This message was deleted Gradle Community #general

Join Slack

This message was deleted.

# general

Slackbot

04/07/2022, 2:27 AM

This message was deleted.

04/07/2022, 2:30 AM

Looks like there is a plugin for that -

Copy code

id 'io.spring.dependency-management'

Danny Thomas

04/07/2022, 2:40 AM

Yes, platforms - https://docs.gradle.org/current/userguide/platforms.html#sub:bom_import

➕ 1

04/07/2022, 5:10 AM

interesting, this uses a maven pom to enforce dependency management rather that doing it directly - which both seems backwards and perfect for my (and I guess most people’s) needs 🙂 Thanks

Vampire

04/07/2022, 7:57 AM

I wouldn't use the Spring plugin if it is just for getting the versions from a Maven POM. The Spring plugin can do more, like porting over imho bad Maven behavior over to Gradle. If you want the additional features, you can use it, but to just get the version constraints from a BOM, just use the built-in support using

platform(...)

. If it is not about consuming an existing BOM from another project, there might be better ways. If you just want a central catalog of versions for your project, use a version catalog. If you want to project in your build like a BOM module in Maven, that influences dependency resolution, including transitive dependencies, define a platform (if you publish that, it comes out as BOM for Maven consumers and with better metadata for Gradle consumers. If you want the versions of all projects in a build always aligned at consumer, use a platform that depends on the individual projects and make the projects also depend on the platform, ... It's all in the docs too. 🙂

➕ 4

04/07/2022, 4:01 PM

FWIW, I needed exact functionality that spring plugin gave me, i.e. guarantee that a specific dependency is always the expected version without depending on it. Need to look at the

platform()

stuff to see if that can do the same

Vampire

04/07/2022, 4:51 PM

Theres's also

enforcedPlatform()

, but that should usually not be used, but only in edge cases, and never in a library project.

Anze Sodja

04/07/2022, 4:52 PM

There are also constraints that might act similarly as

dependencyManagement

block from Maven or Spring dependency plugin. To always use some version strictly, you would use:

Copy code

dependencies {    
    constraints {
        // or with a !! shortcut: implementation("org.apache.httpcomponents:httpclient:4.5.3!!")
        implementation("org.apache.httpcomponents:httpclient") {
            version {
                strictly("4.5.3")
            }
        }
    }
}

I think the main difference with Maven would be how

pom

is handled. With Gradle you set just the pom’s version in constraints, but if you want for a pom to actually affect other dependencies, you add it to

dependencies

block as a

platform

. While in Maven pom will affect other dependencies as soon as you add it to the

dependencyManagement

block.

Vampire

04/07/2022, 4:57 PM

Isn't what you said, that it is the same? M: you add to dependency management => it works G: you add it as platform => it works Both: you add it as dependency => it does nothing (given it is a BOM without dependenices)

Vampire

04/07/2022, 4:58 PM

And just to be clear for M3, what

platform

and

enforcedPlatform

do, is exactly adding those constraints, just in a bunch from a BOM or Gradle Platform, isn't it?

Anze Sodja

04/07/2022, 5:04 PM

I meant: If you look at Gradle’s

constraints {}

block as an direct alternative to a Maven’s

dependencyManagement

and you want to translate

dependencyManagement

block from your Maven project to Gradle

constraints

, there is a difference I believe

Vampire

04/07/2022, 5:14 PM

Ah, I see

3 Views

Open in Slack

Previous Next