> boiler plate code remove : lombok, mapstruct, modelMapper¶
- https://chatgpt.com/c/7d23b0fe-a7a5-43d5-9ced-69d4a344e31a - error handling
- https://chatgpt.com/c/f4a0c9cd-c6cb-414e-888c-605c2d50340c - ext server deploy
web¶
0 web request¶
- idempotent : PUT
- non-idempotent
1 WebSocket connection - intro¶
- persistent(stateful), bi-directional communication channel between a client and a server over a single, long-lived TCP connection.
- WebSocket connections remain open and allow for real-time data exchange between the client and the serve.
2 web-aware Spring ApplicationContext : WebApplicationContext¶
- IAC container for springMVC application.
- AC aware of the web-specific features and contexts in a Servlet environment.
- can access the
ServletContext, provides access to the Servlet API - access the
ServletConfig
- can access the
- supports web-scopes for beans
- request - bean is created for each HTTP request
- session -
- global session - never used
- Web socket - bean is created for each WebSocket connection
3 CORS¶
- https://chatgpt.com/c/79fe00c5-9852-4956-b0ec-be9a6657359c
4 security threats¶
- XSS and CSRF
- https://chatgpt.com/c/c86b5fd1-c1b8-4a6b-bb8b-bbd832a606aa
- https://chatgpt.com/c/734bd77f-75d3-4be2-acbc-d80ef8b61b21
- https://chatgpt.com/c/e1547ff9-6ce4-4645-8fae-56d1924daa47
5 MIME type¶
- consumes
"application/json" Accepts JSON input "application/xml" Accepts XML input "text/plain" Accepts plain text "multipart/form-data" Accepts file uploads "application/x-www-form-urlencoded" Accepts form data - produces
"application/json" Returns JSON "application/xml" Returns XML "text/html" Returns HTML "text/csv" Returns CSV "application/pdf" Returns PDF APPLICATION_OCTET_STREAM - Generic binary (default) APPLICATION_PDF - For PDF files IMAGE_JPEG/IMAGE_PNG - For images APPLICATION_ZIP - For ZIP archives Content-Disposition Header - attachment forces download dialog - filename suggests the saved filename