Post on 18-Jan-2017
ENTERPRISE 2.0 WITH OPEN SOURCE
Frameworks like Agorava
Who am I?
2 © 2012-2016 Creative Arts & Technologies
Werner Keil
• Consultant – Coach• Creative Cosmopolitan• Open Source Evangelist• Software Architect• JCP EC Member• Agorava Co Founder• JSR-363 Co Spec Lead• IoT Enabler …
Twitter @wernerkeil
Email werner@catmedia.us
Proliferation
3 © 2012-2016 Creative Arts & Technologies
Proliferation of Social Media
4 © 2012-2016 Creative Arts & Technologies
Social Gaga
Image © 2012 Lady Gaga. All Rights Reserved.
Before Java Social(JSR 357)
6 © 2012-2016 Creative Arts & Technologies
Twitter4J
• Twitter4J is an unofficial Java library for Twitter API.With Twitter4J, you can easily integrate your Java application with Twitter.
• Its author, Yusuke Yamamoto used to work at Twitter. While he did, he was briefly meant to represent Twitter in the Social JSR (357) EG.
• It’s light and compatible even with Java 1.4 to be integrated e.g. in mobile apps
Scribe Java
• Scribe is Java framework that provides basic OAuth function
• It also contains configuration for a lot of Social Media
• Only one dependency on Apache Common Codec
• Was at the heart of Agorava 0.5
DaliCore – CMS
• More than a CMS → DaliCore• Adds functionality common to users, content and permissions on top of Java EE 6.
• Focus on Users and Permissions.• In about every DaliCore project, users should be able to login with existing credentials (Facebook, Twitter, Google Connect,...)
• Dali modules extend DaliCore
Spring Social
• Spring social somewhat inspirational to Seam Social and Agorava has been around a bit longer
• Spring Social module were used to create first Agorava modules (thanks to OSS and ASL2)
• But it’s Spring a only module....
Along came JSR 357
• In march 2012 on Werner Keil’s initiative, Java Social was submitted to the JCP to become a JSR
• It proposed to standardize high level access to Social Media for the Java Platform
• It was voted down by 8 votes against 5
Image © 2003 Universal Pictures. All Rights Reserved.
What went Wrong? (Feedback from vote)
Too Broad?
Maybe...
14
Too Soon?
Lack of real POC...
15
It can’t be standardized?
FALSE
16
Standard part in Social Media•All social medias use REST as transmission protocol
•Most of them transmit data in JSON format and some in XML
• Identification & Authentication are almost entirely based on OAuth protocol
17
REST•REpresentational State Transfer : Requests about resource representation (customer, book, order)
•REST is based on low level HTTP•Each resource has a unique identifier (URI). 4 HTTP verbs can be applied to a URI : GET, POST, PUT, DELETE
•Java has REST standard: JAX-RS. Version 1.0 didn’t provide client API yet, JAX-RS 2.0 does
18
1: { 2: "firstName": "John", 3: "lastName" : "Smith", 4: "age" : 25, 5: "address" : 6: { 7: "streetAddress": "21 2nd Street", 8: "city" : "New York", 9: "state" : "NY",10: "postalCode" : "10021"11: },12: "phoneNumber":13: [14: {15: "type" : "home",16: "number": "212 555-1234"17: },18: {19: "type" : "fax",20: "number": "646 555-4567"21: }22: ]23: }
JSON•JavaScript Object Notation: Data format inspired by JavaScript. It became a standard for online services including Social Media.
19
OAuth•OAuth is a protocol to delegate rightsfor an application to act on the behalf of a user who granted its rights without giving away login / password
•Developed by Twitter, Magnolia and Google, it was made standard by IETF in April 2010 under RFC 5849
20
OAuth (2)•Version 2.0, simpler to use but often criticized for too many implementation was standardized in October 2012 under RFC 6749 and 6750. Already widely used (Facebook, Google, Microsoft)
•All Social Media services are based on OAuth 1.0a or 2.0.
•To use OAuth, one has to create an application on the targeted service to have an entry point for consumer
OAuth has 3 steps•Creating an application in an OAauth service
• Initialization: right grantingphase also called OAuth Dance. At its end we obtain an access token (formed by public and secret part) to use in next step
•Signature: each request is signed with an access token identifying the OAuth application granted rights to
Image © 2003 Universal Pictures. All Rights Reserved.
Standards that didn’t make it
Some Images © 2003 Universal Pictures. All Rights Reserved.
23
OpenSocial Container
•Become an OpenSocial ContainerGet Shindig (PHP or Java) or Google implementations*
• http://shindig.apache.org • Look at examples & documentation
• http://code.google.com/p/opensocial-resources/wiki/SampleApps
• * See later why
OpenSocial
24
• Open source implementation of OpenSocial & Gadgets specification
• An Apache Software project• Available in Java & PHP• http://shindig.apache.org
It’s Goal: “Shindig's goal was to allow new sites to start hosting social apps in under an hour's worth of work“•Those who tried it confirm, this failed•And in 2015 Apache archived Shindig
OpenSocial – Shindig
Simple gadgets for getting a Grid proxy credential and running remote commands. Both run on my ownWeb server.
