Future of JavaScript

•Download as PPTX, PDF•

4 likes•3,295 views

Eyal Vardi

Technology

“Everything that can be written in JavaScript
will eventually be written in JavaScript”.

(Atwood’s law)

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Browser Request
Index.html

MVC4

Traditional Request / Response for ALL rendered content and assets

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Initial Request

Application.htm

RequireJS Loader
Application.js (bootstrap)

MVC4

Page1 Partial.htm
IndexViewModel.js
JSON Requests

ViewModel (#index)
ViewModel (#login)
Model (LoginModel)

Handling disconnection

HTML5 localstorage

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Server
UI

Entities
BL (MV*)

Module

Module

Communication

DAL

Module

Offline Storage

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Source: www.programmableweb.com – current APIs: 4,535

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Verb

Headers

URL

POST SimpleService.asmx/EchoString HTTP/1.1
Host:
localhost:1489
User-Agent:
Mozilla/5.0
Accept:
text/html
Content-Type:
application/json;
Content-Length: 27
...

Data

XML, JSON, SOAP, AtomPub ...

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Verb

Headers

Data

URL

POST SimpleService.asmx/EchoString HTTP/1.1
Host: localhost:1489
User-Agent: Mozilla/5.0
Accept: text/html,application/xhtml+xml
Content-Type: application/json;
Content-Length: 27
...
<Envelope>
{
<Header>
"Age":37,
<!–- Headers -->
"FirstName":"Eyal",
<!-- Protocol's & Polices -->
"ID":"123",
</Header>
"LastName":"Vardi“
<Body>
}
<!– XML Data -->
</Body>
</Envelope>

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Node.js

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

A high performance, cross-platform evented I/O library

Google JavaScript engine

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Today’s release enables Custom APIs to
be written using Node.js (we will support
writing Custom APIs in .NET as well in a

future release)…

Scott Guthrie Corporate Vice
President in the Microsoft
Server and Tools Business.

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Node.js in Action

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Atwood’s law

Windows 8
Firefox OS
Gnome (Linux)
Chrome OS (Chromebooks)

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Arduino
Tessel
Espruino
Nodebots

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Thread 2
Thread 1

Thread 3
Thread 4

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Thread 1

* Chrome and Opera Optimize for Mozilla-Pioneered Asm.js
© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

eyalvardi.wordpress.com

© 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

One of the longest lived, and probably the most justified security claims has been that an organization is as secure as the weakest link in its security chain. As the mobile world is extending the traditional boundaries of enterprises and smaller organizations, and employees bring their own devices into work, or use company provided devices, it is the ripe time to examine how secure is this mobile link in the security chain of an organization.

DEV301- Web Service Programming with WCF 3.5Eyal Vardi

OAuth with AngularJS and WebAPI - SoCal Code Camp 2015

Stuart

Stateless authentication for microservices - GR8Conf 2015

Alvaro Sanchez-Mariscal

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Alvaro Sanchez-Mariscal

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorisation. He will explore the existing impl More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro. Authentication is normally a stateful service. Most of the implementations rely on the HTTP session, thus introducing state as the session is an in-memory data structure in the application server. In the microservices era, most of the companies are developing such called RESTful services, where one of the principles is to create stateless systems. In such scenario, authentication should be stateless too. There is a standard specification to secure web application and API's, that is being adopted massively by the industry: OAuth 2. The specification doesn't explicitly cover how to make a stateless implementation. And most of the existing ones depend on some sort of external storage (such as a DB) to store the tokens generated for a later validation. Fortunately, there is another specification by the IETF called JSON Web Token, that can be combined with OAuth 2 to achieve a stateless authentication system. In the session, Alvaro will explain the core concepts of OAuth 2, as well as JWT and how can them be used together to achieve the last 2 letters of REST: State Transfer.

