Skip to the content.

BDK Extension App Spring Boot Starter

The Symphony BDK for Java provides a Starter module that aims to ease extension app backend developments within a Spring Boot application.



The following listing shows the pom.xml file that has to be created when using Maven:

<?xml version="1.0" encoding="UTF-8"?>
<project xmlns=""




The following listing shows the build.gradle file that has to be created when using Gradle:

plugins {
    id 'java-library'
    id 'org.springframework.boot' version '2.3.4.RELEASE'

dependencies {
    implementation platform('org.finos.symphony.bdk:symphony-bdk-bom:2.1.0')
    implementation 'org.finos.symphony.bdk:symphony-bdk-app-spring-boot-starter'

Create a Simple Backend for Extension Application

As a first step, you have to initialize your environment through the Spring Boot src/main/resources/application.yaml file:

      username: bot-username
        path: /path/to/rsa/privatekey.pem
        appId: app-id
          path: /path/tp/rsa/app_privatekey.pem

      enabled: true # activate the CircleOfTrust endpoints (default is true)
        enabled: true # activate the jwt cookie storage (default is false)
        sameSite: Strict # same site configuration to restrict the jwt cookie from cross-site domain (default is Strict)
        expireIn: 1d # jwt cookie duration (default value is 1d, see 
    cors: # enable Cross-Origin Resource Sharing (CORS) communication
      "[/**]": # url mapping
        allowed-origins: "*" # list of allowed origins path pattern that be specific origins,
        allow-credentials: false # Access-Control-Allow-Credentials response header for CORS request
        allowed-methods: ["POST", "GET"] # list of HTTP methods to allow
        allowed-headers: "*" # list of headers that a request can list as allowed (multiple values allowed by using ["header-name-1", "header-name-2"])
        exposed-headers: ["header-name-1", "header-name-2"] # list of response headers that a response can have and can be exposed, the value "*" is not allowed for this field.
        enabled: true # activate the tracing filter
        urlPatterns:  # Add URL patterns that the tracing filter will be registered against
          - /api/*
        com.symphony: debug # in development mode, it is strongly recommended to set the BDK logging level at DEBUG

You can notice here that the bdk property inherits from the BdkConfig class.

As required by Spring Boot, you have to create an src/main/java/com/example/bot/ class:

public class ExtAppSpringApplication {

    public static void main(String[] args) {, args);

Circle of Trust

By configuring the property bdk-app.auth.enabled=true, the Application backend will provide Apis for performing the Circle of Trust of Symphony: Circle of Trust API