The coolest thing - no more scan cards for every store

Forever I thought If I could get rid of my Giant Card, my Cvs Card, my Dicks card, my Harris Teeter card and my Gym Card, and could just have one card wouldn't that be cool. I never could figure out how to do this, but the guys at Card Star have written an iPhone app that does this for you. You just put in your codes, then you have virtual cards for all these, and don't have to carry them around anymore.

Here is what it looks like:

Great work guys! (Note, this app is free for now, download it from the app store quickly)

Java Spring/Hibernate answer to time zone support?

It seems like a very common problem that you have a Date/Time and you want it to be user local. So you ask the user for their timezone and you convert times to local when you load from the database, and you convert them to UTC when you save them to the database.

I have done this for systems in Smalltalk, Java (EJB), C++ and Ruby on Rails.

In Java(EJB) and Ruby on Rails there are hooks (Rails does automatically now with 2.1) that you can use in the persistence lifecycle to do the conversions.

My question is, what is the answer for how to do this in HIbernate/Spring? It seems people have been building on this stuff for years and there must be an obvious answer as to how to do this, but when I google, I dont seem to find anything relevant.

I have seen some stuff with the JSTL, but that doesn't work if you cant use them everywhere (which I cant in my situation).

Anyone?

A Family in need....

Merry Christmas & Happy Hanukkah to all my friends out there. If you are in the spirit for giving (do it now before you get the credit card bills :) ), there is a family I heard about from a our technical community that can use your help.  I think watching the news clip explains it much better than I can. Here is the site you can learn about them and donate.

What kind of computer to buy for Mom?

As the family nerd, I am De facto tech support for my family and extended family. Dont get me wrong, I love helping family, but after working 50-60 hours a week in front of a computer I dont have a strong desire to spend more time working on computers, so about 12 years ago I adopted a policy that all family should buy Dell's. I found that the hardware and configurations they shipped were great, they were easy to setup (I think they were one of the first to color code the wired), and their tech support was great, whenever we called with a problem, they were very friendly and usually had the right answer quickly.

Fast forward 12 years later and I have had 2 bad experiences in the past year.

Bad Experience #1 - My Grandparents live in the middle of the desert in the state of Washington, most of our family lives on the east coast. We try to get out there 1 time a year to visit. My grandma is awesome, she can use the computer very well for someone that didn't grow up with computers, when her old e-machine died we decided to get her a Dell. I was out visiting and I removed the anitvirus that came with it, and put one I prefer and I installed some remoting software I use to get in and check things out every now and then. Everything was great but a few months later she had some problems, so I had her call tech support and I was on the phone. The person had a strong accent that my grandma could not understand, but I was able to translate the technical speak he was using for her and together we fixed the problem. A month later my grandma decided not to bother me and call Dell direct when she was having some problems again, this time they had her reinstall the whole operating system which wiped out everything I had setup previously. I think too often now tech supports answer to problems is just to wipe the machine, because they are sure they can do this in 30 minutes and get the user off the phone and save money.

Bad Experience #2 - My father in law just bought a new dell, he was able to set it up himself and get it working. He went to cnn.com and part of the site said he needed a flash player but there was no 64 bit version of a flash player. My father in law has no idea what 64 bit flash player is, he just wants cnn to work on his brand new computer. So he called tech support and he was asked if he would pay $200 to get the software support so they could give him the answer to his problem. So I did some googling and apparently the new version of vista you get with Dell is 64 bit and it comes with the 32 bit version of Internet Explorer and the 64 bit version of Internet Explorer. The default one that launches from the menu bar dell delivers seems to have recently moved to the 64 bit version even though there is no flash player. This is a simple 2 minute fix that Dell should be very aware of and be able to tell their customers in 5 seconds and not charge them $200 for.

So Dell, I am sad to say I give up on you for now, I still think you produce excellent hardware at a great price, but your support needs desperate help. Anyone else out there produce a good machine for a good price with excellent US support? Suggestions?