An Introduction to OAuth 2

Aaron Parecki

AMD & Require.js

Eyal Vardi

Async & Parallel in JavaScript

Eyal Vardi

In this meetup Eyal Vardi will talk about Angular 2.0 architecture. The session will focus on the main parts of Angular 2.0:  Application Bootstrap  Angular Compiler  Hierarchical Injector  Component Lifecycle Hooks  Change Detector  Renderer  Dynamic component creation Each part will be explained and analyzed. In some cases we will dive into Angular 2.0 source code. Our purpose is to list the Do's & Don’ts of Angular. The session is mostly targeted for developers which already have some experience with Angular 2.0.

Angular 2 NgModule

Eyal Vardi

Upgrading from Angular 1.x to Angular 2.x

Eyal Vardi

Angular 2 - Ahead of-time Compilation

Eyal Vardi

Routing And Navigation

Eyal Vardi

Angular 2 Architecture

Eyal Vardi

In this meetup Eyal Vardi will talk about Angular 2.0 architecture. The session will focus on the main parts of Angular 2.0:  Application Bootstrap  Angular Compiler  Hierarchical Injector  Component Lifecycle Hooks  Change Detector  Renderer  Angular 2.0 & jQuery  Dynamic component creation  Tips & Tricks Each part will be explained and analyzed. In some cases we will dive into Angular 2.0 source code. Our purpose is to list the Do's & Don’ts of Angular. The session is mostly targeted for developers which already have some experience with Angular 2.0.

Angular 1.x vs. Angular 2.x

Eyal Vardi

Angular 2.0 Views

Eyal Vardi

Component lifecycle hooks in Angular 2.0

Eyal Vardi

Template syntax in Angular 2.0

Eyal Vardi

Http Communication in Angular 2.0

Eyal Vardi

Angular 2.0 Dependency injection

Eyal Vardi

Angular 2.0 Routing and Navigation

Eyal Vardi

Async & Parallel in JavaScript

Eyal Vardi

Angular 2.0 Pipes

Eyal Vardi

Angular 2.0 forms

Eyal Vardi

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

UiPath Test Automation using UiPath Test Suite series, part 5

DianaGray10

More from Eyal Vardi

Why magic

Eyal Vardi

Smart Contract

Eyal Vardi

Rachel's grandmother's recipes

Eyal Vardi

Performance Optimization In Angular 2

Eyal Vardi

Angular 2 Architecture (Bucharest 26/10/2016)

Eyal Vardi

Angular 2 NgModule

Eyal Vardi

Upgrading from Angular 1.x to Angular 2.x

Eyal Vardi

Angular 2 - Ahead of-time Compilation

Eyal Vardi

Routing And Navigation

Eyal Vardi

Angular 2 Architecture

Eyal Vardi

In this meetup Eyal Vardi will talk about Angular 2.0 architecture. The session will focus on the main parts of Angular 2.0:  Application Bootstrap  Angular Compiler  Hierarchical Injector  Component Lifecycle Hooks  Change Detector  Renderer  Angular 2.0 & jQuery  Dynamic component creation  Tips & Tricks Each part will be explained and analyzed. In some cases we will dive into Angular 2.0 source code. Our purpose is to list the Do's & Don’ts of Angular. The session is mostly targeted for developers which already have some experience with Angular 2.0.

Angular 1.x vs. Angular 2.x

Eyal Vardi

Angular 2.0 Views

Eyal Vardi

Component lifecycle hooks in Angular 2.0

Eyal Vardi

Template syntax in Angular 2.0

Eyal Vardi

Http Communication in Angular 2.0

Eyal Vardi

Angular 2.0 Dependency injection

Eyal Vardi

Angular 2.0 Routing and Navigation

Eyal Vardi

Async & Parallel in JavaScript

Eyal Vardi

Angular 2.0 Pipes

Eyal Vardi

Angular 2.0 forms

Eyal Vardi

More from Eyal Vardi (20)

Why magic

Smart Contract

Rachel's grandmother's recipes

Performance Optimization In Angular 2

Angular 2 Architecture (Bucharest 26/10/2016)

Angular 2 NgModule

Upgrading from Angular 1.x to Angular 2.x

Angular 2 - Ahead of-time Compilation

Routing And Navigation

Angular 2 Architecture

Angular 1.x vs. Angular 2.x

Angular 2.0 Views

Component lifecycle hooks in Angular 2.0

Template syntax in Angular 2.0

Http Communication in Angular 2.0

Angular 2.0 Dependency injection

Angular 2.0 Routing and Navigation

Async & Parallel in JavaScript

Angular 2.0 Pipes

Angular 2.0 forms

Recently uploaded

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

UiPath Test Automation using UiPath Test Suite series, part 5

DianaGray10

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

GridMate - End to end testing is a critical piece to ensure quality and avoid...

