Skip to content

tdevilleduc/springai

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

92 Commits
.mvn/wrapper
.mvn/wrapper
 
 
.vscode
.vscode
 
 
src
src
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
HELP.md
HELP.md
 
 
HTTPS.md
HTTPS.md
 
 
README.md
README.md
 
 
mvnw
mvnw
 
 
mvnw.cmd
mvnw.cmd
 
 
pom.xml
pom.xml
 
 

Repository files navigation

Spring AI — Anthropic Integration

A Spring Boot application demonstrating secure integration with Anthropic's Claude models via Spring AI.

Prerequisites

Configuration

Create a .env file at the project root:

ANTHROPIC_API_KEY=sk-ant-...
APP_USERNAME=admin
APP_PASSWORD=your-secure-password

The .env file is ignored by git. Never commit your API key or credentials.

All environment variables

Variable Default Description
ANTHROPIC_API_KEY (required) Anthropic API key
APP_USERNAME admin HTTP Basic auth username
APP_PASSWORD (required) HTTP Basic auth password
CORS_ALLOWED_ORIGINS http://localhost:3000 Comma-separated list of allowed origins
SSL_ENABLED false Enable HTTPS/TLS
SSL_KEY_STORE classpath:keystore.p12 Path to the PKCS12 keystore
SSL_KEY_STORE_PASSWORD changeit Keystore password
SSL_KEY_ALIAS springai Key alias in the keystore
SERVER_PORT 8443 Server port

Run

./mvnw spring-boot:run

API

All endpoints require HTTP Basic authentication.

Method Endpoint Description
POST /api/v1/anthropic/chat Send a message to Claude and get a response

Example

curl -u admin:your-secure-password \
     -X POST http://localhost:8443/api/v1/anthropic/chat \
     -H "Content-Type: application/json" \
     -d '{"message": "Hello, Claude!"}'

Rate limiting

Requests are limited to 10 per minute per IP address. Exceeding this limit returns HTTP 429.

Error handling

All errors return a generic message without exposing internal details or stack traces.

HTTPS

See HTTPS.md for instructions on generating a self-signed certificate for development and configuring a CA-signed certificate for production.

Build & Test

./mvnw verify

Tests require a minimum of 70% line coverage (enforced by JaCoCo). The build fails if coverage drops below this threshold.

Tech Stack

Component Version
Spring Boot 4.0.5
Spring AI 2.0.0-M4
Spring Security (included with Boot)
Log4j2 (included with Boot)
Bucket4j 8.10.1
JaCoCo 0.8.13
Java 25
springboot4-dotenv

Security features

  • Authentication: HTTP Basic auth on all endpoints
  • Input validation: Prompt injection detection and sanitization
  • Rate limiting: Per-IP cap to prevent Denial of Wallet attacks
  • Brute force protection: HTTP Basic auth failures tracked per IP; returns HTTP 429 after N consecutive bad credentials (configurable via MAX_AUTH_ATTEMPTS, default 5); auto-unblock after BLOCK_DURATION_MINUTES minutes (default 15)
  • CORS: Configurable allowed origins
  • HTTPS: Optional TLS via environment variables
  • Error handling: Generic responses to avoid information leakage
  • Audit logging: Client IP and message/response lengths logged on each request

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages