How to Push to a GitHub Repository in IntelliJ

-
Image
1. Initialize and Connect the Git Repository # Run in the terminal from the project root git init git remote add origin https://github.com/[user]/[repository].git 2. Configure Git in IntelliJ Select VCS → Enable Version Control Integration . Choose Git and click OK . 3. Connect Your GitHub Account Go to File → Settings (on Windows) or IntelliJ IDEA → Preferences (on macOS). Navigate to Version Control → GitHub . Click Add Account ( + ). Select Log In with Token... and enter your GitHub Personal Access Token. 4. Add and Commit Files Go to VCS → Git → Add (or use the shortcut Ctrl+Alt+A ). Select the files you want to commit. Go to VCS → Commit (or use the shortcut Ctrl+K ). Write a commit message and click Commit . 5. Push Go to VCS → Git → Push (or use the shortcut Ctrl+Shift+K ). Click the Push button. Simpler Method (Using IntelliJ's Built-in Feature) Go to VCS → Share Project on GitHub . Set the repository name to vita-user-...
Post a Comment

Spring Boot Actuator, How to Monitor Application Health with actuator-health

-

Spring Boot Actuator


Spring Boot Actuator provides a wide range of features to monitor and manage your application when it's deployed in a production environment. These features can be accessed via HTTP endpoints or JMX, and they automatically enable capabilities such as auditing, health checks, and metrics collection in your application.

Actuator is essential in cloud-native and microservice architectures, allowing real-time monitoring of application status, metrics, and traffic data. In particular, the /actuator/health endpoint offers a basic mechanism to check if the application is running properly, making it crucial for integration with load balancers, Kubernetes, and other orchestration tools.

Spring Boot Actuator Setup

1. Add Actuator Dependency

  • pom.xml (maven)
<dependencies>
    <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-starter-actuator</artifactId>
    </dependency>
</dependencies>

2. Configure application.yaml

management:
  endpoints:
    web:
      exposure:
        include: health,info  # expose only selected endpoints
  endpoint:
    health:
      show-details: always   # 'always' for dev, 'never' for production

If you don't specify management.server.port, actuator endpoints will run on the main application port (e.g., 8080).

Enable Liveness & Readiness Probes

  • Spring Boot 2.3.2+ allows you to enable Kubernetes-compatible health probes:
management:
  endpoint:
    health:
      probes:
        enabled: true
  health:
    livenessState:
      enabled: true
    readinessState:
      enabled: true

From Spring Boot 2.3, Actuator automatically provides /actuator/health/liveness and /actuator/health/readiness endpoints.

  • The liveness probe checks only if the JVM is alive, while the readiness probe includes dependencies like databases to determine if the app is ready to receive traffic.
  • This separation prevents unnecessary container restarts due to temporary dependency issues (e.g., database downtime).
  • Kubernetes also supports a startup probe, but Actuator does not provide a dedicated endpoint for this. It is common to reuse the liveness endpoint for startup probes.

4. Security Configuration

  • By default, Spring Boot Actuator is protected. To allow access to /actuator/health, update your Spring Security config:
http
	.authorizeHttpRequests(auth -> auth
		.requestMatchers(
		  "/api/v1/public/", // public API
		  "/actuator/**",    // allow actuator access
		).permitAll()
	.requestMatchers(  
		  "/api/v1/users/**",
	).authenticated()  
	.anyRequest().authenticated()

Note: If permitAll() is not specified, the endpoint will require authentication and result in a 403 Forbidden error.

Key Actuator Endpoints

Spring Boot Actuator exposes several endpoints, each serving specific monitoring or management purposes. Common endpoints include:

Endpoint Purpose
/actuator/health Shows application health status
/actuator/health/liveness Checks if JVM is alive (K8s liveness probe)
/actuator/health/readiness Checks if app is ready for traffic (K8s readiness probe)
/actuator/info Displays application info
/actuator/metrics Exposes performance and system metrics
/actuator/env Displays environment properties
/actuator/loggers Shows and modifies logger configuration
/actuator/beans Lists all Spring beans
/actuator/prometheus For Prometheus metrics scraping (requires Micrometer)

Endpoints are exposed under the /actuator base path by default.

Deep Dive: /actuator/health

The /actuator/health endpoint is the simplest and most essential way to confirm your application is running correctly. It can show not only the overall status but also details such as database connections, disk space, and other dependencies.

Health Status Types

  • UP: Component or subsystem is working as expected
  • DOWN: Component is not functioning
  • OUT_OF_SERVICE: Temporarily unavailable
  • UNKNOWN: Status cannot be determined

Example:

$ curl http://your-domain.com:port/actuator/health

{
  "status": "UP"
}

Real-World Use Cases

1. Cloud & On-Premise Monitoring

  • In cloud (GCP, AWS, Azure) and on-premise environments, /actuator/health is used to periodically verify application health.
  • It also integrates well with monitoring tools like Prometheus, Grafana, and Datadog for real-time status visibility.

2. Kubernetes Integration: Liveness & Readiness Probes

Since Spring Boot 2.3, Actuator supports Kubernetes-native probes, enhancing cloud-native operations.

  • Readiness Probe: Indicates if the app is ready to handle traffic.
  • Liveness Probe: Indicates if the app is still alive and whether the container needs to be restarted.

These are exposed as:

  • /actuator/health/liveness
  • /actuator/health/readiness

Example configuration for Kubernetes:

livenessProbe:
  httpGet:
    path: /actuator/health/liveness
    port: 8080
  initialDelaySeconds: 5
  periodSeconds: 10

3. Incident Detection & Alerts

  • When /actuator/health returns DOWN or OUT_OF_SERVICE, you can integrate with Datadog, Zabbix, Opsgenie, etc., to send alerts via Slack, email, or SMS.

4. CI/CD Automation

  • After deployment, if /actuator/health returns 200 OK with "status": "UP", the deployment is considered successful; otherwise, the pipeline can trigger an automatic rollback.

Common Errors & How to Fix Them

❗403 Forbidden

  • Cause: Missing security configuration (permitAll not set)
  • Log example:
o.s.s.w.a.Http403ForbiddenEntryPoint : Pre-authenticated entry point called. Rejecting access
  • Solution: Allow public access to /actuator/** in your Spring Security configuration.

❗404 Not Found

  • Causes:

    1. Actuator dependency is missing.
    2. Endpoint not exposed in application.yaml.
    3. Endpoint misrouted to static resources.

  • Log example:

org.springframework.web.servlet.resource.NoResourceFoundException: No static resource actuator/health.

  • Solution:

    • Check dependencies, exposure settings, and endpoint paths.
    • Remember that all actuator endpoints are exposed under the /actuator base path.
Location: Calgary, AB, Canada

Comments

Post a Comment

Popular posts from this blog

Resolving Key Exchange Failure When Connecting with SecureCRT to OpenSSH

-
Image
Recently, after installing OpenSSH on my Ubuntu 22.04 laptop, I encountered a challenge while trying to establish a connection using SecureCRT. An error message appeared: Key exchange failed. No compatible key-exchange method. The server supports these methods:   curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,sntrup761x25519-sha512@openssh.com,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com The following key-exchange method(s) are supported but not currently allowed  for this session:   curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,sntrup761x25519-sha512@openssh.com,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com,curve25519-sha256 Key-exchange m...
Read more

SecureCRT] How to Back Up and Restore SecureCRT Settings on Windows

-
Image
If you're a frequent user of SecureCRT , backing up your session settings and restoring them later is crucial—especially when migrating to a new PC or recovering from a crash. In this guide, you’ll learn how to manually back up and restore SecureCRT settings on Windows , ensuring you never lose your configurations again. Does SecureCRT Have a Built-in Export/Import Feature? Yes, SecureCRT provides built-in export and import features in the Tools menu. However, these features may not capture all configuration details such as: Backup scripts Custom login scripts Certain session-specific files Therefore, if you want to completely clone your SecureCRT environment—including every session and customization—the safest option is to manually back up the entire Config folder. What Is the SecureCRT Config Folder? SecureCRT stores your personal settings (sessions, host keys, global options, etc.) in a folder located at: C:\Users\<Your username>\AppData\Roaming\VanDyke\Config Th...
Read more

How to Set Up Vaultwarden (Bitwarden) on Synology NAS (Best Free Alternative to LastPass)

-
Image
Have you ever felt overwhelmed managing passwords for all your websites? I used to use the same password across multiple sites , which wasn’t secure. To manage them better, I started using LastPass for years. However, in 2019, they changed their pricing policy — now it’s free only for one device for 30 days, and you have to pay to use it across multiple devices . If you're looking for a powerful and free password manager, Vaultwarden is one of the best alternatives to LastPass. What is Vaultwarden? Vaultwarden (formerly known as Bitwarden_RS) is a lightweight, open-source implementation of the Bitwarden server API written in Rust . It is fully compatible with official Bitwarden clients and is ideal for low-resource environments. Example: On a Synology DS916+, Vaultwarden uses 0% CPU and only 64MB of memory while running. My Setup NAS Model : Synology DS916+ DSM Version : DSM 7.1-42661 Update 1 Docker Image : vaultwarden/server Ins...
Read more