Category Archives: Newsletter

Caucho Newsletter August 2020

Newsletter at a glance

Resin 4.0.65 released
TLS v1.3 for OpenSSL
Disabling insecure cipher suites
?Protocol and cipher-suite in resin.properties
Customer success story – Thai AirAsia migrates to NTT Data Intramart powered by Resin and reduces 80% of its outsourcing costs

Resin 4.0.65 released

Resin 4.0.65 comes with numerous bug fixes. Notably, it adds support for TLS v1.3.

Here’s the change list for Resin 4.0.65 � released July 29, 2020

openssl: add +/tlsv1.3
class-scan: catch and continue from .class parse exceptions
access-log: add %{param}p for parameter (#6305, rep by Yoo)
websocket: avoid wrapping IOException in IllegalStateException
jdk: EventManager need to use ConcurrentHashMap.putIfAbsent, not Map.putIfAbsent
config: openssl-protocol, openssl-cipher-suite, openssl-chain-file
health: avoid reporting time outside window as downtime

In case you missed it, here’s the change list for Resin 4.0.64 � released February 2, 2020

cluster: fix heartbeat close
deploy: fix duplicate remote deploy
config: add jvm_classpath to cluster-default.xml
config: add access_log_format
jdk: TcpPort._activeConnectionSet.keySet() must use Map api
jdk: getAttribute should not wrap AttributeNotFound
jdk-compat: dynamic Logging during initialization

If you�d like to discuss updates or take advantage of new Resin features for your deployment, please email Alexandra Garmon, garmon@caucho.com, to arrange a web meeting with one of our engineers.

TLS v1.3 for OpenSSL

Resin 4.0.65 adds support for TSL v1.3, which is significantly faster than TLS v1.2 to complete the SSL handshake. To enable TLS v1.3, simply install an OpenSSL library that supports it. For users that whitelist SSL protocols in their config with “-all”, you will need whitelist it in resin.properties:

protocol : -all +tlsv1.2 +tlsv1.3

Disabling insecure cipher suites

TLS v1.3 improves security by removing support for insecure cipher suites. For older TLS versions however, you’ll need to disable them manually in resin.properties:

cipher-suite : ALL:!aNULL:!ADH:!NULL:!LOW:!MEDIUM:!EXP:!SSLv3:+HIGH

The above disables low and medium strength cipher suites.

Customer success story – Thai AirAsia migrates to NTT Data Intramart – powered by Resin – and reduces 80% of its outsourcing costs

Intramart is the major Business Process Management workflow software provider in Japan with over 6,000 Intramart customers deployed on Resin. Intramart�s �Open & Easy� concept provides flexibility, scalability and development productivity to thousands of users, including some of the largest companies in the world.

Problem

Workflow previously required Thai AirAsia to outsource development, which was costly and time consuming

Solution

Deployment of intra-mart, which enables Thai AirAsia to insource all changes of operation flow
?Operation of Thai AirAsia using intra-mart workflow covers everything from travel expense adjustment called eDTR (electric Duty Travel Request) and using VPN to applying for purchases.

Results

Time: Dramatically shortens the time to create and change workflow systems
?Cost: 80% reduction of outsourcing costs by complete insourcing
Paper reduction: 60% reduction in departmental paper use

“The ability of intra-mart to easily create workflow processes from scratch with drag and drop was outstanding compared to other products”
- Mr. Pakpom – Project Coordinator, ICT Department

Read full case study here:
https://www.nttdata.com/th/en/news/2020/january/transform-your-business-and-productivity

Download the latest version of Resin today!

Caucho Newsletter December 2019

main caucho logo 3 caucho founding outer richmond

“Our deployment has run on Caucho Resin for over a decade. Resin is reliable, stable and easy to maintain/upgrade. Our production sites are critical to our business and we don’t have downtime issues while running on Resin. Additionally, Caucho tech support is great. They use experienced engineers for support and we always get a fast response."

- Stewart Morse | CEO | IBRC, Inc.

Newsletter at a glance

Resin 4.0.63 released
Spring WebSocket support via Maven plugin
?Resin tip – cloud deployment made easy
Customer success story – Resin replaces Apache and improves performance?!

Resin 4.0.63 released

Resin 4.0.63 comes with numerous bug fixes. Notably, it resolves most JDK 11 compatibility issues and JDK6/7 regressions.

Here’s the change list for Resin 4.0.63 � released October 28, 2019

admin: added resin.admin.heap-dump.file system property for heap-dump directory
config: add health_log_expire_timeout
config: add openssl_chain_file to cluster-default.xml
dist: split out jpa-16.jar from javaee-16.jar
file: add default-content-type to FileServlet
hessian: close of Hessian proxy stream when result is inputstream
http: HttpProxy encoding issue with ch>0×8000
http: HttpsEmbed missing jsse.init()
jdk: use Map.keySet() instead of ConcurrentHashMap.keySet() for linking issues
jdk-compat: jdk init with -javaagent cannot use logging from appendToClassPathForInstrumentation
jdk-compat: TcpPort.close() exception on JDK6/7
jsp-el: issues with bean getters and get()
mod_caucho: handling of https forwarding
port: thread launchers were started before initialization
remote: allow JDK11 w/o WebService class
server: on HMUX requests, wait for server start
server: keepalive timeout needs to killKeepalive not turn to active
session: SessionImpl should not clear _isModified on no-change load

In case you missed it, here’s the change list for Resin 4.0.62 � released May 23, 2019

cloud: distributed server update issue with .git/refs
debian: update debian release
distribution: update .jar versions and remove jars with possible conflicts
?elastic: add –elastic-server-index
elastic: cleanup of join server-id and server-address, and timeout
elastic: add server-timeout to resin:ElasticCloudService
embed: add HttpsEmbed
file: cache file updates when webapp-jar changes
integration: WebApp.getMimeMapping
integration: WebApp.getLocaleMapping
jmx: add application-hash to WebAppMXBean
quercus: find interface method if available
security: foo.;html produces 500 exception
security: j_security_check with no auth should issue warning and 404 instead of 500
security: setting setServerHeader to null will remove Server header
servlet: don’t reuse form/invocation ByteToChar when very large
spring: add ClasspathPath to MergePath.addClassPath
ssl: add trust-store-algorithm and trust-store-provider to jsse
ssl: add key-manager-password and key-store-password to jsse
ssl: add key-manager-algorithm and key-manager-provider to jsse
websocket: add WebSocketContext.ping

If you�d like to discuss updates or take advantage of new Resin features for your deployment, please email Alexandra Garmon, garmon@caucho.com, to arrange a web meeting with one of our engineers.

