2.1. Stack of TERASOLUNA Global Framework

Caution

This version is already obsolete. Please check the latest guideline.

2.1.1. Summary of Software Framework of TERASOLUNA Global Framework

Software Framework being used in TERASOLUNA Global Framework is not a proprietory Framework but a combination of various OSS technologies around Spring Framework.

2.1.2. Main Structural Elements of Software Framework

Libraries which constitute TERASOLUNA Global Framework are as follows:

2.1.2.1. DI Container

Spring is used as DI Container.

• Spring Framework 3.2

2.1.2.2. MVC Framework

Spring MVC is used as Web MVC Framework.

• Spring MVC 3.2

2.1.2.3. O/R Mapper

This guideline assumes the use of any one of the below.

• JPA2.0
  • Hibernate 4.2 is used as provider.
• MyBatis 2.3.5
  • DAO(TERASOLUNA DAO) of TERASOLUNA Framework is used as wrapper.

Todo

MyBatis 3 is planned to be included here.

Note

To be precise MyBatis is “SQL Mapper”, but it is classified as “O/R Mapper” in this guidelines.

Warning

Not every project must adopt JPA. For situations in which table design has been done and “Most of the tables are not normalized”, “The number of columns in the table is too large” etc, use of JPA is difficult.

Further, this guideline does not explain the basic usage of JPA. Hence, it is pre-requisite to have JPA experience people in the team.

2.1.2.4. View

JSP is used as View.

For using Tiled JSP, use the following.

• Apache Tiles 2.2

2.1.2.5. Security

Spring Security is used as the framework for Authentication and Authorization.

• Spring Security 3.1

Todo

Update to Spring Security 3.2 is planned in future.

2.1.2.6. Validation

• For Single item input check, BeanValidation 1.0 is used.
  • For implementation, Hibernate Validator 4.3is used.
• For correlated items check, BeanValidation or Spring Validation
  • Refer to Input Validation for determining which of the two is to be used in which sitation.

2.1.2.7. Logging

• for Logger API, SLF4J is used.
  • For implementation of Logger, Logback is used.

2.1.2.8. Common Library

• https://github.com/terasolunaorg/terasoluna-gfw
• Refer to Building blocks of Common Library for details.

2.1.3. OSS Versions

List of OSS being used in version 1.0.1.RELEASE.

