Oracle Cloud Infrastructure SDK for Java
About
oci-java-sdk provides an SDK for Java that you can use to manage your Oracle Cloud Infrastructure resources.
The project is open source and maintained by Oracle Corp. The home page for the project is here.
The OCI Java SDK versions 1.x.y and 2.x.y are now referred as OCI Legacy Java SDK. Any updates or bug fixes related to OCI Legacy Java SDK can be found in legacy/v2/master branch. Please refer README.md to learn more about these legacy versions.
This Github repository will refer to OCI Java SDK version 3.x.y by default where support for new features and services will be added.
Documentation
Full documentation, including prerequisites, installation, supported JDK versions and configuration instructions, is available here.
API reference can be found here.
Installation
For basic set up, see Getting Started.
For details on compatibility, advanced configurations, and add-ons, see Configuration.
- Circuit Breaker: By default, circuit breaker feature is enabled, if it is not expected, please explicitly set the environment variable:
export OCI_SDK_DEFAULT_CIRCUITBREAKER_ENABLED=FALSE
Changes Introduced In OCI Java SDK 3.x.y
For full details, look at the changelog for version 3.0.0-beta1.
HTTP client library is pluggable
There is no HTTP client library configured by default. The OCI Java SDK offers the following two choices for HTTP client libraries to choose from.
-
Jakarta EE 8/Jersey 2 - bmc-common-httpclient-jersey
-
Jakarta EE 9/Jersey 3 - bmc-common-httpclient-jersey3
-
The OCI Java SDK does not choose an HTTP client library for you, and there is no default. You have to explicitly choose one, by declaring a dependency on
oci-java-sdk-common-httpclient-jerseyoroci-java-sdk-common-httpclient-jersey3 -
Example:
<dependency> <!-- Since this is the "application" pom.xml, we do want to choose the httpclient to use. --> <groupId>com.oracle.oci.sdk</groupId> <artifactId>oci-java-sdk-common-httpclient-jersey</artifactId> </dependency>
Serializer/Deserializer is pluggable
- The serializer is now pluggable and determined by the
HttpProvider. For the Jersey 2 and Jersey 3 HTTP clients, Jackson continues to be used as the serializer - As part of the pluggable Serializer changes, when using the Jersey and Jersey 3 HTTP clients, the underlying Jackson
ObjectMappercan now be obtained usingcom.oracle.bmc.serialization.jackson.JacksonSerializer.getDefaultObjectMapper(). Thecom.oracle.bmc.http.client.Serialization.getObjectMapper()method does not exist anymore.
Invocation callbacks
Instead of using com.oracle.bmc.util.internal.Consumer<Invocation.Builder> to register invocation callbacks, use com.oracle.bmc.http.client.RequestInterceptor instead, to decouple the implementation from the choice of the HTTP client.
Client configuration has been simplified
com.oracle.bmc.http.ClientConfigurator has a single customizeClient(HttpClientBuilder builder) method, instead of customizeBuilder, customizeClient, and customizeRequest methods. Example:
IdentityClient.builder()
.clientConfigurator(
builder -> {
builder.property(
StandardClientProperties.BUFFER_REQUEST, false);
})
// ...
.build(authenticationDetailsProvider);
- For a comprehensive list of pre-defined settable properties, see
- You can also define your own properties.
- The actual properties that can be set depends on the HTTP client you are using.
Specific client configuration examples
Setting whether to buffer a request
builder.property(
StandardClientProperties.BUFFER_REQUEST, shouldBuffer);
Setting an Apache connection manager
builder.property(
ApacheClientProperties.CONNECTION_MANAGER,
connectionManager);
Setting a trust store
// Server CA goes into the trust store
KeyStore trustStore =
keystoreGenerator.createTrustStoreWithServerCa(tlsConfig.getCaBundle());
builder.property(StandardClientProperties.TRUST_STORE, trustStore);
Setting a key store
builder.property(
StandardClientProperties.KEY_STORE,
new KeyStoreWithPassword(keyStore, keystorePassword));
Setting the SSL context
builder.property(
StandardClientProperties.SSL_CONTEXT, sslContext);
Setting a proxy
builder.property(
StandardClientProperties.PROXY, proxyConfig);
Setting a hostname verifier
builder.property(
StandardClientProperties.HOSTNAME_VERIFIER,
NoopHostnameVerifier.INSTANCE);
More client configuration examples
- ApacheConnectorPropertiesExample.java
- HttpProxyExample.java
- DisableNoConnectionReuseStrategyUsingApacheConfiguratorExample.java and DisableNoConnectionReuseStrategyUsingApacheConfiguratorExample.java (Jersey 3)
Apache Connector changes
There were numerous changes to decouple the implementation from the choice of the HTTP client.
