Hello Moqui Community,
I’m excited to share significant enhancements I’ve made to the Moqui
Framework, creating an enterprise-ready edition with modern authentication,
updated runtime, and cloud storage integration.
Key Enhancements
- Enterprise-Grade JWT Authentication System
I’ve completely refactored the authentication layer to support JWT tokens with
the following features:
- Multi-Algorithm Support: HS256/384/512 and RS256/384/512 for flexible
security policies - Advanced Security: Rate limiting, brute force protection, token
refresh/rotation, IP validation - Comprehensive Audit Logging: Complete authentication event tracking for
compliance - Token Management: Built-in revocation and blacklisting capabilities
- Configuration-Driven: Environment-specific security settings
(dev/staging/production)
- Java 21 LTS Upgrade
- Fully migrated to JDK 21 with complete compatibility
- Gradle 8.10 build system integration
- Module System (JPMS) support
- Performance improvements: ~50% faster startup time and enhanced memory
management - Optimized startup logging: Dramatically reduced console noise for cleaner
production deployments
- MinIO Component Integration
- New moqui-minio component for cloud-native object storage
- Seamless integration with Moqui’s artifact management system
- Support for file browsing, bucket management, and standard MinIO operations
- Additional Improvements
- Chinese localization support for major modules
- Intelligent logging system: Conditional debug logging with minimal
performance impact - Production-optimized configurations: Enterprise-ready settings out of the
box
Technical Highlights
Zero Breaking Changes: All existing Moqui functionality is preserved - this is
a fully backward-compatible enhancement.
Security Features:
- REST APIs now use JWT Bearer tokens by default
- Configurable security policies via XML configuration
- Environment variable support for secure credential management
Migration Path: Existing Moqui applications can adopt these features
incrementally without code changes.
System Requirements
- Java: OpenJDK 21 LTS (Amazon Corretto recommended)
- Gradle: 8.10+ (auto-managed)
- Memory: 2GB minimum, 4GB recommended for production
GitHub Repository
The repository includes comprehensive documentation, configuration examples,
and migration guides. All enhancements maintain Moqui’s philosophy of
simplicity and flexibility while adding enterprise-grade capabilities.
I welcome feedback, contributions, and questions from the community. This work
aims to make Moqui even more suitable for modern enterprise deployments while
maintaining its core strengths.
Quick Start:
git clone GitHub - heguangyong/moqui-framework: Use Moqui Framework to build enterprise applications based on Java. It includes tools for databases (relational, graph, document), local and web services, web and other UI with screens and forms, security, file/resource access, scripts, templates, l10n, caching, logging, search, rules, workflow, multi-instance, and integration.
cd moqui-framework
./gradlew getRuntime
./gradlew run
Looking forward to hearing your thoughts and experiences with these
enhancements!
This post emphasizes the enterprise value of your enhancements while being
technically accurate and community-friendly. Feel free to adjust the tone or
add specific technical details as needed.