Daniel Garnier-Moiroux

Photo of my inbox, showing three talks accepted at Devoxx Belgium 2025

Ok, ok, this year’s @devoxx.com is going to be really fun.

But it’s also, like, a lot of work? Oh, yeah, one of those is a 3h Deep Dive 🫣

« Mettez de l’ordre dans votre code » par Jérôme Guerin (conférence partenaire)

Nouvelle conférence au programme du jeudi 25 septembre : pour notre partenaire MAIF, Jérôme Guerin vous guidera pour mettre de l’ordre dans votre code

www.paris-web.fr/202...

Panneau de signalisation de descente dangereuse en France — Wikipédia

Uh. Never thought about it. “12% slope” = “rises 12 meters over 100 meters distance” always made sense… but I have never tried to convert in degrees. My frame of reference is 0 to 15%, roughly the range of road signs we have here: fr.m.wikipedia.org/wiki/Panneau...
Different scales altogether 😅

Spring Security lead Rob Winch on Spring Security 7.0, SpringOne 2025, and more Podcast Episode · A Bootiful Podcast · 31/07/2025 · 44m

Neat episode of a Bootiful Podcast from @starbuxman.joshlong.com with @rwinch.github.io , the lead of @spring.io Security. Great insights on how the design and product decisions are made in an OSS project, and the timeframes for these.

podcasts.apple.com/gb/podcast/s...

This!

And if you plan to submit, whether at @devoxx.com or another conference, this is a great way to read a large selection of abstracts, get ideas to write your own, and see what works and doesn’t.
You don’t have to review all proposals either, just focus on a few tracks.

Nice estimate!

Your friendly reminder to finalize and submit all your drafts for @devoxx.com :)

Current #Devoxx Belgium CFP status 🔥🔥
Still 1 day and 7 hours to go #procrastination

1 day, 400 proposals? ;)

Soutenir Paris Web — Paris Web L’organisation de Paris Web est chaque année un défi à relever pour son équipe de bénévoles. Si les inscriptions couvrent une grosse part du budget, cela ne suffit pas à financer l’événement dans son entier. Pour cette raison, nous avons besoin de votre soutien.

Votre organisation aimerait soutenir Paris Web mais a des moyens très limités. Pourquoi ne pas financer un ticket diversité ?

Pour 500 €, vous pouvez permettre à une personne n'ayant pas les moyens de s'inscrire d’avoir accès aux conférences.

www.paris-web.fr/sou...

@seb.deleuze.fr’s #IntelliJIDEAConf session is now available!
See how JSpecify and NullAway can make your Spring apps safer, and what to expect in Spring Framework 7.0.
Watch the full session: youtu.be/otwr0IniwRk

Discover how to leverage WebAuthN and passkeys with Spring Boot 3.4 for secure, seamless authentication using devices like Yubikey and TouchID. Watch @garnier.wf’s Devoxx UK 2025 talk today www.devoxx.co.uk//talk?id=3000

« Passkeys, en pratique » par Daniel Garnier-Moiroux

Avec les passkeys, on a une authentification sécurisée, pratique et sans mot passe.

Découvrez comment les implémenter en pratique avec @garnier.wf !

www.paris-web.fr/202...

I would like to encourage open source projects and communities to submit BOF to Devoxx Belgium: dvbe25.cfp.dev
It's a great way to connect with your community, share your vision for the project, and get feedback.

He did it!! He mustered the will and courage, and wrote the “if (cfps.isEmpty())” condition. This is so beautiful.

You make us all proud, @brianvermeer.nl 🥰

🚨 Only 18 days left!
Got a story, idea, or insight to share?
Submit your talk and take the stage at Europe’s premier developer event: Devoxx Belgium 🇧🇪
Let your passion echo through Antwerp.
👉 dvbe25.cfp.dev

YouTube video by Spring I/O Step up the performance game with Spring Boot and Project Leyden by Moritz Halbritter @ Spring I/O

🍃 Step up the performance game with Spring Boot and Project Leyden by @0.5ritter.de @ Spring I/O 2025

▶️ Video: youtu.be/5n2pGhLoBNs

🔗 Slides: speakerdeck.com/mhalbritter/... #springio25

Community Reviewers Sign-Up for Devoxx BE '25 Sign up here if you would like to review proposals in our Call For Papers app for Devoxx Belgium 2025? Once signed up, you'll receive a CFP.DEV invite in the following days.

With nearly 250 proposals already submitted (and more on the way), our #Devoxx Belgium 2025 CFP is buzzing!
We’re now calling on the community to help review and rate talks. Interested in seeing the proposals and rating them?
Sign up @ bit.ly/4kZijmd ✨

JRush Ep 5 - Advanced Security Strategies for Java and Spring Applications YouTube video by BELLSOFT

Missed #JRush Episode 5? We’ve got you covered. The full recording is now available – and it’s packed with insights on how teams handle #Java and Spring Security challenges in 2025. Watch now: youtube.com/live/vW6n5ci...

Today I learned: infinity files in a PR 🤯

🤫 I won’t name names.

(It wasn’t Apple. Close, though 🥲)

Diagram summarizing modern OAuth 2.0 best practices. The RFC6749 OAuth Core shows four flows: Authorization Code, Implicit (crossed out), Password (crossed out), and Client Credentials. Annotations recommend PKCE and newer RFCs: RFC7636 (PKCE for confidential clients), RFC8252 (PKCE for mobile), and best practices for browser apps. A red “Security BCP” banner advises against deprecated flows. Under RFC6750 Bearer Tokens, three token transmission methods are listed: HTTP Header, POST Body, and Query String (crossed out).

Aaron Parecki on OAuth2 (for MCP servers).

Perfection 😙👌

Source: youtu.be/mYKMwZcGynw?...

Friends! Contributing to open source is awesome.

But please don’t implement a huge feature touching 100 files in your first PR without any previous contact. You likely don’t have the context: what the maintainers are trying to achieve, what their constraints are. Open an issue and discuss first!

Let’s start the Billion URL Challenge! 🚀

Thanks @cat-edelveis.bsky.social for having me, it was really fun! Loved the questions from the audience at the end, too 🔥

I'll be presenting "Secure All The Things With Spring Security" with @starbuxman.joshlong.com at #SpringOne #VMwareExplore

I hope to see you there!

event.vmware.com/flow/vmware/...

Uh what happened to my LinkedIn? I have 100 pending invites?

Oooh @starbuxman.joshlong.com published the podcast episode we recorded at @devoxx.uk about MCP security and Boot testing: bootifulpodcast.podbean.com/e/the-legend...

You too can be part of the thundering herd on my LinkedIn now 🙃

YouTube video by Spring I/O Null Safety in Java with JSpecify and NullAway by Sébastien Deleuze @ Spring I/O 2025

🍃 Null Safety in Java with JSpecify and NullAway by @seb.deleuze.fr @ Spring I/O 2025

▶️ Video: youtu.be/5Lbxq6LP7FY

🔗 Slides: 2025.springio.net/slides/null-... #springio25

Join @cat-edelveis.bsky.social and I, to chat about Passkeys integration in Spring Security!

JRush ep 5, Tuesday 17th.

Sign up, it’s free, and it’ll be fun - and secure!

Hey Martin!

Thanks for reaching out :)

Multiple filter chains only work if you have different paths groups in your app, and each path has a different set of rules.

Composite decoder would work, otherwise there’s a JwtIssuerAuthenticationManagerResolver, see docs.spring.io/spring-secur...