ASP.NET Web API is a framework that makes it easy to build HTTP services that reach a broad range of clients, including browsers and mobile devices. ASP.NET Web API is an ideal platform for building RESTful applications on the .NET Framework.
XSS / HTML Injection
Authorization and Authentication
Sensitive information disclosure
CORS Misconfiguration
API's over HTTP
CSRF
HTTP Verb tampering
Fuzzing / Boundary Checks
API Rate limiting
API Key Compromise
Jab14 exemple of integration of Joomla and slim Framework
http://jandbeyond.org/program/sessions/dont-worry-be-api-best-practices-and-implementatio.html
In the context of a website or web application, an application-programming interface or API allows software developers to interact with and build upon the data and/or services delivered by your website. Thus, APIs provide limitless flexibility, reach and innovative potential for any website, service or application.
During the last few months, Pierre-André has performed extensive research and development to discover effective ways of adding an API to a Joomla website. In this interactive session, he will share his findings.
Attendees can expect to learn, why you need an API for your web site, the pros and cons of various API solutions, and why a RESTful API is a good fit for Joomla. Best practices for implementing a well-documented, pragmatic, and RESTful API will be discussed, along with useful tools and sample code for using the com_api component as well as Slim Framework.
ASP.NET Web API is a framework that makes it easy to build HTTP services that reach a broad range of clients, including browsers and mobile devices. ASP.NET Web API is an ideal platform for building RESTful applications on the .NET Framework.
XSS / HTML Injection
Authorization and Authentication
Sensitive information disclosure
CORS Misconfiguration
API's over HTTP
CSRF
HTTP Verb tampering
Fuzzing / Boundary Checks
API Rate limiting
API Key Compromise
Jab14 exemple of integration of Joomla and slim Framework
http://jandbeyond.org/program/sessions/dont-worry-be-api-best-practices-and-implementatio.html
In the context of a website or web application, an application-programming interface or API allows software developers to interact with and build upon the data and/or services delivered by your website. Thus, APIs provide limitless flexibility, reach and innovative potential for any website, service or application.
During the last few months, Pierre-André has performed extensive research and development to discover effective ways of adding an API to a Joomla website. In this interactive session, he will share his findings.
Attendees can expect to learn, why you need an API for your web site, the pros and cons of various API solutions, and why a RESTful API is a good fit for Joomla. Best practices for implementing a well-documented, pragmatic, and RESTful API will be discussed, along with useful tools and sample code for using the com_api component as well as Slim Framework.
MidwestPHP 2016 - Adventures in Laravel 5 Joe Ferguson
With the release of Laravel 5 there are a lot of new toys to play with. We'll cover the new features and how to start using them in your applications. We'll be covering the new directory structure, changes in blade templates, commands and events, form requests, helpers, route caching and middlewares, controller method injection, migrating from Laravel 4, and more! We will also discuss changes to Illuminate packages and the new Elixir, Socialite, and Contracts packages.
A gentle Introduction to the concept of Progressive Web Apps, explaining the key concept needed to build a website/app that works even when your user is on a flaky network.
Understanding Identity in the World of Web APIs – Ronnie Mitra, API Architec...CA API Management
Web Based APIs have become a powerful tool for reaching end users in an increasingly fragmented market. The emergence of public and private APIs have introduced new challenges in identity management and access control. Attend this session to get a crash course in Web APIs, the risks they introduce and the emerging standards that can make them safer to use (including OAuth 2 and Open ID Connect)
The presentation deals with ASP.NET page life cycle and gives you a brief introduction of the events that are fired during each phaze of page processing.
The WordPress REST API is a powerful tool that can enhance your web development projects. In this presentation, attendees will learn how to leverage WordPress's existing endpoints and create custom ones using PHP without needing plugins. Attendees will also learn how to use their endpoints to power their front-end React apps, web apps or even entirely separate websites. Finally, attendees will learn about security concerns and how to lock down the REST API. Time permitting, attendees can have a Q&A period to ask questions.
The WordPress REST API was introduced in 2016 in version 4.7. It has been part of the WordPress ecosystem for about seven years and is well-documented. With the introduction of React and Gutenberg blocks, the REST API can take on a new life to help developers create complex apps with relative ease. Where once it was primarily used for basic integrations, now developers are harnessing its full capabilities for ambitious projects. The WordPress REST API can power modern web applications and custom blocks, showing that it remains highly relevant for building on the web today. Even after years of existence, the REST API remains a cornerstone of the WordPress framework.
MidwestPHP 2016 - Adventures in Laravel 5 Joe Ferguson
With the release of Laravel 5 there are a lot of new toys to play with. We'll cover the new features and how to start using them in your applications. We'll be covering the new directory structure, changes in blade templates, commands and events, form requests, helpers, route caching and middlewares, controller method injection, migrating from Laravel 4, and more! We will also discuss changes to Illuminate packages and the new Elixir, Socialite, and Contracts packages.
A gentle Introduction to the concept of Progressive Web Apps, explaining the key concept needed to build a website/app that works even when your user is on a flaky network.
Understanding Identity in the World of Web APIs – Ronnie Mitra, API Architec...CA API Management
Web Based APIs have become a powerful tool for reaching end users in an increasingly fragmented market. The emergence of public and private APIs have introduced new challenges in identity management and access control. Attend this session to get a crash course in Web APIs, the risks they introduce and the emerging standards that can make them safer to use (including OAuth 2 and Open ID Connect)
The presentation deals with ASP.NET page life cycle and gives you a brief introduction of the events that are fired during each phaze of page processing.
The WordPress REST API is a powerful tool that can enhance your web development projects. In this presentation, attendees will learn how to leverage WordPress's existing endpoints and create custom ones using PHP without needing plugins. Attendees will also learn how to use their endpoints to power their front-end React apps, web apps or even entirely separate websites. Finally, attendees will learn about security concerns and how to lock down the REST API. Time permitting, attendees can have a Q&A period to ask questions.
The WordPress REST API was introduced in 2016 in version 4.7. It has been part of the WordPress ecosystem for about seven years and is well-documented. With the introduction of React and Gutenberg blocks, the REST API can take on a new life to help developers create complex apps with relative ease. Where once it was primarily used for basic integrations, now developers are harnessing its full capabilities for ambitious projects. The WordPress REST API can power modern web applications and custom blocks, showing that it remains highly relevant for building on the web today. Even after years of existence, the REST API remains a cornerstone of the WordPress framework.
How to CASifying PeopleSoft and Integrating CAS and ADFSJohn Gasper
In this presentation we discuss how to CASify PeopleSoft, and also discuss some strategies on how to integrate Microsoft ADFS with CAS Server to have a single SSO experience for your end users.
A single-page application means putting a lot of traditionally server-side internals in the great unknown of a client's browser. The move of data and logic towards frontend requires a different model for application security. In addition to old foes like cross-site scripting, we now have to consider concepts like local storage, routing, JWTs and OAuth2 frameworks, and understand their implications in locking down our apps. Let's clear up the confusion and zero in on thew approaches and techniques you need to secure your React app.
We'll examine several layers of security relevant to React apps, including UI-level security (preventing XSS attacks and securing routes with React Router and Higher-Order Components), and API security using JWTs and third-party authentication-providers.
High Velocity DevOps: Four Ways to Leverage CloudFront in Faster DevOps Workf...Amazon Web Services
Increase your organization’s agility by diving deep and discovering how Amazon CloudFront integrates with other services to accelerate your DevOps workflows. In this session, which is jointly presented with Realtor.com, we cover four main areas of DevOps with customer success stories. Build: Programmatically launch and configure your CloudFront distributions by using AWS CloudFormation or Terraform templates as infrastructure as code (IaC). Test: Confirm that your updates deliver the intended result with A/B testing before moving all your traffic by using CloudFront and Lambda@Edge. Release: Continuously manage and deploy your application to the Amazon CloudFront Global Edge Network with AWS CodeStar. Monitor: Uncover actionable insights hiding in your CloudFront logs by leveraging Amazon CloudWatch, Amazon Athena, or AWS Marketplace partners for intelligent monitoring and alerting.
