877-277-2477
info@capstonecourseware.com
563-GF. Developing RESTful Services in Java
Version 2.0

Book cover

This course shows experienced Java programmers how to build RESTful web services using the Java API for RESTful Web Services, or JAX-RS. We develop a clear sense of the key concepts of REST -- ultimately the thorough and thoughtful use of URLs, HTTP methods, and media types to design and implement scalable and maintainable enterprise services. Then we dive into the elegant JAX-RS standard for building RESTful services, learning how to manage URLs and URL patterns and methods, how to bind input and control response production, and how to manage HTTP entities in popular content types such as XML and JSON.

From here students investigate intermediate features including dependency injection, error handling, and JSR-303 validation, and use Java generics to implement patterns for common operations over an application's domain classes. We explore the JAX-RS client API, and filters and interceptors, before closing with a summary chapter on REST security that includes implementations of HTTP BASIC security and HMAC signatures.

Prerequisites

  • Strong Java programming skills are essential -- Course 103 is excellent preparation.
  • Experience with other Java EE standards, especially servlets and JSP, will be very helpful in class, but is not strictly required.

Learning Objectives

  • Understand the advantages of the REST architecture for web services.
  • Use JAX-RS to develop simple RESTful services.
  • Control dispatching to service methods based on URL patterns and HTTP methods.
  • Bind request values to method parameters when expressed as HTTP query parameters, form values, headers, cookies, and more.
  • Manage XML and JSON content using XML Schema and JAXB -- or without JAXB using leading JAX-RS providers and Reflection-driven entity providers such as MOXy and Jackson.
  • Handle error conditions by producing appropriate HTTP responses.
  • Use JSR-303 validation for request parameters, headers, and entities.
  • Use Java generics to implement REST API patterns for various domain classes.
  • Take advantage of lifecycle and context services available to JAX-RS services.
  • Implement REST clients using the JAX-RS standard API.
  • Build filters and interceptors to adapt service endpoint behavior.
  • Be aware of security concerns for RESTful services and secure services appropriately.

Timeline: 5 days.

Server Support: GlassFish

  • This version of the course works with the GlassFish server. Our Java EE courses are available in variants that support various server products, including Tomcat, GlassFish, JBoss, and WebLogic. For more details, and to find a desired server-specific version of a course, see our server-support matrix.

IDE Support: Eclipse Kepler

  • In addition to the primary lab files, an optional overlay is available that adds support for Eclipse Kepler. Students can code, build, deploy, test, and debug all exercises from within the IDE. See also our orientation to Using Capstone's Eclipse Overlays.

Chapter 1. Overview of REST and JAX-RS

  • The REST Vision
  • Use of HTTP
  • Use of URIs
  • Use of Content Types
  • CRUD Operations and Business Operations
  • HATEOAS and the Richardson Maturity Model
  • JAX-RS
  • Applications, Resources, and Providers

Chapter 2. Configuration and Lifecycle

  • The JAX-RS Application
  • XML Configuration
  • Annotation-Driven Configuration
  • Applications
  • Root Resource Classes
  • Per-Request vs. Singleton Lifecycle
  • Providers

Chapter 3. Dispatching Requests

  • The Application Path
  • The @Path Annotation
  • The HTTP Method Annotations
  • Sub-Resource Locators
  • Annotation Inheritance and overriding
  • @XXXParam Annotations
  • The @DefaultValue Annotation
  • Parameter Types
  • Parameter Converters

Chapter 4. Handling Requests

  • The Application Path
  • The @Path Annotation
  • The HTTP Method Annotations
  • Sub-Resource Locators
  • Annotation Inheritance and overriding
  • @XXXParam Annotations
  • The @DefaultValue Annotation
  • Parameter Types
  • Parameter Converters

Chapter 5. Producing Responses

  • Supported Return Types
  • The Response Class
  • Response Entities
  • Binary Content
  • Delivering a File

Chapter 6. Entity Translation

  • Entity Parameter and Return Type
  • Entity Providers
  • @Consumes and @Produces Annotations
  • Built-In Entity Providers
  • Custom Entity Providers

Chapter 7. Working with XML and JSON

  • The JAXB Entity Provider
  • Driving XML Representations from Schema
  • Driving JSON Representations with JAXB
  • JSON Without JAXB: Jackson, MOXy, etc.
  • CRUD Patterns
  • Error Handling
  • Sub-Resources

Chapter 8. Dependency Injection

  • The @Context Annotation
  • Injectable Types
  • The Application Subclass
  • Servlet Configuration and Context
  • Impact of Lifecycle Policies
  • Context Providers
  • Using CDI

Chapter 9. Validation and Error Handling

  • Using Response
  • Throwing WebApplicationException
  • Exception Mapping Providers
  • Selection of Exception Mappers
  • Support for JSR-303
  • Annotating Method Parameters
  • Annotating Entity Classes
  • Error Reporting

Chapter 10. Generic Services

  • Generic Entities
  • Generic Entity Providers
  • ParameterizedType
  • Reflection-Driven Entity Providers
  • Annotation Inheritance
  • CRUD Patterns, II
  • Serialization, Recursion, and Scope
  • Dynamic Sub-Resources

Chapter 11. Working with Databases

  • Persistence Services
  • The Java Persistence API
  • JPA Support for JSR-303
  • Handling IDs and Keys
  • Cascading
  • Caching
  • Error Handling
  • Hypermedia Challenges

Chapter 12. The Client API

  • The Builder Pattern
  • Client
  • WebTarget
  • Invocation
  • Basic Usage
  • Managing Content Types and Entities
  • Error Handling
  • Registering Providers
  • The Service Locator Pattern
  • Generic Clients

Chapter 13. Filters and Interceptors

  • The Filter Interfaces
  • Processing Pattern
  • The Request and Response Context Interfaces
  • Aborting a Request
  • The Interceptor Interfaces
  • Adaptive Streams
  • Filters on the Client Side
  • Interceptor Strategy for Hypermedia

Chapter 14. Security

  • Concerns for RESTful Services
  • Authentication and Authorization
  • HTTP BASIC and DIGEST
  • HTTPS
  • Programmatic Security
  • SQL Injection
  • Cross-Site Request Forgery
  • Message-Level Security
  • HMACs

Chapter 15. The Java API for XML Binding

  • The Need for Data Binding
  • XML Schema
  • Two Paths
  • JAXB Compilation
  • Mapping Schema Types to Java
  • Java-to-XML Mapping Using Annotations
  • Marshalling and Unmarshalling
  • Working with JAXB Object Models

System Requirements

Hardware Requirements (Minimum) i5 1.8 GHz, 4 gig RAM, 1 gig disk space.
Hardware Requirements (Recommended) i5 2.8 GHz, 8 gig RAM, 1 gig disk space.
Operating System Tested on Windows 7/8 and Mac OS 10.8.5. Course software should be viable on all systems which support a Java SE 7 Developer's Kit.
Network and Security Limited privileges required -- please see our standard security requirements.
Software Requirements All free downloadable tools.