Resin Spring WebSocket support via Maven plugin

Resin now integrates with spring-websocket via a Maven plugin. The plugin provides a
ResinRequestUpgradeStrategy that is responsible for upgrading an HTTP request into a WebSocket connection for Spring. It works with both Spring 4.x and 5.x. To use it:

1. add Maven dependency

    <dependency>
        <groupId>com.caucho</groupId>
        <artifactId>spring4-websocket</artifactId>
        <version>4.0.63</version>
    </dependency>

2. set a HandshakeHandler that uses ResinRequestUpgradeStrategy:

    @Configuration
    @EnableWebSocket
    public class WebSocketConfig implements WebSocketConfigurer {
 
        @Override
        public void registerWebSocketHandlers(WebSocketHandlerRegistry registry) {
            HandshakeHandler handshakeHandler = new DefaultHandshakeHandler(new ResinRequestUpgradeStrategy());
 
            registry.addHandler(myHandler(), "/myHandler").setHandshakeHandler(handshakeHandler);
        }
 
        ...
    }

Resin tip – cloud deployment made easy

Resin Pro makes it super easy to deploy your webapp to the entire cluster with just one command:

    $ resinctl deploy mywebapp.war

That’s it! With that command, Resin distributes the WAR to every server in the cluster and starts it
right up. No more manual copying of WARs. No more ssh’ing into each individual server.

Under the hood is a complex symphony that makes it all possible:

1. command uploads the webapp to a triad/hub server in your Resin configuration
2. triad server commits the webapp into its internal git repository for reliability
3. server unpacks and starts up the webapp
4. triad server distributes the webapp to other triad servers for redundancy
5. triad servers distribute the webapp to the rest of the servers in the cluster

Then to undeploy it:

    $ resinctl undeploy mywebapp.war

Customer success story – Resin solves web server performance and structural problems for Gyeonggi Provincial Office of Education

Xest Information Technology, our South Korea Premier Partner and VAR successfully worked with Gyeonggi Provincial Office of Education to solve Apache performance problems.

Problems

Apache�s low performance made the homepage vulnerable to overloading
Service slowed down with as little as about 200 concurrent users
In the AIX OS environment, Apache and Resin were linked as proxy passes, resulting in reduced performance

Solutions

Replace Apache with Resin web server
Configure the file server separately

Results

After Resin web server replaced Apache, the issues that slowed down the simultaneous connection immediately disappeared and performance significantly improved.
The result of using Resin is that Gyeonggi�s services achieve fast performance and stability to meet user demands for information.
?Since Gyeonggi migrated to Resin, they have not experienced any issues or slowdowns. Their services run fast, smooth and without user complaints.

“Our homepage was often down because of the low performance of Apache which is vulnerable to overloading. Resin solved this problem for us with its fast performance and full compatibility. I�m now very proud that no complaints have been made since we migrated to Resin.”

- Gyeonggi Provincial Office of Education, Computerized Officer S.Y.Kang

http://caucho.com/products/resin/download

Download the latest version of Resin today!

Caucho Newsletter May 2019

�Congratulations to our partners NTT Data Intramart for being named a Niche Player in Gartner�s Magic Quadrant for 2019 Intelligent Business Process Management! NTT Data Intramart has achieved over 6,000 customer sales and has also been ranked #1 BPM solution in the Japanese market for 10 consecutive years.�

- Steve Montal, Co-Founder and CEO of Caucho

Newsletter at a glance

Resin 4.0.61 released
Resin supports JDK 11
Spring Boot 2 and tailored support
Gartner Magic Quadrant report lists Caucho partner, NTT Data Intramart as a Niche Player

Resin 4.0.61 released

Check out the change list for Resin 4.0.61 � released March 1, 2019

security: additional invalid-URL rejection for matrix parameters
file: redirect must not html convert the location (#6212)

In case you missed it, here’s the change list for Resin 4.0.60 � released February 6, 2019

embed: force close of file descriptors (#6208)
webapp: add info log when WebApp does not start within active-wait-time starts (#6197)
hessian: added default blacklist classes
deploy: added alarm for deployment .git gc
deploy: .git changes to allow for git clone from resin-data

We release Resin every 12-16 weeks. Possible changes include performance enhancements, bug fixes, feature requests, and security patches. Having a process in place to update your production systems frequently and reliably will optimize performance. If you�d like to discuss updating your deployment with a Caucho engineer, please email Alexandra Garmon, garmon@caucho.com, to arrange a call.

Resin supports JDK 11

Resin 4.0.61 is the first Resin version to officially support JDK 11. Supporting JDK 11 was a seamless process for us and it was surprisingly easy. So easy in fact that prior versions of Resin should be able to run on JDK 11 with only minor cosmetic issues (deprecated warning messages from the JVM). However, Resin 4.0.61+ are the only versions that we are testing against JDK 11 going forward.

We expect your JDK 11 upgrade experience to be as seamless as it was for us. Check out JDK 11 and its new host of exciting features like new garbage collectors and enhanced cryptography support here: https://www.oracle.com/technetwork/java/javase/11-relnote-issues-5012449.html.

Resin support for Spring Boot 2 in the works

We�re nearing official support for Spring Boot 2, one of the most requested features by Resin users. In the first phase, which we expect to complete late summer, we’ll be adding embedding and Spring WebSockets support. Other Spring features will come in subsequent updates. Stay tuned and feel free to send us your feedback/requirement through Alexandra, garmon@caucho.com.

NTT Data Intramart listed in Magic Quadrant Gartner report

Congratulations to our partners NTT Data Intramart for being positioned as one of the Niche Players in Magic Quadrant (MQ) for 2019 Intelligent Business Process Management Suite (iBPMS) issued by Gartner!

The Gartner MQ is a culmination of research in a specific market, giving you a wide-angle view of the relative positions of the market�s competitors. By applying a graphical treatment and a uniform set of evaluation criteria, a MQ helps you quickly ascertain how well technology providers are executing their stated visions and how well they are performing against Gartner�s market view.

NTT Data Intramart has over 6,000 customers and will continue to develop digital business with a focus on BPM globally and also strive to improve the customer experience and expand business. NTT Data Intramart has been the #1 BPM solution in Japan for the last 10 consecutive years.

For more details, please visit: http://www.intra-mart.com/

Download the latest version of Resin today!

Caucho Technology

4455 Morena Blvd. Suite 210

San Diego, California 92117

US

Caucho Newsletter January 2019

�After 2 years with Resin Pro in production, Nssam has achieved 99.99% uptime and now operates with simplistic operational scalability. We saved 20% of our cost and are very satisfied with the performance of the Resin load balancer and the combination of reliable Resin web application server�

- Nssam Technical Supervision Director � Ho-joong, Kim

case study: Resin�s dynamic scaling & clustering eliminates downtime without major code alterations

Newsletter at a glance – Caucho celebrates 21 years in business!