Codefresh + BlazeMeter Webinar: Continuous Testing for Containerized Applicat...Brittany Ingram
Slides from Codefresh + BlazeMeter Webinar. Summary & recording posted on our blog- https://codefresh.io/blog/blazemeter-codefresh-webinar-continuous-testing-containerized-applications/
Learn how to containerize your application and set up an automate end-to-end pipeline. Leverage Codefresh to automate your build, test deployments and integrate BlazeMeter into your Continuous Delivery.
Codefresh + BlazeMeter Webinar: Continuous Testing for Containerized Applicat...Codefresh
Codefresh + BlazeMeter Webinar. Summary & recording posted here- https://codefresh.io/blog/blazemeter-codefresh-webinar-continuous-testing-containerized-applications/
Learn how to containerize your application and set up an automate end-to-end pipeline. Leverage Codefresh to automate your build, test deployments and integrate BlazeMeter into your Continuous Delivery.
With third party clients connecting to your service you may find that the assumptions or opinions of a typical rails application are not robust enough. We'll run through some key considerations when building an API that will be consumed by a mobile app.
This is the short talk I delivered at the Ruby Underground Meetup in Tel Aviv for the local Ruby user group about some of the changes and new features in R
Laravel Poland Meetup #22 - "Kilka slajdów o castowaniu atrybutów w Eloquent"HighSolutions Sp. z o.o.
Prezentacja z 19.05.2022 roku / Laravel Poland Meetup #22 - edycja online
Wykonanie: Miłosz Dziurzyński (HighSolutions)
Temat: Kilka slajdów o castowaniu atrybutów w Eloquent
Laravel Poznań Meetup #12 - "Speed up web API with Laravel and Swoole using ...HighSolutions Sp. z o.o.
Prezentacja, która miała miejsce 2019-09-05 w Poznaniu.
Wykonanie: Marek Tenus (HighSolutions)
Temat: "Speed up web API with Laravel and Swoole using Docker"
Prezentacja, która miała miejsce 2019-04-04 na Dniach Kariery w Poznaniu.
Wykonanie: Adam Matysiak (HighSolutions)
Temat: "Turkusowe organizacje. Nowoczesny styl zarządzania"
Laravel Poznań Meetup #8 - "Laravel Telescope - niezastąpione narzędzie do de...HighSolutions Sp. z o.o.
Prezentacja, która miała miejsce 2018-12-06 w Poznaniu.
Wykonanie: Adam Matysiak (HighSolutions)
Temat: "Laravel Telescope - niezastąpione narzędzie do debugowania"
Laravel Poznań Meetup #7 - "Praktyczne użycie Repository Pattern w Laravel cz...HighSolutions Sp. z o.o.
Prezentacja, która miała miejsce 2018-10-04 w Poznaniu.
Wykonanie: Marek Tenus (HighSolutions)
Temat: "Praktyczne użycie Repository Pattern w Laravel cz. I"
Laravel Poznań Meetup #4 - EloquentSequence - Historia pewnej biblioteki Open...HighSolutions Sp. z o.o.
Prezentacja, która miała miejsce 2018-05-24 w Poznaniu. Wykonanie: Adam Matysiak (HighSolutions). Czemu tworzyć biblioteki Open Source i jak je stworzyć w Laravelu. Na przykładzie paczki Eloquent Sequence.
Laravel Poznań Meetup #3 - Uruchomienie i praca z Laravel w wirtualnym konten...HighSolutions Sp. z o.o.
Prezentacja, która miała miejsce 2018-04-25 w Poznaniu. Wykonanie: Marek Tenus (HighSolutions).
Jak zainstalować i skonfigurować Dockera? Czym się różni od innych rozwiązań? Jakie są korzyści z korzystania z Dockera?
How business and IT should cooperate with each other to verify business model...HighSolutions Sp. z o.o.
Presentation of Adam Matysiak from workshops conducted during Startup Poznań 2018.
The aim of the presentation was to show the diversity of business models, ways to verify business ideas, and the ability to test a business model before work on MVP begins.
Jak Biznes i IT powinny współpracować ze sobą by zweryfikować model biznesowy...HighSolutions Sp. z o.o.
Prezentacja Adama Matysiak z warsztatów przeprowadzonych w trakcie Startup Poznań 2018.
Celem prezentacji było pokazanie różnorodności modeli biznesowych, sposobów weryfikacji pomysłów na biznes, a także możliwości testowania modelu biznesowego zanim zacznie się prace nad MVP.
