Presentation on Intuit's new (beta) QuickBooks Payments API. Prepared for and presented to a developer audience at the QuickBooks Connect Hackathon, Oct 20, 2014.
Deep Dive on the QuickBooks Online API and Intuit Developer PlatformIntuit Developer
Presented by Anthony Chan and Priya Vijayakumar at the May 17, 2016 Code Works event for Intuit Developer in San Francisco
Presented by Jarred Keneally at the June 16, 2016 Code Works event for Intuit Developer in London
What is developer experience? And how can it affect the success of your product? Our very own Keshav Vasudevan will take you through everything you need to know.
apidays LIVE Paris - Potential of API integrations, common traps and advices ...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Potential of API integrations, common traps and advices
Mathieu Rasse, CEO at Meta API
Presentation on Intuit's new (beta) QuickBooks Payments API. Prepared for and presented to a developer audience at the QuickBooks Connect Hackathon, Oct 20, 2014.
Deep Dive on the QuickBooks Online API and Intuit Developer PlatformIntuit Developer
Presented by Anthony Chan and Priya Vijayakumar at the May 17, 2016 Code Works event for Intuit Developer in San Francisco
Presented by Jarred Keneally at the June 16, 2016 Code Works event for Intuit Developer in London
What is developer experience? And how can it affect the success of your product? Our very own Keshav Vasudevan will take you through everything you need to know.
apidays LIVE Paris - Potential of API integrations, common traps and advices ...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Potential of API integrations, common traps and advices
Mathieu Rasse, CEO at Meta API
apidays LIVE Paris - Succeeding with API Programs by Kiran Nadgirapidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Succeeding with API Programs
Kiran Nadgir, Head of APIs and UX Platforms at Silicon Valley Bank
apidays LIVE Australia 2021 - Designing Embedded Platforms by Jeremy Glassenb...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
Designing Embedded Platforms: Lessons from Industry Success & Failure
Jeremy Glassenberg, Product Lead, APIs at Docusign
OAuth is more than an authentication protocol. A decade from now, OAuth will be viewed as the great enabler of new business models and wealth creation in the app economy.
In this session we'll investigate why many business development ideas don't make it past the whiteboard and how OAuth changes that. We'll tickle our imaginations and explore what is possible in a world where crossing trust boundaries is done with lower risk, more control and higher security.
We Will Discuss »
- Blockers to Business Innovation
- How OAuth Changes the Rules
- Re-Imagining the Future of Business Development
DevOps needs to consider many different aspects of software quality, including security. The term DevSecOps was developed to highlight that security is a focus of the pipeline, not a second-class citizen.
Fortunately, we can define done for our pipeline so that it includes security. Continuous integration can invoke static analysis tools to test for security errors and check if we are using components with known vulnerabilities. Automated deployments and virtualization make dynamic environments available for testing in a production-like setting. Regression tests can drive traffic through proxies for security analysis. From the code to the systems where we deploy the software, the process can be designed to make sure that we follow security best practices, and not produce insecure software.
Participants will learn how to construct a definition of done that focuses on security in a DevOps pipeline. They will see how to define security practices that build confidence that they are doing DevSecOps, and how those practices and criteria might mature over time.
Balancing Security & Developer Enablement in Enterprise Mobility - Jaime Ryan...CA API Management
Today’s enterprise mobility solutions emphasize heavy-handed IT governance of devices and applications that impose a burden on developers and/or users. However, managing data and applications using high performance mobile-optimized infrastructure can enable secure, scalable apps while minimizing the effort required by developers and allowing them to focus on their strengths. Come learn how to facilitate the best of both worlds – multi-layer mobile security using modern standards and a fantastic user experience.
Cloud Foundry Summit 2014: Introducing Cloud Foundry Integration for Eclipsedmbtr3
From the June 2014 Cloud Foundry Summit:
Title: BUSINESS TRACK: INTRODUCING CLOUD FOUNDRY INTEGRATION FOR ECLIPSE
Speaker: Adam Gunther
Abstract: Are you a developer who uses Eclipse? Do you want to get involved in a project with the goal to provide a first-class Cloud Foundry development environment for Eclipse? If so, then come learn about the Cloud Foundry Integration for Eclipse project. The Cloud Foundry eclipse plug-in allows developers to perform such tasks as deploy applications to Cloud Foundry and view and manage deployed applications and services. Come learn more about the current tools and community, what is planned for the future, and ways you can contribute.