com.oracle.bmc.http.ApacheConfigurator, has been replaced bycom.oracle.bmc.http.client.jersey.ApacheClientPropertiesorcom.oracle.bmc.http.client.jersey3.ApacheClientProperties(for Jersey 3).-
For clients that should not buffer requests into memory:
ObjectStorageClient nonBufferingObjectStorageClient = ObjectStorageClient .builder() .clientConfigurator(builder -> { builder.property(StandardClientProperties.BUFFER_REQUEST, false); builder.property(ApacheClientProperties.RETRY_HANDLER, null); builder.property(ApacheClientProperties.REUSE_STRATEGY, null); }) .region(Region.US_PHOENIX_1) .build(provider); -
For clients that should buffer requests into memory:
IdentityClient bufferingIdentityClient = IdentityClient .builder() .clientConfigurator(builder -> { builder.property(StandardClientProperties.BUFFER_REQUEST, true); builder.property(ApacheClientProperties.RETRY_HANDLER, null); builder.property(ApacheClientProperties.REUSE_STRATEGY, null); }) .region(Region.US_PHOENIX_1) .build(provider);-
See DisableNoConnectionReuseStrategyUsingApacheConfiguratorExample.java and DisableNoConnectionReuseStrategyUsingApacheConfiguratorExample.java (Jersey 3)
-
Also consider using
com.oracle.bmc.http.client.jersey.apacheconfigurator.ApacheConfigurator from theoci-java-sdk-addons-apache-configurator-jerseyadd-on module; orcom.oracle.bmc.http.client.jersey3.apacheconfigurator.ApacheConfiguratorfrom theoci-java-sdk-addons-apache-configurator-jersey3` add-on module.
-
-
Circuit breaker changes
- The circuit breaker interface has been renamed from
com.oracle.bmc.circuitbreaker.JaxRsCircuitBreakertocom.oracle.bmc.circuitbreaker.OciCircuitBreaker - Instead of using the constructor of
com.oracle.bmc.circuitbreaker.CircuitBreakerConfiguration, use the builder. The constructor is not public anymore. - The
com.oracle.bmc.util.CircuitBreakerUtilsclass does not deal with actual circuit breakers anymore, just withcom.oracle.bmc.circuitbreaker.CircuitBreakerConfiguration. As such, theDEFAULT_CIRCUIT_BREAKERfield and thegetUserDefinedCircuitBreakermethod were removed. Construct a new circuit breaker from the default configuration if necessary using the build methods incom.oracle.bmc.circuitbreaker.CircuitBreakerFactory.
Moved classes
- Class
com.oracle.bmc.Optionswas moved tocom.oracle.bmc.http.client.Options - Class
com.oracle.bmc.http.Serializationwas moved tocom.oracle.bmc.http.client.Serializationand is available from OCI Java SDK versions3.0.0to3.13.1 - Class
com.oracle.bmc.io.DuplicatableInputStreamwas moved tocom.oracle.bmc.http.client.io.DuplicatableInputStream
Long deprecated code was removed
- The signing strategy
OBJECT_STORAGEwas removed fromcom.oracle.bmc.http.signing.SigningStrategy; it had been deprecated for years and had been replaced byEXCLUDE_BODY. - The
getPublicKey()andgetPrivateKey()methods were removed fromcom.oracle.bmc.auth.SessionKeySupplierand implementing classes; they had been deprecated for years and had been replaced by thegetKeyPair()method.
Removed code
- The
setInstanceMetadataServiceClientConfigmethod incom.oracle.bmc.Regionwas removed; it never had any effect. AbstractFederationClientAuthenticationDetailsProviderBuilder.simpleRetrymethod has been removed without replacement, since it is not needed in the OCI Java SDK 3.0.0 and higher.- You can copy and paste the previous implementation if you need it.
- Starting OCI Java SDK version
3.14.0, classcom.oracle.bmc.http.client.Serializationhas been removed.
Removed dependencies on the following third-party libraries
- Guava: Guava types have been replaced with JDK types:
com.google.common.base.Optionalhas been replaced withjava.util.Optionalcom.google.common.base.Functionhas been replaced withjava.util.function.Functioncom.google.common.base.Predicatehas been replaced withjava.util.function.Predicatecom.google.common.base.Supplierhas been replaced withjava.util.function.Supplier
Examples
Examples for OCI Java SDK 3.x.y can be found bmc-examples/src/main/java.