Spring is simple...NOT

After working in rails for the past 18 months, I have a new project that takes me back into the Java world again. I am inheriting existing code, and I am amazed at how much the java world has missed the boat on simplicity. The framework Spring has become widely used and popular on the grounds that it is much more simple and easy than EJB. Well I used ejb for many years and never thought it to be that insanely complex, but Spring is for sure NOT simple.

I bought a book on it and the book on this simlple framework is 857 pages. Now to be fair the spring framework is large and covers lots of areas, but this looks more like .NET to me than simple.

My first bit of fun was just trying to get a working project that I can debug in Tomcat (I love to learn by stepping through running code), when I started up my debug server I got this error:

Caused by: org.springframework.beans.factory.BeanDefinitionStoreException: Error registering bean with name 'myBean' defined in class path resource [my.xml]: Could not resolve placeholder 'myapp.myprop'
	at org.springframework.beans.factory.config.PropertyPlaceholderConfigurer.processProperties(PropertyPlaceholderConfigurer.java:249)
	at org.springframework.beans.factory.config.PropertyResourceConfigurer.postProcessBeanFactory(PropertyResourceConfigurer.java:75)
	at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:467)
....

I did some quick googling and at first didnt find anything helpful. Then I did some more and some trial and
error and finally figured out that my property file was not being found:

I changed:

<bean id="propConfig"
        class="org.springframework.beans.factory.config.PropertyPlaceholderConfigurer">
        <property name="location">
            <value>file:///Users/jnylund/Documents/workspace33/Project/src/myroject.properties </value>
         </property>
    </bean>

To:
<bean id="propConfig"
        class="org.springframework.beans.factory.config.PropertyPlaceholderConfigurer">
        <property name="location">
            <value>/WEB-INF/myroject.properties </value>
         </property>
    </bean>

And now it works. So my question is why cant the exception say:
"Dude, I cant find your properties file at this location: file:///Users/jnylund/Documents/workspace33/Project/src/myroject.properties "

Happy Coding.

User Signup Process 101

Over the 18 months we have operated the website gottakeepup.com and in the process we have learned lots about the good, band and ugly of the user signup process. In this blog article I will share some of the lessons learned, and some of the things we have done (or plan to do) to improve our process.

User or Email - I was surprised at how little research & writing was out there as to which of these was the "right" answer, I guess it depends on your application. If you have an application that requires a valid email to work (as we do), I think its a no brainier to require an email. I also think most users dont forget their current email, but they may forget their id, especially if they have a common name like John Smith, maybe thier id could be "jsmith" or "johnsmith" or some other variant. Remembering their email is probably easier. The downside to email is they change and get old, so I may have a login that is no longer my current email, in this case you want to be able to let users change their primary login.

Email Validation - you should do some checking on the emails the users enter, this is one thing we need to improve. If I had a nickel for every time someone typed gmail.com or gmall.co or something like that for their email then I would be rich! The problem is if you get too tricky you may start filtering out valid users. One Idea we plan to try is to put together a list of the top 100 email providers, and do some regex matching, if the email suffix is within 1 or 2 chars of one of those, give the user some feedback that says, did you mean gmail.com instead of gmail.co, but you still probably want to let them if they insist. There are plenty of domain country codes you might not think exist, but probably do.

Password Hash or Encrypt - There are 2 primary ways to store your users password in your database, one is to hash and the other is to encrypt. Use the hash method when your site needs to be very secure, you are handling money etc. This way even internal people in your organization cannot get to passwords. The downside is you cant send their user their own password, so you have to go through a reset process, which is much more painful than resending the password.

Passwords -  This hugely depends on your application, in general many software developers choose security over usability. There has to be a balance, especially if there is no money used in the application, let the users create reasonably simple easy to remember passwords. No matter what make them case insensitive otherwise you deal with the "capslock" nightmare.

To CAPTCHA or not to CAPTCHA

If you are not going to validate emails, then you probably need a CAPTCHA on your signup process. If you are going to validate emails, then its probably redundant. CAPTCH has some real usability issues, so avoid it if you can.