Type	GroupId	ArtifactId	Version	Remarks
Spring	org.springframework	spring-aop	3.2.10.RELEASE
Spring	org.springframework	spring-aspects	3.2.10.RELEASE
Spring	org.springframework	spring-beans	3.2.10.RELEASE
Spring	org.springframework	spring-context	3.2.10.RELEASE
Spring	org.springframework	spring-context-support	3.2.10.RELEASE
Spring	org.springframework	spring-core	3.2.10.RELEASE
Spring	org.springframework	spring-expression	3.2.10.RELEASE
Spring	org.springframework	spring-jdbc	3.2.10.RELEASE
Spring	org.springframework	spring-orm	3.2.10.RELEASE
Spring	org.springframework	spring-tx	3.2.10.RELEASE
Spring	org.springframework	spring-web	3.2.10.RELEASE
Spring	org.springframework	spring-webmvc	3.2.10.RELEASE
Spring	org.springframework.data	spring-data-commons	1.6.4.RELEASE
Spring	org.springframework.security	spring-security-acl	3.1.4.RELEASE
Spring	org.springframework.security	spring-security-config	3.1.4.RELEASE
Spring	org.springframework.security	spring-security-core	3.1.4.RELEASE
Spring	org.springframework.security	spring-security-taglibs	3.1.4.RELEASE
Spring	org.springframework.security	spring-security-web	3.1.4.RELEASE
JPA(Hibernate)	antlr	antlr	2.7.7	*1
JPA(Hibernate)	dom4j	dom4j	1.6.1	*1
JPA(Hibernate)	org.hibernate	hibernate-core	4.2.3.Final	*1
JPA(Hibernate)	org.hibernate	hibernate-entitymanager	4.2.3.Final	*1
JPA(Hibernate)	org.hibernate.common	hibernate-commons-annotations	4.0.2.Final	*1
JPA(Hibernate)	org.hibernate.javax.persistence	hibernate-jpa-2.0-api	1.0.1.Final	*1
JPA(Hibernate)	org.javassist	javassist	3.15.0-GA	*1
JPA(Hibernate)	org.jboss.spec.javax.transaction	jboss-transaction-api_1.1_spec	1.0.1.Final	*1
JPA(Hibernate)	org.springframework.data	spring-data-jpa	1.4.3.RELEASE	*1
MyBatis2	jp.terasoluna.fw	terasoluna-dao	2.0.5.0	*2
MyBatis2	jp.terasoluna.fw	terasoluna-ibatis	2.0.5.0	*2
MyBatis2	org.mybatis	mybatis	2.3.5	*2
DI	javax.inject	javax.inject	1
AOP	aopalliance	aopalliance	1
AOP	org.aspectj	aspectjrt	1.7.4
AOP	org.aspectj	aspectjweaver	1.7.4
Log Output	ch.qos.logback	logback-classic	1.0.13
Log Output	ch.qos.logback	logback-core	1.0.13
Log Output	org.lazyluke	log4jdbc-remix	0.2.7
Log Output	org.slf4j	jcl-over-slf4j	1.7.5
Log Output	org.slf4j	slf4j-api	1.7.5
JSON	org.codehaus.jackson	jackson-core-asl	1.9.7
JSON	org.codehaus.jackson	jackson-mapper-asl	1.9.7
Input check	javax.validation	validation-api	1.0.0.GA
Input check	org.hibernate	hibernate-validator	4.3.1.Final
Input check	org.jboss.logging	jboss-logging	3.1.0.GA
Bean conversion	commons-beanutils	commons-beanutils	1.8.3	*3
Bean conversion	net.sf.dozer	dozer	5.4.0	*3
Bean conversion	org.apache.commons	commons-lang3	3.1	*3
Date conversion	joda-time	joda-time	2.2
Date conversion	joda-time	joda-time-jsptags	1.1.1	*3
Date conversion	org.jadira.usertype	usertype.core	3.0.0.GA	*1
Date conversion	org.jadira.usertype	usertype.spi	3.0.0.GA	*1
Connection pool	commons-dbcp	commons-dbcp	1.2.2.patch_DBCP264_DBCP372	*3
Connection pool	commons-pool	commons-pool	1.6	*3
Tiles	commons-digester	commons-digester	2	*3
Tiles	org.apache.tiles	tiles-api	2.2.2	*3
Tiles	org.apache.tiles	tiles-core	2.2.2	*3
Tiles	org.apache.tiles	tiles-jsp	2.2.2	*3
Tiles	org.apache.tiles	tiles-servlet	2.2.2	*3
Tiles	org.apache.tiles	tiles-template	2.2.2	*3
Utility	com.google.guava	guava	13.0.1
Utility	commons-collections	commons-collections	3.2.1	*3
Utility	commons-io	commons-io	2.4	*3
Servlet	javax.servlet	jstl	1.2

1. Dependent libraries, when JPA is used for data access.
2. Dependent libraries, when MyBatis2 is used for data access.
3. Libraries which are not dependent on Common Library, but recommended in case of application development using TERASOLUNA Global Framework.

2.1.4. Building blocks of Common Library

Common Library includes + alpha functionalities which are not available in Spring Ecosystem or other dependent libraries included in TERASOLUNA Global Framework. Basically, application development is possible using TERASOLUNA Global Framework even without this library. It is a “nice to have” kind of existence.

No.	Project Name	Summary	Java source-code availability
(1)	terasoluna-gfw-common	general-purpose functionality irrespective of Web	Yes
(2)	terasoluna-gfw-web	Group of functionalities for creating web application	Yes
(3)	terasoluna-gfw-jpa	Dependency definition for using JPA	No
(4)	terasoluna-gfw-mybatis2	Dependency definition for using MyBatis2	No
(5)	terasoluna-gfw-security-core	Dependency definition for using Spring Security (other than Web).	No
(6)	terasoluna-gfw-security-web	Dependency definition for using Spring Security (related to Web) and extended classes of Spring Security.	Yes

The project which does not contain the Java source code, only defines library dependencies.

2.1.4.1. terasoluna-gfw-common

• Common exception mechanism
  • Exception Class
  • Exception Logger
  • Exception Code
  • Exception Logging Mechanism
• System Date
• CodeList
• Message containing processing result
• Query (SQL, JPQL) Escape
• Sequencer

2.1.4.2. terasoluna-gfw-web

• Transaction token mechanism
• Common exception handler
• Populate CodeList interceptor
• General Download View
• group of servlet filters for MDC log output
  • Parent servlet filter
  • Servlet filter for Tracking ID log output
  • Servlet filter for MDC clear
• EL function group
  • XSS counter-measures
  • URL Encoding
  • converting JavaBeans properties to query string
• JSP Tag for pagination
• JSP Tag to display result message

2.1.4.3. terasoluna-gfw-security-web

• Servlet filter for logging authenticated username
• Redirect handler for open redirect vulnerability
• CSRF counter measures (Interim measure until the introduction of Spring Security 3.2)

\newpage