The new Servlet 3.0 specification in JavaEE 6
packs many new features, including Annotations, Dynamic Registration,
Pluggability and Asynchronous Support.
Servlet 3.0 also includes quite a number of security improvements,
as described by Kumar a couple of months ago in a
Summary of new Security Features in Servlet 3.0.
As Ron explains, one of the themes is that
Java EE 6 and Servlet 3.0 Converge on Container Security Functionality,
another is extra functionality, as explained by Nithya's 3 recent posts
http-method-omission element in web.xml,
and login methods of
You may also want to refer to the
JavaEE 6 javadocs
and to the JavaEE 6 Tutorial:
Web Application Security)
Part II (requires free registration).
I had not noticed
Vaadin previously but it
seems to be gaining some popularity; its programming model is strongly server-centric and generates client-code via GWT.
You can see a
and it recently deployed a
its KB has a number of articles on how to use it with
They also announced deals recently with
and with our old
While chasing the sources for this spotlight I bumped into a number of other Java-based RIA frameworks
as well as frameworks like Flex/BlazeDS,
GWT, and the JSF-based frameworks we know.