K key = (K) stream.readObject();
      V value = (V) stream.readObject();
      put(key, value);
    }
  }

  /*
   * The following methods are safe to call as long as both of the following hold:
   *
   * - allocArrays() has been called. Callers can confirm this by checking needsAllocArrays().
   *

    /**
     * Retrieves a dictionary item by its ID.
     *
     * @param id the item ID
     * @return an optional containing the item if found
     */
    public abstract OptionalEntity<T> get(long id);

    /**
     * Inserts a new dictionary item.
     *
     * @param item the item to insert
     */
    public abstract void insert(T item);

    /**

Use the following command to generate a private key with RSA:

```sh
openssl genrsa -out private.key 2048
```

A response similar to this one should be displayed:

```
Generating RSA private key, 2048 bit long modulus
............................................+++
...........+++
e is 65537 (0x10001)
```

Alternatively, use the following command to generate a private RSA key protected by a password:

```sh

    }

    String getHttpFileuploadMaxSize();

    default Long getHttpFileuploadMaxSizeAsLong() {
        final String value = getHttpFileuploadMaxSize();
        return value != null ? DfTypeUtil.toLong(value) : null;
    }

    String getHttpFileuploadThresholdSize();

    default Long getHttpFileuploadThresholdSizeAsLong() {
        final String value = getHttpFileuploadThresholdSize();

     * @return HTML response showing item details
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse details(final String dictId, final int crudMode, final long id) {
        verifyCrudMode(crudMode, CrudMode.DETAILS, dictId);
        saveToken();
        return asDetailsHtml().useForm(EditForm.class, op -> {
            op.setup(form -> {

Y podrás seleccionar cuáles scopes quieres dar de acceso: `me` y `items`.

Este es el mismo mecanismo utilizado cuando das permisos al iniciar sesión con Facebook, Google, GitHub, etc:

<img src="/img/tutorial/security/image11.png">

## Token JWT con scopes

Ahora, modifica la *path operation* del token para devolver los scopes solicitados.

        Target target = Secured.class.getAnnotation(Target.class);
        ElementType[] targetTypes = target.value();
        assertFalse(Arrays.asList(targetTypes).contains(ElementType.FIELD));
    }

    // Test with long role names
    @Secured({ "ROLE_SUPER_ULTRA_MEGA_ADMIN_WITH_VERY_LONG_NAME_FOR_TESTING_PURPOSES" })
    static class LongRoleNameClass {
    }

    public void test_longRoleName() {

  }

  public void testCountOverflow_doesNotThrow() {
    PairedStatsAccumulator accumulator = new PairedStatsAccumulator();
    accumulator.add(ONE_VALUE, OTHER_ONE_VALUE);
    for (int power = 1; power < Long.SIZE - 1; power++) {
      accumulator.addAll(accumulator.snapshot());
    }
    // Should overflow without throwing.
    accumulator.addAll(accumulator.snapshot());
    assertThat(accumulator.count()).isLessThan(0L);

    }

    /**
     * Sanitize path for safe logging
     */
    private String sanitizeForLog(String path) {
        if (path == null) {
            return "null";
        }

        // Truncate long paths
        if (path.length() > 100) {
            path = path.substring(0, 100) + "...";
        }

        // Remove control characters for safe logging
        return path.replaceAll("[\\x00-\\x1F\\x7F]", "?");

                 * know that V is a non-null type because that's the only kind of value type that
                 * StandardTable supports. Thus, requireNonNull is safe as long as the cell is still
                 * present. (And if it's not present, behavior is undefined.) However, that's a
                 * behavior change relative to the old code, so it didn't seem worth risking.)
                 */