OpenSocial – What is a Gadget?
25 © 2012-2016 Creative Arts & Technologies
The “official” OpenSocial implementation has shifted – from Shindig to Google Code https://code.google.com/p/opensocial-resources/ And just plans to move yet again, this time to GitHub!In fact, Google’s OpenSocial Ruby Gem moved there 4 years ago, and the code hasn’t changed sincehttps://github.com/revans/opensocial (original Google Code SVN by MySpace also still exists;-)
OpenSocial Fork
26 © 2012-2016 Creative Arts & Technologies
27
Who uses OpenSocial?•Social “Herrings”
• MySpace• Orkut• Friendster• Hi5• Jive• IBM (Lotus Notes;-)
28
Who does not useOpenSocial?
•Big “Fish”• Facebook• Twitter• LinkedIn• XING*• Yammer• Foursquare• Google+
... * Abandoned it for lack of Security among other reasons
29
• OpenSocial is what Google created for MySpace(Yammer CTO and co-founder Adam Pisoni)
• Out of the box, most gadgets are publicly available content that do not require authentication and authorization.(ThoughtWorks Studios about OpenSocial gadgets)
What’s said about OpenSocial
30
• OpenSocial is a specification that provides a standard way to share content between semi-trusted applications.
• While initially proposed for public facing social networking sites, it has possibly more potentialwithin the corporate firewall(ThoughtWorks Radar, March 2012)
• Latest twist: OpenSocial was proposed as W3C recommendation
What’s said about OpenSocial (2)
31
Sun MicrosystemsSocialsite: Shindig + gadget based UI
written in JavaOpen Source https://socialsite.dev.java.net/
SocialSite – Sun’s Approach to Social
32
The non Standard parts•No standard identity management or any other API across Social Media(for Java JSR 351 tries to establish that)
•More than that. There is no Social Media that guarantee:
• Its API won’t change for a given period
• Backward compatibility when its API changes
33
•A basic heart providing basic services :• OAuth and Rest request• Multi Social Media connections• Polymorphic services to enforce standard on social Media• Connector definition for Social module
•So this standard would be a kind Java Social Connector definition standard
What would be a standard for Social?
34
From JSR 357 to Agorava•Before Agorava there was Seam Social, part of the JBoss Seam 3 project
•Early 2012, Seam was stopped to be merged in Apache DeltaSpike
•Agorava was born mainly from Seam Social after JSR 357 attempt
•One of it’s goals is to be the missing POCfor a new Java Social Standard
Differences to Spring Social•Spring Social works primarily with Spring•Other UI frameworks than Spring MVC are harder to integrate
•Focus on Facebook, so far examples only provide Single Service support, unlike Agorava Multiservice approach
Differences to Spring Social (2)•Despite otherwise still somewhat activeSpring community, even at Pivotal / Vmware there’s doubt about support and activity, especially after some people left
•Currently supports .NET, too
Differences to DaliCore•Also offering Social Container and CMS, partial OpenSocial support
•Persistence support via EJB, JPA, etc.•Not so clear separation of modules, especially API/Spec and Implementation, in most cases they share same module and even package
•DaliCore no longer Open Source
37 © 2012-2016 Creative Arts & Technologies
49
Differences to DaliCore (2)•Currently seems a little heavier, strong dependencies on the Full Java EE stack, i.e. using only Web Profile or Java SE seems hard right now
•Glassfish support and IntegrationOracle stopped professional GF support
•Demonstrated Scalability also under heavy usage
38 © 2012-2016 Creative Arts & Technologies
Differences to Oracle SocialLink•Feels almost like Eclipse or Microsoft project (ISocialNetwork)
•Still very new, looks immature in several areas•Seemingly non-existent community support•No Modularity or separation between API and Implementation
•Last commit 3 years ago, so it’s practically dead
39 © 2012-2016 Creative Arts & Technologies
40
Agorava 0.7 Macro architecture
• Agorava core is the «smart module» of the framework
• Modules are mainly REST API and JSON mapping
• Agorava provides full CDI implementation
• In progress from 0.7 on:• Full Java SE support (e.g. CDI 2)• JSR 330 (Guice | Dagger, maybe
Spring) support
In Memoriam
January 8, 1947 – January 10, 2016
David Bowie
Image © 1983 EMI America Records. All Rights Reserved.
Image © 2003 Universal Pictures. All Rights Reserved.
Let’s Dance...emo...
43
Agorava Book
• A first book about Agorava is scheduled for release to print and online (Amazon, Google Play!, iTunes) this Spring.
• Agorava Project:http://agorava.org
• Github:https://github.com/agorava
#Agorava@wernerkeil@AgoravaProj
Links
44
Q & A