Resin 4.0.59 released
Resin in Maven Central
Resin supports JDK 9, JDK 10 and 11 in the works
Oracle introduces Java SE subscription
Resin tested against OpenJDK
Resin Cookbooks

Resin 4.0.59 released

Check out the change list for Resin 4.0.59 � released December 10, 2018

database: avoid loop when shared XA connection fails allocation (#6200)
http-proxy: escape utf-8 urls when used in rewrite (#6198)
config: updated resin.properties for http examples
cluster: cluster .war deployment issues (#6188)
tcp: only force socket close on shutdown in test mode to avoid threading issues (#6190)
jsp/embed: jsptaglib detection issues with embedded resin (#6191)
access.log: truncation of long url in access.log needs matching truncation headers (#6168)
file: redirect needs to encode with HTML encoding (#6184)
embed: deadlock with ResinEmbed and type introspection (#6177)
load-balance: cookies losing double quotes (#6181)
quercus: curl needs to use TLSv1.2 as default

In case you missed it, here is the change list for Resin 4.0.58 � released August 27, 2018

servlet: AsyncContext timing issues due to back-compat (#6168)
servlet: add load-on-startup-allow-fail (#6171)
config: add openssl_protocol and openssl_cipher_suite to resin.properties (#6169)
quercus: exception wrapping when stack trace is missing or empty
network: change SocketLinkThreadLauncher to permanent (#6166)
servlet: immutability of getParameterValues (#6172)
classloading: scanning of module-info should be skipped (#6170)
security: invalid URL detection with filters
quercus: QuercusContext array extension using wrong variable
session: added cookie-same-site for version=0 (#6167)

Resin in Maven Central Repository

Check out Resin in the Maven Central repository:

<groupId>com.caucho</groupId>

<artifactId>resin</artifactId>

</dependency>

Did you know you can easily embed Resin? Here�s one way:

ResinEmbed resin = new ResinEmbed();

resin.addPort(new HttpEmbed(8080));

WebAppEmbed webApp = new WebAppEmbed(“/”, “webapps/ROOT”);

resin.addWebApp(webApp);

resin.start();

resin.join();

Resin supports JDK 9. JDK 10 and JDK 11 in the works

The new Java release schedule calls for a feature release every six months, an update release every quarter, and a long-term support (LTS) release every three years.

Resin supports JDK 9 and we are currently adding support for JDK 10 and JDK 11.

Oracle introduces Java SE subscription

Oracle is introducing a new paid Java support model called Java SE Subscription. It replaces Oracle�s old perpetual support plan and along with it comes new licensing terms for the Oracle JDK.

In short, Oracle JDK 8 users do not need a subscription for commercial deployments

(see the Java SE 8 license: https://www.oracle.com/technetwork/java/javase/terms/license/index.html).

Oracle JDK 11 users must have a subscription for commercial deployments (see the Java SE 11 license: https://www.oracle.com/technetwork/java/javase/terms/license/javase-license.html).

This isn�t entirely bad news because going forward with version 11, the Oracle JDK build will be the same as theOracle OpenJDK build. The only difference is that Oracle JDK comes with a paid support model, whereas Oracle OpenJDK does not.

So what does it mean to you?

JDK 8

option #1: use Oracle JDK 8 but with no more public updates
option #2: use Oracle JDK 8 and pay Oracle for updates with a Java SE Subscription
option #3: use an OpenJDK distribution that provides updates like RedHat, Azul, IBM, etc. (Caucho recommends OpenJDK over the Oracle JDK)

JDK 9/10

end-of life

JDK 11:

option #1: use Oracle JDK 11 with a Java SE Subscription
option #2: use an OpenJDK distribution that provides updates like RedHat, Azul, IBM, etc.

For more information, see:

https://blog.joda.org/2018/08/java-is-still-available-at-zero-cost.html

https://docs.google.com/document/d/1nFGazvrCvHMZJgFstlbzoHjpAVwv5DEdnaBr_5pKuHo/view

Resin tested against OpenJDK

We recommend using OpenJDK, which is what we use to test Resin. Interesting tidbit: internally, we do not use Oracle JDK at all.

Resin Cookbooks

Check out our 10-minute overviews of various Resin topics, available for viewing at:

https://caucho.com/getting-started-with-resin For new users or even users who want brief refreshers on advanced Resin topics, the cookbooks are a great place to start.

Resin Deployment

�basic application deployment on Resin

Resin Debugging

�useful debugging tools for Resin deployments

Resin on Amazon EC2

�get setup on Amazon EC2 in minutes

Resin Security

� 4 ways to secure your deployment

Download the latest version of Resin today!

Caucho Newsletter September 2018

Fall is approaching quickly and as the season changes, so does the state of Resin! Let's take a look…

Newsletter at a glance

Korea case study – nationwide scalability in 3 days!
Bug fixes
Release schedule
JDK updates
Embedded Resin
Question for our users
Cookbooks available
Download verification

Case Study: Resin clustering = Nationwide Scalability

“We solved our nationwide scalability and performance problems using Resin clustering. Additionally, we have achieved major performance benefits to our high traffic sites. We’ve experienced enough that migrating to Resin Pro was a very well judged choice in performance increase and cost savings aspects. We see Resin as long-term solution.”

-Jung Sir. IT Team, Korea Chamber of Commerce and Industry

Case study pic

Case study pic 2

With service traffic averaging 30,000 daily visitors and 70 transactions per second, the Korea Chamber of Commerce apps must always be available for end users. As their audience grew, the need for geographically redundant clustering became vital. Resin Pro’s triad clustering kept network traffic to a minimum, while providing an alternative Hessian binary format for clustering any object. This allowed legacy applications to benefit from cloud clustering through configuration instead of code reworking.

Bottom line – KCCI migrated away from a popular web application server to Resin Pro and improved availability for their growing number of visitors. They went from test to deployment in just three days and the cost savings mean this will be a long term solution.

Bug Fixes:

Resin – 4.0.59 – in progress

==============

- 0006180: Double quotes not set through web server

- 0006181: SSL protocol update in Quercus

- 0006177: Deadlock starting ResinEmbed
- 0006184: Path-based XSS in redirects from FileServlet

Resin – 4.0.58 – currently available

==============

- 0006170: ByteCodeClassScanner fails for packages with JDK9 module-info.class files

- 0006168: AsyncServlet Wake-up occasionally looses events

- 0006171: <load-on-startup> retry logic customization

- 0006169: Enable/Disable Openssl protocols from resin.properties

- 0006166: All threads associated with a port disappear

- 0006172: request parameters not kept immutable – 0006167: cookie-same-site

Release Schedule

Resin 4 releases are scheduled every 5-7 weeks. With releases including performance enhancements, bug fixes, feature requests, and security patches it is advisable to be running the most current version of Resin in production.