ThomasParaiso2

A tale of scale & speed: How the US Navy is enabling software delivery from l...

sonjaschweigert1

Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved: - Reduction in onboarding time from 5 weeks to 1 day - Improved developer experience and productivity through actionable findings and reduction of false positives - Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO) Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production. We will cover: - How to remove silos in DevSecOps - How to build efficient development pipeline roles and component templates - How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence) - How to streamline operations with automated policy checks on container images

By Design, not by Accident - Agile Venture Bolzano 2024

Pierluigi Pugliese

Elizabeth Buie - Older adults: Are we really designing for our future selves?

Nexer Digital

20240607 QFM018 Elixir Reading List May 2024

Matthew Sinclair

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

Paige Cruz

Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack. While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack. I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

Neo4j

PCI PIN Basics Webinar from the Controlcase Team

ControlCase

Generative AI Deep Dive: Advancing from Proof of Concept to Production

Aggregage

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Uni Systems S.M.S.A.

Introduction to CHERI technology - Cybersecurity

mikeeftimakis1

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...

Neo4j

Dr. Sean Tan, Head of Data Science, Changi Airport Group Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.

Recently uploaded (20)

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

UiPath Test Automation using UiPath Test Suite series, part 5

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

GraphRAG is All You need? LLM & Knowledge Graph

GridMate - End to end testing is a critical piece to ensure quality and avoid...

A tale of scale & speed: How the US Navy is enabling software delivery from l...

By Design, not by Accident - Agile Venture Bolzano 2024

Elizabeth Buie - Older adults: Are we really designing for our future selves?

20240607 QFM018 Elixir Reading List May 2024

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

Monitoring Java Application Security with JDK Tools and JFR Events

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

PCI PIN Basics Webinar from the Controlcase Team

Generative AI Deep Dive: Advancing from Proof of Concept to Production

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Introduction to CHERI technology - Cybersecurity

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

The Art of the Pitch: WordPress Relationships and Sales

GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...

Future of JavaScript

13. Initial Request Application.htm RequireJS Loader Application.js (bootstrap) MVC4 Page1 Partial.htm IndexViewModel.js JSON Requests ViewModel (#index) ViewModel (#login) Model (LoginModel) Handling disconnection HTML5 localstorage © 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

20. Verb Headers URL POST SimpleService.asmx/EchoString HTTP/1.1 Host: localhost:1489 User-Agent: Mozilla/5.0 Accept: text/html Content-Type: application/json; Content-Length: 27 ... Data XML, JSON, SOAP, AtomPub ... © 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

21. Verb Headers Data URL POST SimpleService.asmx/EchoString HTTP/1.1 Host: localhost:1489 User-Agent: Mozilla/5.0 Accept: text/html,application/xhtml+xml Content-Type: application/json; Content-Length: 27 ... <Envelope> { <Header> "Age":37, <!–- Headers --> "FirstName":"Eyal",  "ID":"123", </Header> "LastName":"Vardi“ <Body> } <!– XML Data --> </Body> </Envelope> © 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

31. Today’s release enables Custom APIs to be written using Node.js (we will support writing Custom APIs in .NET as well in a future release)… Scott Guthrie Corporate Vice President in the Microsoft Server and Tools Business. © 2013 E4D LTD. All rights reserved. Tel: 054-5-767-300, Email: Eyal@E4D.co.il

Editor's Notes

OSScreen ResolutionDeploymentSecurityBrowsersLoad Balance

Future of JavaScript

Recommended

Recommended

More Related Content

More from Eyal Vardi

More from Eyal Vardi (20)

Recently uploaded

Recently uploaded (20)

Future of JavaScript

Editor's Notes