Validate Emails

If you are going to be allowing the users to post public items or send out emails to others, then you need to do this. Otherwise you will have a real problem with spammers on your hand. If you do decide to validate emails, we recommend you do it right away, we used to let users into our system and have them come back and validate later, this created a management nightmare for us, and we found many less validated their emails.  If you force them up front, you will lose some users right away, but the ones that go through you can be reasonably sure they are valid and you can communicate with them. You would be surprised about the number of people that put bogus info in if you don't do this. If you do require validation, a couple suggestions:

• Ask the User to add your email to their address book before you send the validation email.
• Make sure you have setup your mail server properly and are on all the appropriate white lists.
• Create a resend link that allows them to resend emails, sometimes they had a spam problem and fixed it, or deleted the email accidentally, you need to allow the user to trigger a resend of the activation email.
• Show what email they used in the screen that is prompting them to activate, lots of times they will realize they made a typo then, if possible give them a link to go fix their email.
• Take the user to the activation screen if they come back and login later, but make sure there is plenty of info as to how/why they got here and what to do about it, lots of times we have seen screens that are blank but say "Please activate", most users dont remember what to do.

OpenID
OpenID is s super cool idea, if you can support it, then do it, allow your users to either create a local account or an OpenID one. Consider using ID Selector which goes along way to making OpenID more usable. Consider adding some friendly documentation that explains what OpenId is, but also may just say , login using your existing accounts at Yahoo, Google and AOL or someting like that. Most users dont understand what OpenID is, but they do understand that they have a AOL account.

Collecting Information
Users are hypersensitive to sites that want information, no one wants to give out information but everyone wants all their services to be free. But... for you to make money using online advertising, you need to know stuff about these people, at a minimum you need to know they are at least 13 years old or you can get in trouble with the law. Since you must ask, we say get their birth year at least, if possible have them enter their full birth date. You also need to know generally where they live, we say if you are doing online advertising, then you "Must" require postal code. If you dont, you will be kicking yourself later and have to do some data normalization. So the minimum are birth year and postal code, but you should also collect (optionally) other info that will help the user get the most of your application.

Remember Me

Putting a checkbox below the user when signing  up/signing in will keep the user logged in for some period of time. We like the way yahoo has done this with their email:

Keep me signed in for 2 weeks unless I sign out. [Uncheck if on a shared computer]

Depending on your application, make it a longer time period.

Referral Codes

Usually you create your wonderful application and then you realize that you have to market it to get users to come. You then realize you need some way to track where users come from and in some cases make payments from it. Google Analytics is great help here, but not perfect. I recommend you add a simple column to your user table that has a referral code, when users come to any page on your site you check for this "referral code" on the url and drop a cookie. If/When the user signs up, you use the cookie to add the referral code to the users table. Then you can write simple reports to figure out where all your new users are coming from.

Set a consistent logging strategy from the start

One common failure of many applications is the inability to do consistent accurate logging. Many applications I have inherited either have no logging, or too much logging, or useless logging. Typically you want to have 3-4 logging levels, what these are called varies dramatically across logging providers.

• Level 1 - Debug/Trace - these are log statements that only happen in development mode, these are typically used when you dont have a good debugger/ide to use.
• Level 2- Warning - typically these are things that are not awful but generally should not happen, you want these enabled in your test environment.
• Level 3 - Error - these are things that should not happen, and you want a written record of it, sometimes an operator will need to take action on these, but sometimes not, but the developers surely need them for troubleshooting.
• Level 4- Fatal - these need action from an operator, if they happen, this is very bad for the system, usually these logging events should trigger a SMTP trap or other way to alert an operator.

One nice thing about the rails framework, is it sets these up for you, its kind of hard not to follow them.

Tomcat 6 basic setup with database - ouch

I have been doing rails most of the time for the past 18 months and never considered myself a true convert. I like ruby and rails, but there are several issues with the ruby language that have never made me say, ok "I love Ruby", but after today, I will say, I love Rails, I wish java would stop the insanity and move to a model closer to rails for its web frameworks. Java is a great language, but the configurations of jsp/servlets/jdbc/templates should be made super easy and not be this complicated.

I havent used Tomcat in a while, so I needed to setup a very simple webapp that talks to a database (sqlserver) and presents some simple web pages. Something I did in rails in about 20 minutes total 1 controller, 1 model and 3 views). So I thought porting to java would take a couple hours at the most. Now I am going on 7 hours and nearly complete. I am going to document this because I could not find anything out there that worked for me on the first try.

I am using Eclipse and Tomcat 6 to do this with SqlServer as the database.

First create a project in eclipse and select "Dynamic Web Project" and follow the prompts, choose your existing tomcat install.

Under WebContent, add yourself your first jsp, yeah, I have a project and a jsp, and you can start your tomcat server from withing eclipse and even debug the jsp if you want, yeah, that was easy!

Ok, now I want a database, and I probably want to use connection pooling, since creating and destroying connections is expensive, but the documentation on this was very fuzzy, here is what I finally did after lots of reading:

1.) create a context.xml file under META-INF

<Context path="/myapp" docBase="myapp"
        debug="5" reloadable="true" crossContext="true" >

  <Resource name="jdbc/myapp" auth="Container" type="javax.sql.DataSource"
               maxActive="100" maxIdle="30" maxWait="10000"
               username="joel" password="password" driverClassName="com.microsoft.jdbc.sqlserver.SQLServerDriver"
               url="jdbc:sqlserver://10.211.55.4:1433;DatabaseName=MyDB;autoReconnect=true"></Resource>

</Context>

2.) Add this to yoru web.xml inside the webapp section:

  <resource-ref>
      <description>DB Connection</description>
      <res-ref-name>jdbc/myapp</res-ref-name>
      <res-type>javax.sql.DataSource</res-type>
      <res-auth>Container</res-auth>
  </resource-ref>

3.) Add to your jsp:

<%@page import="java.sql.*, javax.sql.*, java.util.*, javax.naming.*"%>

<%
Context initContext = new InitialContext();
Context envContext  = (Context)initContext.lookup("java:/comp/env");
DataSource ds = (DataSource)envContext.lookup("jdbc/happierwidget");
conn = ds.getConnection();
// ... do your jdbc work here
 conn.close();
%>

3.) add your jdb drivers to your server/lib folder, I could not get mine to work by putting them in my application's lib folder. Add your drivers to your "java build path" by right click on your project and pick properties, then add external jar file.

4.) Restart your server and you should be able to connect. YEAH.

I couldnt get the standard template libraries to work now matter what I tried, I ended up punting and doing ugly jsp work to make this happen.

Widgets, Gadgets, Web Widgets, are you confused yet?

When I first learned about gadgets it was pretty straight forward, you had Konfabulator (now Yahoo) Widgets and they consisted of a nice little sidebar you could put cute little apps in that did interesting things, kind of like the old Microsoft active desktop stuff. Now with Google desktop gadgets, Apple gadgets, igoogle web gadgets, vista gadgets, things have gotten more confusing and complicated. The best place to learn about all this I have found is here. Even though its written in super existing w3c lingo/format, you will find it a good read to get educated on past present and future when it comes to widgets.

Sending Multipart Emails - you should do this..

I am amazed at how many people have switched to sending html only emails. There are a few problems with this, most importantly is some mail servers will remove content if it is html, so you will end up sending a blank email to your user if you send it as html only. Also for some viewers with text only email readers (yes they do exist) the mails will look terrible if you send them in html format.

Sending multipart emails is easy, here are directions in my 3 favorite language/platforms:

Ruby on Rails - note how you can just define an html view and a text view and rails will figure out that you want to send a multipart email.

.NET / C# - just add each view to the mailmessage object before sending.

Java - you just add the parts to a MimeMessage.