Contract {Collaboration} Driven Development - APIdays Interface 2020Alianna Inzana
In the API space, much of the conversation around Contract Driven Development has centered on the question “Did we build the API right?“. By using the contract as the foundation for a common understanding of the API, we can answer not only that question, but the equally important - but more elusive - “Did we build the right API?“.
In /Contract/{Collaboration}/DrivenDevelopment, we will discuss how API Specifications and consumer-driven contracts can form the basis for cross-team collaboration in delivering quality services.
Learn about security architecture, security patterns for app and API access control, and best practices for threat management, data security, identity and compliance including:
- how to approach API security for your API program?
- the API security pillars - threat protection, data security and identity
- best practices for integrating identity services into API management
- how to meet compliance requirements for API products
Learn how to deploy a lean API runtime infrastructure in your private enterprise environment while getting all the benefits of Apigee Edge API management in the cloud.
apidays LIVE Jakarta - What will the next generation of API Portals look like...apidays
apidays LIVE Jakarta 2021 - Accelerating Digitisation
February 24, 2021
What will the next generation of API Portals look like?
Allan Knabe, API Product Manager & Co-founder at apiable.io
Agenda:
What is BPM?
BPM Benefits and Usage Fields
Camunda BPM Engine
Business Process Model and Notation
BPMN 2.0 Elements
What is Camunda?
Technical Architecture
Why Camunda
Demo
APIs provide both an extraordinary opportunity for both building engaging customer experiences and for strengthening your relationship with key business partners, but they also provide potential openings for savvy hackers to get unauthorized access to customer data and perhaps even to compromise your key business systems.
This presentation covers:
- API security fundamentals
- how to proactively watch for trouble
- protection and mitigation strategies to keep your customers and your business safe
apidays LIVE Paris - Interface Economy: The true potential of APIs by Kristof...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Interface Economy: The true potential of APIs Kristof Van Tomme, CEO & co-founder at Pronovix
INTERFACE, by apidays - A cloud-native approach for open banking in action b...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
A cloud-native approach for open banking in action
Rafael Marins, Principal Product Marketing Manager at Red Hat
Learn about why the small business market is the next best thing for developers.
See update from 2016 at: https://www.slideshare.net/secret/Bgk1gGQHNFIjIq
apidays LIVE Paris - Succeeding with API Programs by Kiran Nadgirapidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Succeeding with API Programs
Kiran Nadgir, Head of APIs and UX Platforms at Silicon Valley Bank
apidays LIVE Australia 2021 - Designing Embedded Platforms by Jeremy Glassenb...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
Designing Embedded Platforms: Lessons from Industry Success & Failure
Jeremy Glassenberg, Product Lead, APIs at Docusign
OAuth is more than an authentication protocol. A decade from now, OAuth will be viewed as the great enabler of new business models and wealth creation in the app economy.
In this session we'll investigate why many business development ideas don't make it past the whiteboard and how OAuth changes that. We'll tickle our imaginations and explore what is possible in a world where crossing trust boundaries is done with lower risk, more control and higher security.
We Will Discuss »
- Blockers to Business Innovation
- How OAuth Changes the Rules
- Re-Imagining the Future of Business Development
DevOps needs to consider many different aspects of software quality, including security. The term DevSecOps was developed to highlight that security is a focus of the pipeline, not a second-class citizen.
Fortunately, we can define done for our pipeline so that it includes security. Continuous integration can invoke static analysis tools to test for security errors and check if we are using components with known vulnerabilities. Automated deployments and virtualization make dynamic environments available for testing in a production-like setting. Regression tests can drive traffic through proxies for security analysis. From the code to the systems where we deploy the software, the process can be designed to make sure that we follow security best practices, and not produce insecure software.
Participants will learn how to construct a definition of done that focuses on security in a DevOps pipeline. They will see how to define security practices that build confidence that they are doing DevSecOps, and how those practices and criteria might mature over time.
Balancing Security & Developer Enablement in Enterprise Mobility - Jaime Ryan...CA API Management
Today’s enterprise mobility solutions emphasize heavy-handed IT governance of devices and applications that impose a burden on developers and/or users. However, managing data and applications using high performance mobile-optimized infrastructure can enable secure, scalable apps while minimizing the effort required by developers and allowing them to focus on their strengths. Come learn how to facilitate the best of both worlds – multi-layer mobile security using modern standards and a fantastic user experience.