For details or questions about specific fixes & vulnerabilities that have been patches in releases, email wiley@caucho.com

JDK Updates

Java development has a new release cadaence with releases coming every 6 months. The new release schedule calls for a feature release every six months, update releases every quarter, and a long-term support (LTS) release every three years.

The current release schedule is as follows:

Resin 4.0.57+ currently supports JDK 9 and can be downloaded on the Caucho website. Future releases of the JDK will be fully supported by Resin weeks after initial Java releases are made public.

If you need to start development with a new version of Java before our official Resin release, feel free to ask us about an early snapshot!

Embedded Resin

An embeddable version of the Resin server can be useful in instances where a user would like to package both the app & app server together, reducing potential complexities for deployment. With deployment orchestration and container platforms like Kubernetes & Docker gaining usage, embedding Resin can aid in creating deployable runtime environments.

Q: Are there any performance implications running Resin in this fashion?

Nope! The *Embed objects are only used to configure the regular Resin server. Once the server is configured they become discarded or unused.

The main Resin embed class is com.caucho.resin.ResinEmbed. Additionally, the http://javadoc4.caucho.com/ website provides documentation on embedding Resin.

The main Resin class: com.caucho.server.resin.Resin, can be bootstrapped for additional capabilities.
For a simple application, com.caucho.resin.ResinEmbed, HttpEmbed (for port) and WebAppEmbed are the classes you need first. An example is provided below:

Resin embed 2

How are you using Resin?

Comic Con 2018 We'd like to hear from you!!

Our quarterly newsletter reaches 8700 readers.

    If you have an application that deserves the
    spotlight, email Alexandra at garmon@caucho.com
    to share your story. We can create a case study
    or even a fun paragraph with a link to show off your work.

(Caucho CEO, Steve Montal @ Comic Con 2018)

Resin Cookbooks

Simple 10-minute overviews of various Resin topics are available on the Caucho website. For new users or even users who want brief refreshers on advanced Resin topics, the cookbooks are a great place to start.

Resin Deployment

–basic application deployment on Resin

Resin Debugging

–useful debugging tools for Resin deployments

Resin on Amazon EC2

–get setup on Amazon EC2 in minutes

Resin Security

– 4 ways to secure your deployment

Resin Checksum

For verifying your Resin download, the following url format and location can be used to view the sha256 checksum:

Example:

https://caucho.com/download/resin-pro-4.0.55.tar.gz.sha256

Download the latest version of Resin today!

Caucho Newsletter June 2018

Resin’s stability continues to reach new heights with increased deployments! As of this newsletter, bugs.caucho.com reports only 1 open bug and 2 feature requests.

We are focusing this newsletter on migrating from Resin 3 to Resin 4. Both versions are included with your Resin Professional license. If you are already using Resin 4, feel free to scroll down to the release notes. Imperial Palace Roppongi.5

Newsletter at a glance

Benefits of migrating from Resin 3 to Resin 4
Sizzling summer special offer for all Resin users
Release notes
Caucho and NTT Data Intramart partnership meeting in Tokyo*
Resin Tip – /resin-admin usage

Resin 4.0 – A summer of migration

Migrating to Resin 4.0 provides the advantage of the most secure, stable and feature packed version of Resin available. It features an underlying architecture that results in competitive business advantages.

Resin 4.0 is dynamic by nature, so portions of a cluster or application can be upgraded or patched without interruption to end users. This means the application grows and scales as demanded by end users. As microservices and continuously deployed apps continue to dominate the landscape, Resin 4.0 provides developers with extended command line and admin capabilities for deploying, monitoring, and upgrading with ease and precision.

If you’re running a cluster in an earlier version of Resin, check out the performance enhancements you'll see in an upgrade:

Integrated Health System for high availability including

Cluster information ( open/closed/active connections), session count, thread/memory/CPU graphs, automated health checks to gracefully shutdown and recover through failures
HTTP-related debugging, Database pooling, Cache related debugging, JSP debugging, & more

Improved cloud computing support

A rewrite of Resin’s internal clustering focusing on a high performing hub & spoke model
Revamped cluster hearbeat service for hybrid, private and public clouds
Dynamic clusters that can elastically scale clusters to respond to increased load

Dynamic configuration

Externalized configuration files for simple cluster management
High availability configured by default to get you up and running in Amazon EC2, Azure cloud, or your own private cloud in minutes.

IS IT EASY?

Yes!

Recently, we worked with users on Resin 3 to 4 upgrades and a 4.0.10 to 4.0.56 upgrade. While there were some initial questions surrounding Resin 4.0 new configuration and CDI capabilities, total migration time took only 3 weeks and needed only email correspondence.

IS IT FREE?

Yes!

If you’re already licensing Resin, the upgrade is free! All you have to do is download the latest version at http://caucho.com/products/resin/download. You’ll have access to a version of Resin that has benefited from thousands of deployments, decades of feedback and a fast release cycle. And with only one open bug, you will be migrating to a proven solution with thousands of deployments.

Summer special upgrade offer!

As a thank you to Resin users, if you’re using Resin 3.0, 3.1 or an early version of 4.0, then it’s time to upgrade. Be the company hero by pro-actively upgrading your entire system with the performance and enhanced features of the latest version of Resin.

Caucho engineering is offering complimentary engineering migration support to Resin 4.0.56. Our goal is for you to experience a seamless and successful upgrade to Resin 4.0.56+ and operate with unsurpassed stability.

For more information, contact Alexandra Garmon at garmon@caucho.com.

Release notes:

With Resin 4.0.57 ironing out the last of our Java 9 related bugs, the next version of Resin will focus on Java 10 additions.

Resin – 4.0.56

==============

- 0006066: Session persistence and deserialization

- 0006130: DB timing Java.lang.IllegalStateException: corrupted indirect block id

- 0006149: a fault occurred in a recent unsafe memory access operation in compiled Java code

- 0006151: com.caucho.server.hmux.HmuxRequest broken

- 0006150: @Named("red.lion") vs @Named("red.tiger")

- 0006124: SSL SNI Support for Resin 4

- 0005574: SSL with multiple domains

- 0006113: Access-logging of TLS protocol version and used Cipher-Suite

- 0006127: servlet-mapping only the first url-pattern works

- 0006122: Doc update for Custom Access Log

- 0006112: minGzipSize property

- 0006082: JDBC 4.2 additions

- 0006123: NPE in access log

- 0006114: PDF report name timestamp does not match generated time

In Progress: Resin 4.0.57

Resin – 4.0.57

==============

- 0006128: /resin-admin access from dynamic servers in a cluster

- 0006159: Takes huge amount of time to start in a situation of having more than 20 web applications

- 0006152: java.lang.IllegalArgumentException: 'X' is an invalid server because it has the same IP:port as 'X'

- 0006116: DependencyCheckWorker serves non-modified .jsp before serving new compiled .jsp

- 0006157: java.lang.ClassCastException: ScalingPod

- 0006121: Logging initialization issue on JDK 9 with scripting.

- 0006156: quercus-env-timeout &quercus-timer threads not terminating completely

- 0006154: ./configure fails on fedora 27

Caucho in Tokyo – meeting with Intramart, our Japanese partner and #1 BPM workflow software

Our CEO Steve Montal traveled to Tokyo in May to meet with our partners NTT Data Intramart, http://www.intra-mart.com, who we have been working with for almost 20 years. NTT_June 2018 4

Intramart has been the #1 BPM workflow software in Japan for over 10 year and over 6,000 Intramart customers are deployed on Resin. Intramart’s “Open & Easy” concept provides flexibility, scalability and development productivity to thousands of users, including some of the largest companies in the world.

Steve Montal observed, “NTT Data Intramart has built and impressive and technology-leading software platform and BPM solution. Our successful partnership continues to grow as Intramart expands globally.”

Resin Tip – /resin-admin

Recently we’ve held a number of conference calls discussing health monitoring in Resin. As an integral part to Resin 4.0, the /resin-admin app can be used to monitor your Resin environment. With such low overhead, it’s recommended to be ran in every production site.

/resin-admin reports internally gathered statistics about your Resin deployment, including:

Open connections, TCP Ports, load balancer, cluster, database pool information
Memory pools, garbage collection, memory usage
Thread counts: active, idle, runnable, native, waiting, blocked
Health checks, graphs and logs
Session count, size, timed out
CPU Profiling
JDK, OS, license information, & more!

However, Resin goes beyond typical metrics monitoring by looking for anomalies in JMX attributes. Any numeric attribute of any MBean in JMX can be configured as Meter in Resin, which then enables:

Persistent historical tracking
Visual graphing in resin-admin
Visual graphing in PDF reports
Cluster wide reporting
Anomaly analysis and logging
Triggering health actions (heap dump, thread dump, restart, etc)

By default access is restricted to internal networks but /resin-admin can be configured for usage over a secure connection. For questions or feature enhancements email wiley@caucho.com.

Download the latest version of Resin today!

Caucho Newsletter February 2018

Happy 20th Birthday Caucho!

IMG_0450_straight

Our Newsletter at a Glance

A note from our Co-Founder – Celebrating 20 Years!
Caucho at Olympic Torch Relay in Seoul (pic on right)
2018 Road Map
Bug Fixes
Java Development
Spectre & Meltdown Benchmarks
Quick Tip – /resin-admin usage

Dear Resin, Quercus, Hessian and Baratine users,

It's hard to believe that the company Scott and I started 20 years ago has grown into millions of users. In 1998 we decided to focus on lightweight and open source Java. Since then, Gartner has named us a "Visionary" and Netcraft has reported over 4 million deployments worldwide.

I'd like to say a very special thank you to our developers and partners around the globe. It's great to check my mail and talk to engineers who have been running Resin for almost two decades! It feels like we were kids when the Internet took off and now my kids are programming Java and finding issues to fix!

Keep sending us your bugs and make sure to stop by our offices next time you're in San Diego. Here's to another great 20 years!

– Steve Montal, Co-Founder and CEO

2018 Road Map

This year we will showcase the Caucho Platform using new case studies, examples and cookbooks.

In 2018, Resin development includes:

TLS Server Name Indication: As TLS does not provide a mechanism for a client to tell a server the name of the server it is contacting. It may be desirable for clientsto provide this information to facilitate secure connections to servers that host multiple 'virtual' servers at a single underlying network address.
Spring Boot Jar Loader: The spring-boot-loader modules allows Spring Boot to support executable jar and war files.Java does not provide any standard way to load nested jar files (i.e. jar files that are themselves contained within a jar). This can be problematic if you are looking to distribute a self-contained application that you can just run from the command line without unpacking. Resin’s integration with the Spring Boot Jar Loader will allow users to deploy self-contained web apps in a nested .jar or .war format
JDK Updates: Continued QA testing surrounding the releases of Java
MVN repository: We are inching closer to releasing a version with zero reported bugs! Upon reaching this coveted version release, we will be uploading it to the MVN repository for simple integration and download
Bug fixes, feature requests and performance

Bug Fixes

We are in bug-fixing mode for the upcoming 4.0.56 release in 3-4 weeks. More fixes are planned for the final release, but as of today, the following have been closed:

Resin 4.0.56

==============

- 0006127: servlet-mapping only the first url-pattern works

- 0006122: Doc update for Custom Access Log

- 0006112: minGzipSize property

- 0006082: JDBC 4.2 additions

- 0006123: NPE in access log

- 0006114: PDF report name timestamp does not match generated time

We continue to move forward with the stability and performance of the Resin platform. Recently we have seen an uptick in the amount of on site clustered deployments. While no notable bugs related to clustering have been reported, we continue to refine the /resin-admin for management and oversight of clusters. If there is a feature you would like to see implemented in the /resin-admin or Resin in general, submit a feature request at the following link:

http://bugs.caucho.com/bug_report_page.php

Simply register an account (if you haven’t already), set the severity to “feature”, and provide a short description.

Java Development Speeds Up

Oracle will speed up the releases of standard Java, with a new release JDK coming every six months and a long-term support version updated every three years. The next version of Java will be released in March 2018.

The renewed focus on the Java release cycle should bring about an abundance of feature implementations. Caucho plans to support all future releases of Java for Resin. As releases are made available, we will be reviewing the necessary architectural changes and providing updates as we work through implementation details.

Spectre & Meltdown Benchmarks

We are working to determine the performance impact (if any) that the patch fixes to Spectre & Meltdown will bring to Resin. Until we have worked through our extensive QA suite on a patched version, this project will be ongoing and we will share the results in future newsletters and caucho.com

Caucho at Olympic Torch Relay in Seoul

In January, we headed to Seoul to meet with Xest Information Technology, our partners and resellers in Korea for over fifteen years. Xest’s sales continue to increase as Resin has become a popular

solution for government, education and corporations in Korea with hundreds of new deployments annually.

As a special bonus, we got to see the Olympic Torch relay in the Dongdaemun area of Seoul. It was freezing cold, but spirits were high in anticipation of the Pyongyang Games!

Many thanks to Xest for their hard work and dedication to making the Caucho Platform a significant and widespread web applicaton server in Korea.

Quick Tip – /resin-admin statistics

Many of our clients are familiar with the /resin-admin interface, but unaware of some of the useful statistics and monitoring capabilities included. From the web-apps tab in /resin-admin the following statistics are available for your webapp:

Activity

Active Requests

Active Sessions

Configuration:

AlwaysSaveSession

CookieAppendServerIndex

CookieDomain

CookieHttpOnly

CookieLength

CookieMaxAge

CookieName

CookiePort

CookieSecure

CookieVersion

EnableCookies

EnableURLRewriting

EstimatedMemorySize

IgnoreSerializationErrors

InvalidateAfterListener

Name

ObjectName

PersistentStore

ReuseSessionId

SaveMode

SessionActiveCount

SessionCreateCountTotal

SessionInvalidateCountTotal

SessionMax

SessionTimeout

SessionTimeoutCountTotal

Type

WebApp

WebApp Specific:

ClassPath

ClientDisconnectCountTotal

Configs

ContextPath Enabled

ErrorMessage

Host

ManifestAttributes

Name

ObjectName

RedeployCheckInterval

RedeployMode

RepositoryMetaData

RequestCount

RequestCountTotal

RequestReadBytesTotal

RequestTimeTotal

RequestWriteBytesTotal

RootDirectory

SessionManager

StartTime

StartupMode

State

Status500CountTotal

Status500LastTime

Type

Version

For examples on interacting with Resin MBeans or other JMX statistics, take a look at the source code of the /resin-admin application. It is after all, a web-app running on Resin!

Upgrade to the latest version of Resin today!

Caucho Newsletter November 2017

New York Presentation, Resin Strong and Holiday Fun!

November has been a great month for us – we welcomed our partners NTT Data Intramart and enjoyed the San Diego Beerfest with our friends from Tokyo!

We hope that you’ve been enjoying the fall weather as we move into the holiday season. The beginning of the year was hot with headlines about new JVM & Java development frameworks, yet now conferences are focusing on familiar Java frameworks with plans to add and upgrade them.

Similar to the industry trend, we have continued to improve Resin while maintaining long-term support for new and existing web applications. This work includes feature requests, upgrading java specs, and continuing to strengthen the stability of releases, all with less than five current open bugs!

Our Newsletter at a Glance

Resin Changelog
Resin Release, 4.0.55
Caucho, NTT DATA Intramart and River Rouge Brewing at the San Diego Beerfest
Caucho to present at New York Java Special Interest Group (NYJavaSIG) on December 7
Resin Supported Spec List
Community Support
Quick Tip – Classloader Precendence

Resin Changelog

There are (2) areas where Resin updates can be tracked:

(1) Features, Improvements, & bugs implemented with release

http://caucho.com/resin-4.0/changes/changes.xtp

(2) Current bug status

http://bugs.caucho.com/changelog_page.php

As we release new versions of Resin, we update the caucho.com/changelog_page.php with the latest enhancements. This list is inclusive of the bug report changelog.

Resin Release

Resin 4.0.55

==============

- 0006092: Unable to start as Windows service

- 0006110: health_log_level, it is judged invalid in <resin: if>

- 0006106: CompositeDataMBean exception generated by Java 8 garbage collector filling up log

- 0006107: Resin with Java 9

- 0006091: php/html files no longer recompiled upon modification through Quercus servlet

- 0006096: <shutdown-wait-max> directive defaulting to ~10s instead of configured amount

- 0006104: Servlet3 Programmatic login failure

- 0006093: Failed to parse readRequest when HTTP GET request is too long.

- 0006099: Exception: Can't allocate connection because the connection pool is closed

- 0006102: <web-app expand-preserve-fileset="…"/> does not work

- 0006103: openssl with missing password

Caucho Welcomes NTT Data Intramart to San Diego

A few weeks ago, we welcomed Yoshihito Nakayama, CEO of NTT Data Intramart and six of his developers and sales/marketing team. Caucho and Intramart have been partners for over fifteen years and achieved more than 5,500 customer deployments including some of the largest companies in Asia. Our meetings focused on Caucho’s plans to support JDK9 and the new Oracle Java release cycle starting in 2018.

And after our meetings….

Our good friend Edward Stencel, who ran international business development for Caucho from 2011-2014, went on to become the founder of River Rouge Brewery in Detroit. As part of San Diego Beer Festival, Edward organized a private tour for our partners at NTT Data Intramart during San Diego’s famous Beerfest. The tour included tastings and behind the scenes tours of San Diego’s hottest spots like Alesmith, 2kids Brewery, Setting Sun (San Diego’s own sake distillery, who knew!) and Malahat whiskey and rum distillery.

Check out Edward’s brewery below, which Food and Wine Magazine named “One of the 50 most amazing nano-breweries in America.”

http://riverrougebrew.com/

http://www.foodandwine.com/slideshows/50-amazing-nanobreweries-50-states#23

Caucho's Sean Wiley to present at the December NYJavaSIG

Caucho Senior Solutions Engineer Sean Wiley will be headlining the New York Java Users Group. Here's the abstract and hope to see you there!

Abstract: High Throughput and Lightweight Web Applications for Modern Use Cases

We’ve heard all the buzzwords: SOA, Java EE, Java Web Profile, Eclipse MicroProfile, Microservices, etc. Java web applications have seen their fair share of technology re-branding. But honestly there hasn’t been much true re-architecting.

Let’s look back of how Java Development has evolved over the past 20 years for yesterday’s applications, and then consider today’s more demanding use cases. We’ll take a look at implementations of today's top underlying architectures, and a glance into some powerful frameworks as we conclude 2017, especially as Java continues to evolve as a modern language.

Examples will be based largely on modules within the open-source Caucho Platform and comparable technologies, alongside real-world client site implementations.

Registration is required to attend — sign up in advance at javasig.com

Resin Spec List

officially supports JDK 1.6-1.8 ( JDK 1.9 in progress )
J2EE 6 Web Profile
Servlet 3.0
JSP 2.2
JSF 2.0
JSTL 1.2
JPA 2.0 (EclipseLink)
EJB 3.1 lite
JDBC 4.1 ( Next release will be 4.2)

While you are always welcome to add more .jars to your distribution for added functionality, this set of implementations are what we see as the long term support for the Resin platform. If you have additions, questions, or updates to this list that you would like implemented, please reach out to our development team at presales@caucho.com.

Community Support

Just as a reminder, Resin development can be reached through our Google groups page. We encourage users to post implementations, ideas, or thoughts for discussion surrounding Resin.