Example for Jersey 2 as HTTP client library (OCI Java SDK 3.x.y)
In order to use Jersey 2 as HTTP client library, a dependency on oci-java-sdk-common-httpclient-jersey needs to be explicitly declared in application's pom.xml. Please refer bmc-jersey-examples/pom.xml
Examples for Jersey 2 as HTTP client library can be found in bmc-other-examples/bmc-jersey-examples
Example for Jersey 3 as HTTP client library (OCI Java SDK 3.x.y)
In order to use Jersey 3 as HTTP client library, a dependency on oci-java-sdk-common-httpclient-jersey3 needs to be explicitly declared in application's pom.xml. Please refer bmc-jersey3-examples/pom.xml
Examples for Jersey 3 as HTTP client library can be found in bmc-other-examples/bmc-jersey3-examples
Example for OCI Legacy Java SDK (OCI Java SDK 1.x.y and 2.x.y)
Examples for OCI Legacy Java SDK can be found here.
Help
For details on contributions, questions, or feedback, see Contact Us.
Changes
See CHANGELOG.
Contributing
oci-java-sdk is an open source project. See CONTRIBUTING for details.
Oracle gratefully acknowledges the contributions to oci-java-sdk that have been made by the community.
Known Issues
You can find information on any known issues with the SDK here and under the “Issues” tab of this GitHub repository.
To learn about known issues with OCI Legacy Java SDK, please refer Known Issues in OCI Legacy Java SDK
Potential data corruption issue with OCI Java SDK on binary data upload with RefreshableOnNotAuthenticatedProvider
Details: When using version 1.25.1 or earlier of the OCI Java SDK clients that upload streams of data (for example ObjectStorageClient or FunctionsInvokeClient), either synchronously and asynchronously, and you use a RefreshableOnNotAuthenticatedProvider (for example, for Resource Principals or Instance Principals) you may be affected by silent data corruption.
Workaround: Update the OCI Java SDK client to version 1.25.2 or later. For more information about this issue and workarounds, see Potential data corruption issue for OCI Java SDK on binary data upload with RefreshableOnNotAuthenticatedProvider.
Direct link to this issue: Potential data corruption issue with OCI Java SDK on binary data upload with RefreshableOnNotAuthenticatedProvider
Program hangs for an indefinite time
If the request to the server hangs for an indefinite time and the program gets stuck, it could be
because the connection is not released from the Apache connection
pool. If you're calling APIs that return a binary/stream response,
please make sure to close all the streams returned from the response to release the connections from the connection pool in case of partial reads. If reading the stream completely, the SDK will
automatically try to close the stream to release the connection from the connection pool, to disable this feature of auto-closing streams on full read, please call Options.shouldAutoCloseResponseInputStream(false). This is because the SDK for Java supports the Apache Connector for sending requests and managing connections to the service. By default, the Apache Connector supports connection pooling and in the cases where the stream from the response is not closed, the connections don't get released from the connection pool and in turn results in an indefinite wait time. This can be avoided either by closing the streams or switching back to the Jersey default connector, i.e. HttpUrlConnector. You can find more information about the same in the OCI Java SDK Troubleshooting section.
Performance issues and switching between connection closing strategies with the Apache Connector
The Java SDK supports the Apache Connector as the default. The Apache Connector supports the use of two connection closing strategies - ApacheConnectionClosingStrategy.GracefulClosingStrategy and ApacheConnectionClosingStrategy.ImmediateClosingStrategy.
When using ApacheConnectionClosingStrategy.GracefulClosingStrategy, streams returned from response are read till the end of the stream when closing the stream. This can introduce additional time when closing the stream with partial read, depending on how large the remaining stream is.
Use ApacheConnectionClosingStrategy.ImmediateClosingStrategy for large files with partial reads instead for faster close. One of the disadvantages of using
ApacheConnectionClosingStrategy.ImmediateClosingStrategy on the other hand takes longer when using partial read for smaller stream size (< 1MB). Please consider your use-case and change accordingly. For more info please look into : https://github.com/oracle/oci-java-sdk/blob/master/ApacheConnector-README.md.
Note : If both the above Apache Connection closing strategies do not give you optimal results for your use-cases, please consider switching back to Jersey Default HttpUrlConnectorProvider.
For more info on Apache Connector, please look into ApacheConnector-README.
License
Copyright (c) 2016, 2020, Oracle and/or its affiliates. All rights reserved. This software is dual-licensed to you under the Universal Permissive License (UPL) 1.0 as shown at https://oss.oracle.com/licenses/upl or Apache License 2.0 as shown at http://www.apache.org/licenses/LICENSE-2.0. You may choose either license.
See LICENSE for more details.