, package, execute bash scripts that for ex. start a docker container, start…

#Tags: maven

Monitoring your Java processes

I was looking for a complete and lightweight monitoring solution for my java processes when I found the perfect match Monit. I preffer many small 512MB memory Digital Ocean (referral link included) instances to host my apps and therefore I was looking for a lightweight free opensource solution that is…

#Tags:

Docker Series - Docker part II

I'll be more explicit about some commands that you may want to use in your Dockerfile and explain how Docker works through them. For introduction to Docker see Part I A docker container will keep running in the background as long as the initial command executed within the container is…

#Tags: docker

Docker Series - Intro to Docker

Foreword - How I stumbled upon Docker So all this started when I was impressed after reading about Jepsen. I like that that Kyle(the blogger) seems to have stumbled upon a generic framework for testing distributed systems behavior in cases of node failure and network partitioning etc, and how…

#Tags: docker

More Secure than Yesterday - Keeping sessionid in the url - When did that became a Good ideea?

Now you may have heard that keeping the session id in the url is bad practice. Might even have read it in the previous post and I'm just going to reassure you it still holds true as long as you don't take other precautions. A short full Recapitulation Http Protocol…

#Tags:

More Secure than Yesterday – Preventing "Session stealing" type of attacks.

Explaining Session Fixation attack The session fixation type of attack is very simple to understand and relies on the fact that the attacker convinces a victim to use a session already fixated(provided) by the attacker to your site. Most usecases involves the fact that the attacker would pass an…

#Tags: WebSecurity Security

More Secure than Yesterday - Storing the Users Passwords

Today we're tackling the common problem of keeping our users passwords secure. It's going to be a recap of the best practices and reasons behind them, and I'll be introducing a very useful library for cryptography in Java to have a concrete implementation of how you can store your user's…

#Tags: