Speaking

In the latest years, there has been some push-back against frameworks, and more specifically annotations: some call them magic. Obviously, they make understanding the flow of the application harder. Spring and Spring Boot latest versions go along this trend, by offering an additional way to configure beans with explicit code instead of annotations. It's called functional, because it moves configuration from objects to behavior. This talk aims to demo a step-by-step process to achieve that. In the end, the demo application will run without any annotations at all using only declarative configuration, thanks to a new initiative called Spring Fu. This will allow to use GraalVM to create a native image of the final JAR.

The Java API allows a lot: sending packets over the network, compiling code, etc. If you put an application in an production environment, you need to make sure it doesn’t do more than it’s supposed to do. Code reviews are good to improve the hardening of an application, but what if the malicious code was planted purposely? Some code buried in a commit could extract code from binary content, compile it on the fly, and then execute the code in the same JVM run... By default, the JVM is not secured! Securing the JVM for a non-trivial application is complex and time-consuming but the risks of not securing it could be disastrous. In this talk, I’ll show some of the things you could do in an unsecured JVM. I’ll also explain the basics of securing it, and finally demo a working process on how to do it.

Consider a Java application in a private banking system. A new network administrator is hired, and while going around, he notices that the app is making network calls to an unknown external endpoint. After some investigation, it’s found that this app has been sending for years confidential data to a competitor (or a state, or hackers, whatever). This is awkward. Especially since it could have been avoided. Code reviews are good to improve the hardening of an application, but what if the malicious code was planted purposely? Some code buried in a commit could extract code from binary content, compile it on the fly, and then execute the code in the same JVM run... By default, the JVM is not secured! Securing the JVM for a non-trivial application is complex and time-consuming but the risks of not securing it could be disastrous. In this talk, I’ll show some of the things you could do in an unsecured JVM. I’ll also explain the basics of securing it, and finally demo a working process on how to do it.

Kotlin has unarguably gained a lot of attention in the last few years—not only in the Java ecosystem. Some even say it’s a silver bullet. On the other hand, serverless computing and FaaS are the new black, as they radically change how software is organized, deployed, and charged for, and are in the process of further disrupting the always-evolving world of cloud computing. This fast-paced hands-on session introduces you to Kotlin and serverless. It then shows you live what this winning combo can offer.

with David Delabassée

The blockchain is not only restricted to Bitcoin and crypto-currencies. It’s a distributed ledger technology, meaning you can write different things on it, depending on the technology involved. Ethereum is such a blockchain implementation that allows to write code. In this talk, I’ll show you how to start coding on Ethereum, how to deploy your code, how to test it and how to call your code from the world outside the blockchain, all based on live demo. After the talk, you’ll be able to start your own journey on the blockchain.

The blockchain is not only restricted to Bitcoin and crypto-currencies. It's a distributed ledger technology, meaning you can write different things on it, depending on the technology involved. Ethereum is such a blockchain implementation that allows to write code. In this talk, I'll show you how to start coding on Ethereum, how to deploy your code, how to test it and how to call your code from the world outside the blockchain, all based on live demo. After the talk, you'll be able to start your own journey on the blockchain.

Despite being quite 'new', Spring Boot has seen a spectacular start as an amazing kickstarter for Spring-based application. You can now start your project in a matter of minutes, not days! On the other hand, you’re still using Java, with all its ceremony regarding code... Wouldn’t it be great if we could pair Spring Boot with a powerful yet simple language? In this talk, I’ll live code a Spring Boot application using Kotlin, the friendly language provided by JetBrains. Come discover how you can now cut through all the red tape and finally focus only the important stuff.

Consider a Java application in a private banking system. A new network administrator is hired, and while going around, he notices that the app is making network calls to a unknown external endpoint. After some investigation, it’s found that this app has been sending for years confidential data to a competitor (or a state, or hackers, whatever). This is awkward. Especially since it could have been avoided. Code reviews are good to improve the hardening of an application, but what if the malicious code was planted purposely? Some code buried in a commit could extract code from binary content, compile it on the fly, and then execute the code in the same JVM run... By default, the JVM is not secured! Securing the JVM for a non-trivial application is complex and time-consuming but the risks of not securing it could be disastrous.

In the realm of testing, the code coverage metrics is the most often talked about. However, it doesn't mean that the test has been useful or even that an assert has been coded. Mutation testing is a strategy to make sure that the test code is relevant. In this talk, I will explain how Code Coverage is computed and what its inherent flaw is. Afterwards, I will describe how Mutation Testing work and how it helps pointing out code that is tested but leave out corner cases.

In the realm of testing, the code coverage metrics is the most often talked about. However, it doesn’t mean that the test has been useful or that an assert has been coded. I'll explain how Code Coverage is computed and what its inherent flaw is. Afterwards, I'll describe how Mutation Testing work and how it helps pointing out code that leaves out corner cases. I will also demo PIT, a Java production-grade framework that enables Mutation Testing.

Kotlin is one of those "new" JVM languages that are currently rocking the boat. Although it’s made a great impact on Android, it’s equally good on the server side. As Domain-Specific Languages are constrained by the language they run on, Kotlin frees developers from Java fluent builders to propose something better. Using the Vaadin web framework as an example, I’ll demo how one could design its own DSL with Kotlin.