Cloud Foundry Summit 2014: Introducing Cloud Foundry Integration for Eclipsedmbtr3
From the June 2014 Cloud Foundry Summit:
Title: BUSINESS TRACK: INTRODUCING CLOUD FOUNDRY INTEGRATION FOR ECLIPSE
Speaker: Adam Gunther
Abstract: Are you a developer who uses Eclipse? Do you want to get involved in a project with the goal to provide a first-class Cloud Foundry development environment for Eclipse? If so, then come learn about the Cloud Foundry Integration for Eclipse project. The Cloud Foundry eclipse plug-in allows developers to perform such tasks as deploy applications to Cloud Foundry and view and manage deployed applications and services. Come learn more about the current tools and community, what is planned for the future, and ways you can contribute.
Contract {Collaboration} Driven Development - APIdays Interface 2020Alianna Inzana
In the API space, much of the conversation around Contract Driven Development has centered on the question “Did we build the API right?“. By using the contract as the foundation for a common understanding of the API, we can answer not only that question, but the equally important - but more elusive - “Did we build the right API?“.
In /Contract/{Collaboration}/DrivenDevelopment, we will discuss how API Specifications and consumer-driven contracts can form the basis for cross-team collaboration in delivering quality services.
Learn about security architecture, security patterns for app and API access control, and best practices for threat management, data security, identity and compliance including:
- how to approach API security for your API program?
- the API security pillars - threat protection, data security and identity
- best practices for integrating identity services into API management
- how to meet compliance requirements for API products
Learn how to deploy a lean API runtime infrastructure in your private enterprise environment while getting all the benefits of Apigee Edge API management in the cloud.
apidays LIVE Jakarta - What will the next generation of API Portals look like...apidays
apidays LIVE Jakarta 2021 - Accelerating Digitisation
February 24, 2021
What will the next generation of API Portals look like?
Allan Knabe, API Product Manager & Co-founder at apiable.io
Agenda:
What is BPM?
BPM Benefits and Usage Fields
Camunda BPM Engine
Business Process Model and Notation
BPMN 2.0 Elements
What is Camunda?
Technical Architecture
Why Camunda
Demo
APIs provide both an extraordinary opportunity for both building engaging customer experiences and for strengthening your relationship with key business partners, but they also provide potential openings for savvy hackers to get unauthorized access to customer data and perhaps even to compromise your key business systems.
This presentation covers:
- API security fundamentals
- how to proactively watch for trouble
- protection and mitigation strategies to keep your customers and your business safe
apidays LIVE Paris - Interface Economy: The true potential of APIs by Kristof...apidays
apidays LIVE Paris - Responding to the New Normal with APIs for Business, People and Society
December 8, 9 & 10, 2020
Interface Economy: The true potential of APIs Kristof Van Tomme, CEO & co-founder at Pronovix
INTERFACE, by apidays - A cloud-native approach for open banking in action b...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
A cloud-native approach for open banking in action
Rafael Marins, Principal Product Marketing Manager at Red Hat
Learn about why the small business market is the next best thing for developers.
See update from 2016 at: https://www.slideshare.net/secret/Bgk1gGQHNFIjIq
Mobile applications Development - Lecture 14
REST Basics
This presentation has been developed in the context of the Mobile Applications Development course at the Computer Science Department of the University of L’Aquila (Italy).
http://www.di.univaq.it/malavolta
Intuit We Care and Give Back by Kara DeFriasKara DeFrias
10 Intuit employees journeyed to Ghaziabad, India as part of the company's first cross-border volunteer project as part of our We Care and Give Back initiative. April 19-30, 2014.
QuickBooks Connect 2016 - Implementing analytic and optimization tools on you...Intuit Developer
Learn best practices in analytic and optimization tools for your SaaS app or website to increase conversion rates, test ideas, and understand your customers better.
Key Takeaways:
• How to implement an A/B test.
• Understand the landscape of analytic and optimization tools available.
• Gain the ability to make informed decisions about what on your website is working.
Kick off for the QuickBooks Connect 2015 $100k Hackathon included opening remarks from Avi Golan, VP of Intuit Developer Group, Tools/API overview from Jarred Keneally (Mgr, Dev Support), Hack challenges and logistics from Lori Fraleigh (Director, Dev Relations), and Small Business Panel led by Lindsey Grossman (Director, Partnerships)
Jen Pataki, Director of Marketing for Intuit Developer Group, provides developers a look behind the scenes of a small business, to help understand the huge opportunity for developers to create software applications that integrate with QuickBooks Online to solve customer pain points and fuel small business sucess. Talk first given on Nov. 3, 2015 at the QuickBooks Connect conference in San Jose, CA.