Presentation that took place in Poznań, 07.03.2018. Why chatbots are interesting? How to start develop chatbots in PHP, Laravel? What is possible in Messenger?
Prezentacja, która miała miejsce 2018-03-07 w Poznaniu. Wykonanie: Amadeusz Kozłowski (HighSolutions). Czy to koniec front-end frameworków jak Bootstrap? Jak wygląda konfiguracja w Tailwind CSS?
Prezentacja, która miała miejsce 2018-03-07 w Poznaniu. Wykonanie: Marek Tenus (HighSolutions). Podstawy tworzenia Form Requestów w miejsce standardowego obiektu Request. Opis zalet i wad takiego rozwiązania.
Prezentacja, która miała miejsce 7 marca 2018 w Poznaniu. Wykonanie: Adam Matysiak (HighSolutions). Czemu warto zainteresować się chatbotami? Jak tworzyć chatboty w PHP i Laravelu? Jak połączyć z Messengerem? Jakie są nowości?
Prezentacja podczas konferencji narodowej AIESEC Polska. O tym kiedy założyć firmy, jaką formę wybrać, jakie stoją wyzwania, a także jak rozpisać model biznesowy i na czym się skupić.
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBrad Spiegel Macon GA
Brad Spiegel Macon GA’s journey exemplifies the profound impact that one individual can have on their community. Through his unwavering dedication to digital inclusion, he’s not only bridging the gap in Macon but also setting an example for others to follow.
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdfFlorence Consulting
Quattordicesimo Meetup di Milano, tenutosi a Milano il 23 Maggio 2024 dalle ore 17:00 alle ore 18:30 in presenza e da remoto.
Abbiamo parlato di come Axpo Italia S.p.A. ha ridotto il technical debt migrando le proprie APIs da Mule 3.9 a Mule 4.4 passando anche da on-premises a CloudHub 1.0.
Ready to Unlock the Power of Blockchain!Toptal Tech
Imagine a world where data flows freely, yet remains secure. A world where trust is built into the fabric of every transaction. This is the promise of blockchain, a revolutionary technology poised to reshape our digital landscape.
Toptal Tech is at the forefront of this innovation, connecting you with the brightest minds in blockchain development. Together, we can unlock the potential of this transformative technology, building a future of transparency, security, and endless possibilities.
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC
Ellisha Heppner, Grant Management Lead, presented an update on APNIC Foundation to the PNG DNS Forum held from 6 to 10 May, 2024 in Port Moresby, Papua New Guinea.
Gen Z and the marketplaces - let's translate their needsLaura Szabó
The product workshop focused on exploring the requirements of Generation Z in relation to marketplace dynamics. We delved into their specific needs, examined the specifics in their shopping preferences, and analyzed their preferred methods for accessing information and making purchases within a marketplace. Through the study of real-life cases , we tried to gain valuable insights into enhancing the marketplace experience for Generation Z.
The workshop was held on the DMA Conference in Vienna June 2024.
Instagram has become one of the most popular social media platforms, allowing people to share photos, videos, and stories with their followers. Sometimes, though, you might want to view someone's story without them knowing.
11. Console testing
Artisan::command('question', function () {
$name = $this->ask('What is your name?');
$this->line('Your name is '.$name.'.');
});
/** @test */
public function question_asked()
{
$this->artisan('question')
->expectsQuestion('What is your name?', 'Adam')
->expectsOutput('Your name is Adam.')
->assertExitCode(0);
}
16. Parameter changes in framework
IlluminateFoundationApplication
public function register($provider, $force = false);
IlluminateAuthMiddlewareAuthenticate
protected function authenticate($request, array $guards)
ResetsPasswords
protected function sendResetResponse(Request $request, $response)
SendsPasswordResetEmails
protected function sendResetLinkResponse(Request $request, $response)
IlluminateContractsAuthAccessGate
public function raw($ability, $arguments = []);
17. Blade OR
// Laravel 5.6...
{{ $foo or 'default' }}
// Laravel 5.7...
{{ $foo ?? 'default' }}
18. Collection “split” method
Now always return the requested number of "groups"
#24088 - Fix a unsuspected result from the split function in
the Collection class