Next time you’re stumped on a Resin topic, try posting for community help:

https://groups.google.com/forum/#!forum/caucho-resin

Quick Tip – Setting Classloader Precedence

Whether you’re embedding Resin in larger containers or integrating with outside modules, it’s sometimes necessary to give precedence to your own API & implementation .jars over those inherently supported by Resin.

To accomplish, simply add the <jvm-classpath> entry to your resin cluster:

<resin>

<server-default>

<jvm-classpath>/path/to/api.jar</jvm-classpath>

<jvm-classpath>/path/to/impl.jar</jvm-classpath>

<jvm-classpath> adds a classpath entry when starting the JVM allowing WEB-INF/lib classes to load before Resin’s own. This classpath has priority over Resin's classpath (allowing you to use JPA 2.1+ instead of Reisn's JPA 2.0, for example).

On a final note, wishing you and yours Happy Holidays!

Upgrade to the latest version of Resin today!

Caucho Newsletter September 2017

NYJavaSIG, Enterprise Case Studies and a Health Check Tip!

“Smoking fast, compact, and easy to configure plus advanced features like clustering and SSL, Resin is bar none the best container on the market. Resin is our go to web application server and it always delivers.”

– CTO of Aplos Software, Matt Serrano
(Simple Nonprofit Software https://www.aplos.com/)

Newsletter at a Glance

Bug fixes and new features
Caucho to present at the New York Java Special Interest Group (NYJavaSIG) on October 11
New partnership with ElasticBeam
New resources and videos for Caucho developers
Case Study – Resin increases performance and reduces TCO across 3 industries
Hot tip – Taking advantage of Resin's health system & diagnosis features

Bug Fixes and New Features

Congrats to our development team – Resin has only 3 open bugs and 3 feature requests! Resin 4.0.54 is in the works and the fixes going into this version include, drum roll…

Resin 4.0.54

==============

- 0006050: deployment issue from console

- 0006087: Add support to Syslog Handler for formatted messages

- 0006076: Configuration of <error-page> for 400 Bad Request not working: Shows "unavailable due to ***an internal error***"

- 0006086: getResource with META-INF/resources issue

- 0006075: Vulnerable to Web Cache Deception Attack

- 0006077: multipart/form-data caucho.multipart.form.error

- 0006079: HP UX 100% CPU on startup

- 0006071: Additional methods for jcache API & related hibernate errors

- 0006056: Add CLI capability to check report status of deployed web-apps

- 0006074: Resin Admin Null Pointer

- 0006072: Hprof-path directory does not succeed if contains Drive letter

- 0006054: mod_caucho drops request parameters when used behind a SSL termination

- 0005915: CDI: Can't find a bean. Sporadic exception

- 0005904: heartbeat reported off but servers are alive

- 0006069: response.encodeRedirectURL strips Unicode characters > 32768

- 0006063: JSSE properties settings issues

- 0006067: JSSE-SSL: <honor-cipher-order> ignored

In addition to the bug fixes and thanks to great user feedback, we’re implementing the following feature requests:

-Ability to turn off all logging to the resin-data database in resin.properties

-Ability to turn off health in resin.properties without configuring health.xml

If you have ideas for feature requests to be implemented please submit them here:

http://bugs.caucho.com/bug_report_page.php ( must be logged in / have an account )

Caucho's Sean Wiley to present Microservices Architecture at the October NYJavaSIG

Caucho Solutions Engineer, Sean Wiley, will be presenting on the topic of Microservices, Java EE, Java Web Profile, Agile and High Performing Webapps at the NYJavaSIG on October 11th. How will he manage to cover such a vast set of topics? With the Caucho Platform of course!

Having been a leader in the field for 20 years, the Caucho platform has continued to evolve to meet the demands of the most demanding web applications in the field. Evolving from a simple servlet container to an entire load balancer, web server, app server, and more importantly web application platform, Caucho has maintained efficient & precise engineering as our mantra.

Whether today’s developers are building fat JARs, skinny JARs, WARs, microservices or even the newly branded serverless components, the Caucho Platform supports successful deployments in these fields while spurring innovation.

Registration is required to attend — sign up in advance at javasig.com

New Resources and Videos!

Recently a new tab "Case Studies & Presentations" has popped up on caucho.com. This is where we will feature use cases as Resin deployments continue to expand worldwide. Look for a new video to go up shortly detailing how one of our clients solved their hight availability needs with a Resin cluster.

We are always looking for new material to detail our clients success with Resin. If you would like to be featured, please reach out to Alexandra at garmon@caucho.com and we'll include your story.

New Partnership - Resin and ElasticBeam deliver high performance web apps and API's on demand!

Resin delivers adaptive clustering, high throughput, and health monitoring for high availability. Elastic Beam API Behavioral Security software scales and secures access to API-based applications across Private and Hybrid Cloud data centers. Together, they offer a complete solution for delivering secure web applications at scale.

Sept NL Pic

Link: Resin & ElasticBeam Data Sheet

Success stories across three industries in South Korea - Resin increases performance and reduces total cost of ownership (TCO)

As Caucho continues its global expansion, we collaborated with our Korean distributor, Xest Information Technologies, to present a high level overview of how three companies have leveraged the Caucho Platform within their architecture to simplify their development, increase their production, and significantly reduce their TCO with a unified Caucho architecture.

Check out how some of Korea’s most successful companies have migrated away from other products including WebLogic and Jeus!

Link: 3×3 Data Sheet

Hot Tip – Resin's Diagnostic Health System and Diagnosis Features

Recently we have been helping our clients diagnose issues across their runtime environment spotting errors not related to Resin while using the Resin Health System. How is this possible you ask? With our anomaly detector of course!

You can add health actions to be triggered based off the anomaly events firing of in your application to help spot network related, app related, or resource related problems your system may be struggling with.

Let’s look at a brief example of how this can be configured within Resin:

<health:AnomalyAnalyzer>

<meter>JVM|Thread|JVM Thread Count</meter>

<health-event>caucho.thread.anomaly.jvm-thread</health-event>

<min-deviation>4</min-deviation>

</health:AnomalyAnalyzer>

This AnomalyAnalyzer comes preconfigured in default Resin setups to send a health event notification to the system whenever the thread count deviates from the established baseline.

Once the health event has been triggered, any portions of the health system that are watching for those events will capture the event and proceed to run any tasks associated with them. An example health action linked to this particular health event would be the following:

<health:DumpThreads>

<health:IfHealthEvent regexp=“caucho.thread.anomaly.jvm-thread"/>

</health:DumpThreads>

For a full list of actions available, please see the following link:

http://caucho.com/resin-4.0/admin/health-checking.xtp#Healthactions

This is all of course in part to get Resin running with 99.99%, when Resin runs standalone without maintenance not only is your job made easier, but ours as well!

