One of the biggest challenges developers face when adopting the Java Platform Module System (JPMS) is integrating it with Hibernate and JPA. A common mistake is assuming JPA entities and Hibernate configurations will work seamlessly once module-info.java is introduced. Instead, developers often encounter runtime errors like:
org.hibernate.InstantiationException: Could not instantiate entitypackage com.example.model is not open to org.hibernate.orm.core
These issues stem from the fact that Hibernate and JPA rely heavily on reflection to access entities, proxies, and annotations—capabilities restricted by JPMS.
In real-world enterprise systems, where JPA and Hibernate manage persistence across large microservices or legacy systems, understanding these pitfalls and applying solutions is essential for stability and performance.
Think of JPMS as a secured building with locked offices. Hibernate is the auditor who needs to inspect employee files (entities). Unless you explicitly grant it access (opens), the auditor is denied entry, breaking the workflow.
Common Pitfalls
1. Reflection Access Errors
Hibernate uses reflection to instantiate entities and access fields. Without opens, these fail:
org.hibernate.PropertyAccessException: could not set a field value by reflection
2. Entity Scanning Failures
Hibernate scans for annotated @Entity classes. If packages are not visible, entities are ignored.
3. Persistence Unit Not Found
Incorrect module setup may prevent persistence.xml or configurations from being discovered.
4. Overuse of open
Some developers solve issues by using open module ..., which opens everything to reflection. This reduces security and encapsulation benefits.
Solutions for Hibernate and JPA with JPMS
1. Use Targeted opens
Grant reflection only to Hibernate, not the entire world.
module-info.java
module com.example.persistence {
requires java.sql;
requires jakarta.persistence;
requires org.hibernate.orm.core;
opens com.example.persistence.model to org.hibernate.orm.core;
}
2. Keep Entities in a Dedicated Module
Separate entities into their own module for clear access management:
module com.example.entities {
requires jakarta.persistence;
opens com.example.entities to org.hibernate.orm.core;
}
3. Configure Persistence Unit
Ensure META-INF/persistence.xml is packaged correctly inside the module.
4. Use Service Loader for JPA Providers
Hibernate is discoverable via service loader (META-INF/services/javax.persistence.spi.PersistenceProvider), which works with JPMS.
Example: Hibernate with JPMS
module-info.java
module com.example.app {
requires java.sql;
requires jakarta.persistence;
requires org.hibernate.orm.core;
opens com.example.app.entities to org.hibernate.orm.core;
}
Entity Example
package com.example.app.entities;
import jakarta.persistence.*;
@Entity
public class User {
@Id
@GeneratedValue
private Long id;
private String username;
// getters and setters
}
With opens com.example.app.entities, Hibernate can reflectively access User.
Best Practices & Pitfalls
✅ Best Practices
- Use targeted
opensfor entity packages - Separate entities into a dedicated module
- Ensure persistence.xml is discoverable in
META-INF - Audit reflective access with
jdeps
❌ Pitfalls
- Using
open module ...unnecessarily - Mixing entities, services, and controllers in one module
- Forgetting to configure Hibernate-specific access (
opens) - Assuming automatic modules solve reflection issues
What's New in Java Versions?
- Java 5–8 → N/A (no modules)
- Java 9 → JPMS introduced; Hibernate/JPA initially had major reflection issues
- Java 11 → Tooling and Hibernate updates improved modular support
- Java 17 → Stable integration for Hibernate with JPMS using targeted
opens - Java 21 → No significant updates across Java versions for this feature
Real-World Analogy
Using Hibernate with JPMS is like outsourcing auditors for compliance checks. You don’t give them full building access (open), but instead provide temporary, restricted passes (opens) only to the departments they need to inspect—your entity packages.
Summary & Key Takeaways
- Hibernate and JPA rely heavily on reflection, which JPMS restricts
- Use targeted
opensfor entity packages instead ofopen module - Keep entities in dedicated modules for clarity
- Always verify
META-INF/persistence.xmlplacement - Proper modular design strengthens security while keeping Hibernate functional
FAQ: Hibernate, JPA, and JPMS
1. What is the difference between classpath and module path for Hibernate apps?
Classpath exposes everything, module path enforces boundaries requiring explicit opens.
2. Why do I get package is not open errors with Hibernate?
Because your entity package isn’t opened to org.hibernate.orm.core.
3. What does requires transitive do in JPA modules?
It exposes dependencies downstream, but use carefully to avoid unnecessary exposure.
4. How do open and opens differ for Hibernate?open exposes the entire module, while opens limits reflection to specific packages.
5. Do automatic modules fix Hibernate reflection issues?
No, they often introduce instability. Explicit opens is required.
6. How does JPMS improve security in persistence layers?
By restricting reflective access to only declared packages.
7. Should I use jlink or jmod with Hibernate?
Use jlink to build optimized runtimes; jmod for packaging dependencies.
8. Can I modularize JPA applications incrementally?
Yes, start by modularizing entity packages and persistence configs.
9. How do I handle third-party libraries not modularized?
Keep them on the classpath or use automatic modules temporarily.
10. Is Hibernate fully JPMS-compliant today?
Yes, modern Hibernate versions support JPMS with correct configuration of opens.