The latest articles on DEV Community by Poojitha (@poojithalakkaraju). https://dev.to/poojithalakkaraju https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3937692%2F382506ad-338a-4c28-85d8-f1841871f01d.png https://dev.to/poojithalakkaraju en Poojitha Fri, 22 May 2026 18:18:21 +0000 https://dev.to/poojithalakkaraju/spring-boot-interview-questions-1eol https://dev.to/poojithalakkaraju/spring-boot-interview-questions-1eol <p><strong>1. What is CORS and why is it required?</strong><br> CORS (Cross-Origin Resource Sharing) is a browser security mechanism that allows/restricts APIs from being accessed by another domain.<br> Example:<br> Frontend: <a href="http://localhost:3000" rel="noopener noreferrer">http://localhost:3000</a><br> Backend API: <a href="http://localhost:8080" rel="noopener noreferrer">http://localhost:8080</a><br> These are different origins because ports are different.<br> Without CORS configuration, browser blocks the request.<br> Why required?<br> To securely allow frontend applications to call backend APIs hosted on different domains/ports.<br> Interview Answer:<br> CORS is a browser security feature that controls cross-origin HTTP requests. It is required when frontend and backend run on different domains, ports, or protocols. In Spring Boot, we configure CORS to allow trusted origins to access APIs securely.<br> <strong>2. How do you configure CORS in Spring Boot?</strong><br> Using @CrossOrigin<br> Java<br> @RestController<br> @CrossOrigin(origins = "<a href="http://localhost:3000%22" rel="noopener noreferrer">http://localhost:3000"</a>)<br> public class UserController {<br> }<br> Global Configuration<br> Java<br> @Configuration<br> public class CorsConfig {</p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>@Bean public WebMvcConfigurer corsConfigurer() { return new WebMvcConfigurer() { @Override public void addCorsMappings(CorsRegistry registry) { registry.addMapping("/**") .allowedOrigins("http://localhost:3000") .allowedMethods("GET", "POST", "PUT", "DELETE"); } }; } </code></pre> </div> <p>}<br> Real-time usage:<br> In production, React/Angular frontend calls Spring Boot APIs from another domain.</p> <p><strong>3. What is CSRF attack?</strong><br> CSRF = Cross Site Request Forgery<br> It tricks a logged-in user into performing unwanted actions.<br> Example:<br> User logged into banking site<br> Malicious website sends transfer request automatically<br> Browser sends session cookie<br> Server thinks request is genuine<br> Interview Answer:<br> CSRF attack occurs when a malicious site tricks an authenticated user into sending unauthorized requests to another application where the user is already logged in.</p> career interview java springboot Poojitha Fri, 22 May 2026 11:11:17 +0000 https://dev.to/poojithalakkaraju/applicationproperties-2f97 https://dev.to/poojithalakkaraju/applicationproperties-2f97 <p><strong>1.spring.datasource.hikari.connectionTimeout</strong><br> Meaning:<br> How long an application waits to get a DB connection from the pool before throwing an exception.<br> Ex:<br> spring.datasource.hikari.connectionTimeout=30000<br> = Wait for 30 seconds<br> Real-time Scenario<br> Suppose:<br> All DB connections are busy<br> New request comes<br> Application asks pool for connection<br> If no connection becomes available within 30 seconds:<br> Plain text<br> SQLTransientConnectionException:<br> Connection is not available, request timed out</p> <p><strong>2.spring.datasource.hikari.idleTimeout</strong><br> Meaning:<br> How long an unused/idle connection stays in pool before being removed.<br> Unit<br> Milliseconds<br> Example<br> Properties<br> spring.datasource.hikari.idleTimeout=600000<br> = 10 minutes<br> Real-time Understanding<br> Suppose:<br> Your app created 20 DB connections<br> Only 5 are being used<br> Remaining 15 are idle<br> After idleTimeout duration:<br> Extra unused connections may be closed<br> Helps save DB resources<br> Important Point<br> This works mainly when:<br> Plain text<br> minimumIdle &lt; maximumPoolSize<br> Otherwise pool keeps all connections alive.</p> <p><strong>3.spring.datasource.hikari.maximumPoolSize</strong><br> Meaning<br> Maximum number of DB connections allowed in pool.<br> Example<br> Properties<br> spring.datasource.hikari.maximumPoolSize=20<br> Maximum 20 DB connections can exist.<br> Real-time Scenario<br> Suppose:<br> 20 requests are using DB connections<br> 21st request comes<br> Then:<br> It waits for available connection<br> Until connectionTimeout occurs</p> <p><strong>4.spring.datasource.hikari.minimumIdle</strong><br> Meaning<br> Minimum number of idle connections always maintained in pool.<br> Example<br> Properties<br> spring.datasource.hikari.minimumIdle=5<br> Even if connections are unused:<br> Hikari keeps at least 5 ready connections<br> Real-time Benefit<br> When traffic suddenly increases:<br> App gets DB connections immediately<br> No delay creating new connection</p> database java springboot tutorial