Upgrade to the latest version of Resin today!

Caucho Newsletter July 2017

New Releases, Partnerships and Success Stories!

“Resin Pro has the advantages of being lightweight and fast. Thanks to the fast and precise support of Xest Information Technology, Caucho’s Korean partner, we have been able to create our current Resin operating environment. I've used WebLogic, Jeus, JBoss and other app servers. Resin is the most satisfying of all of them.”

– Kyobobooks IT Team Leader Seo-ho, Cho (Kyobobooks is a leading bookstore in South Korea, with 35 bookstores and a mobile site that services 160,000 users/day).

Newsletter at a Glance

Resin 4.0.52 and 4.0.53
Case Study – ChosunILBO migration from WebLogic to Resin
Caucho Partners with NTT Data Intramart Figtree Innovation Centre in Sydney, Australia
Cool Resin tip – dispatch rule

Resin Updates

A lot of engineering work has gone into the latest release of Resin. Users see a notable growth in performance and long-term stability. Good news! We have less than 10 open bug reports, including feature requests.

Bug fixes in the new versions include:

Resin – 4.0.52

==============

- 0006051: Diffie-Hellman group vulnerability

- 0006041: com.caucho.jmx.MBeanView does not match wildcard queries

- 0006037: ByteCodeParser with jdk8 constants

- 0006042: JSP and PHP is not reloaded after modification

- 0006045: issue with mmap read

- 0006033: access.log rotation issue

- 0005920: access log not archived intermittently

- 0006049: indirection through jndi:/server/<path> removes server

- 0006047: resin-data db corruption creates large log file, prevents restart

- 0006044: stat_data.db startup time slow

- 0006038: Access log broken data

- 0005943: Dupliate Access-Log Entries when using host-level Redirect Rule with an IfMBeanEnabled condition
- 0006039: session saving issue with forward

Upcoming fixes in the new 4.0.53 (in progress)

Resin – 4.0.53

==============

- 0005951: 4.0.46 bad install over existing 4.0.37

- 0005979: Double start of application

- 0006059: PHP is not reloaded after modification

- 0006061: TempCharStream null pointer

- 0006060: UnsupportedOperationException: com.caucho.bytecode.MethodTypeConstant

- 0006055: Add log-level configuration to resin.properties
- 0006058: NullPointerException @ buildInvocation(WebAppContainer.java:847) instead of 503 Service Temporarily Unavailable

Resin 4.0.52 improves efficiency of data and log storage. Resin 4.0.53 will also include single line configuration in resin.properties for enabling/disabling health and modifying logging content & levels of resin-data.

These changes are being implemented at the request of developers. Send us your bugs at http://bugs.caucho.com/main_page.php

Case Study – Korea's largest media company increases performance by 30% and reduces TCO by 40% by migrating from WebLogic to Resin

Check out these impressive performance and cost savings results for ChosunILBO, Korea’s largest media company that also publishes the most influential newspaper in the country.

“Before Caucho, we used WebLogic in our main business systems. By migrating to Resin, we 'caught two birds with one stone’ and successfully achieved high performance. We also reduced our total cost of ownership (TCO) by 40%.”

- SeongHyun, Song, Sir. Development Team, ChosunILBO

Working with our Korean partners, Xest Information Technology, ChosunILBO replaced WebLogic with Resin. Engineers benefitted from the following changes in productivity, performance and scalability:

They could increase work efficiency rapidly by a simple setting method and configuration change
They could apply app source changes without downtime even if application source code was altered frequently
By using Resin’s lightweight and rapid restart in less than 10 seconds, they could minimize downtime and increase efficiency by over 30%

Because Resin provides seamless integration with popular frameworks including Spring, iBatis and Struts, developers used Resin as the core for their vital applications while successfully integrating their legacy applications.

Read the full ChosunILBO case study here.

Caucho Partners with NTT Data Intramart Figtree Innovation Centre

In June 2017, Caucho joined the Intramart Figtree Innovation Centre in beautiful Sydney, Australia. The partnership was formalized in San Diego by Luis Ohri, Senior VP of NTT DATA Intramart; Ricky Au, CEO of NTT Data Figtree Systems and Steve Montal, CEO of Caucho.

This technology alliance will seek strengthen NTT DATA Intramart’s sales footprint in the Asia Pacific region, while bolstering NTT DATA Figtree Systems’ technology capability and service portfolio in business process management (BPM). The Intramart Figtree Innovation Centre recognizes the significant technical benefits and synergy of incorporating Caucho products, where customers can leverage the powerful architecture of Resin, Quercus and Baratine.

The Intramart Figtree Innovation Centre will seek to develop upon the existing product IP offered by NTT DATA Figtree Systems, NTT DATA Intramart and Caucho to provide a mutually beneficial sales model and growth strategy throughout the over 5,500 existing clients, distribution channels and NTT DATA Group companies.

Caucho is honored to join the Intramart Figtree Innovation Centre. We look forward to working with our friends in Australia!

Cool Resin Tip: Dispatch Rules

Controlling flow, access, and authorization within individual web-apps is simple with Resin.

Resin's dispatching is based on a list of dispatch rules configured in the resin-web.xml or the resin.xml configuration files. Each rule has a regular expression matching request URLs. The first dispatch rule that matches takes control of the request. For example, a <resin:Redirect> sends a HTTP redirect, and a <resin:Dispatch> dispatches the request as normal.

Each matching rule can rewrite the URL using a target attribute that accepts Java regular expressions. The following rule flips the first two segments around, so /foo/bar would become /bar/foo.

Basic conditions check the request and return true if the condition matches. Conditions can check on authentication (<resin:IfUserInRole>), the remote IP (<resin:IfNetwork>), check for SSL (<resin:IfSecure>), and check for activation time (<resin:IfCron>) or if a file exists (<resin:IfFileExists>).

The rewrite conditions can also be used as security conditions, e.g. for <resin:Allow> or <resin:Deny>.An action tag can have zero condition tags or at most one. If you want combine multiple conditions, then you'll need to use composite conditions like <resin:And>, <resin:Or>, <resin:Not>, <resin:NotAnd>, and <resin:NotOr>.

Example: send 403 Forbidden if port is 80 and user is not admin

<web-app xmlns="http://caucho.com/ns/resin"
xmlns:resin="urn:java:com.caucho.resin">

<resin:Forbiddenregexp="^/secret">
<resin:And>
<resin:IfLocalPort value="80"/>
<resin:Not>
<resin:IfUserInRole role="admin"/>
</resin:Not>
</resin:And>
</resin:Forbidden>

</web-app>

Download Resin and Develop up!