Watch the talk here: https://youtu.be/noiuY9uZNaw
Gretchen Salyer, Director of Partnerships for Intuit Developer Group, dives into strategies for developers to successfully market their apps by leveraging the vast QuickBooks platform ecosystem. Talk first presented at QuickBooks Connect conference in San Jose, CA, on Nov. 3, 2015.
Watch the talk here: https://youtu.be/8kRFUKxldOE
“Build it and They Will Come” May Not Work: Investing Early in Developer SuccessIntuit Developer
Talk given March 22, 2016, at Evans Data Developer Relations Conference in Palo Alto, CA by Lori Fraleigh, Director of Developer Relations for Intuit, Inc.
QuickBooks Connect 2016 - Marketing your app: learn from your developer peersIntuit Developer
Once you launch your app, how do you market it? Learn from the pros who have made it big in the QuickBooks ecosystem. This session will include the tips and tricks you need to succeed with small businesses and accountants.
QuickBooks Connect 2016 - Building your first QuickBooks App integrationIntuit Developer
You've got a great small business SaaS app. You know that your app and your customers will benefit from a deep integration with QuickBooks. This session will teach you how to use Intuit's dev tools and APIs to integrate your app with QuickBooks and publish it on the QuickBooks App Store.
Key Takeaways:
• Learn what is possible with the QuickBooks API and common integration points.
• Learn what developer resources are available from Intuit.
• Learn how to publish your app on Apps.com.
QuickBooks Connect 2016 - How small business can benefit from developer innov...Intuit Developer
Augmented Reality, Internet of Things, Blockchain, mobile devices and literally thousands of apps available – where does the developer, fit in? Hear from a panel of media, technology leaders and analysts on what innovations are most important to small business owners and how developers can start preparing for the future.
Key Takeaways:
• Understand how technology will affect small business in the short and long term future
• Learn how developers can benefit from and help drive growth and adoption of new tech among small businesses
• Hear from tech leaders on how they are creating an ecosystem
that’s driving innovation within the small business space
Intuit Developer Group leaders discuss the business, marketing, and technical resources, tools, and opportunities available for developers who integrate their apps with the QuickBooks platform. Talk first given on Nov 2, 2015, in conjunction with the QuickBooks Connect conference in San Jose. Session exclusively designed for conference sponsors.
Watch the talk here: https://youtu.be/t0Dj30DDaMg
QuickBooks Connect 2016 - The 12 golden rules for building products that cust...Intuit Developer
A couple of veteran Intuit Product Managers will share some of our secret sauce, and industry best practices, for bringing awesome products and services to market – fast. You will learn both tried & true fundamentals, as well as flashy & new ways to test, innovate and iterate your way to building awesome products and services.
Key Takeaways
• Learn how to develop deep customer empathy and apply those insights to build impactful products and services
• Learn how to rapidly test and experiment to make fast decisions and avoid expensive mistakes
• Learn how to create a team culture that fearlessly reaches for the stars, one step at a time
User Management and App Authentication with Amazon Cognito - SID343 - re:Inve...Amazon Web Services
Notice: This Workshop requires a laptop computer and an active AWS account with Administrator privileges.
Are you curious about how to authenticate and authorize your applications on AWS? Have you thought about how to integrate AWS Identity and Access Management (IAM) with your app authentication? Have you tried to integrate third-party SAML providers with your app authentication? Look no further. This workshop walks you through step by step to configure and create Amazon Cognito user pools and identity pools. This workshop presents you with the framework to build an application using Java, .NET, and serverless. You choose the stack and build the app with local users. See the service being used not only with mobile applications, but with other stacks that normally don’t include Amazon Cognito.
OAuth 2.0 and Mobile Devices: Is that a token in your phone in your pocket or...Brian Campbell
Gluecon 2012 presentation on using OAuth 2.0 with mobile applications to utilize social logins. "Is that a token in your phone in your pocket or are you just glad to see me? OAuth 2.0 and Mobile Devices"
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker IdentityCA API Management
Understanding how emerging standards like OAuth and OpenID Connect impact federation
Federation is a critical technology for reconciling user identity across Web applications. Now that users consume the same data through cloud and mobile, federation infrastructure must adapt to enable these new channels while maintaining security and providing a consistent user experience.
This webinar will examine the differences between identity federation across Web, cloud and mobile, look at API specific use cases and explore the impact of emerging federation standards.
You Will Learn
Best practices for federating identity across mobile and cloud
How emerging identity federation standards will impact your infrastructure
How to implement an identity-centric API security and management infrastructure
Presenters
Ehud Amiri
Director, Product Management, CA Technologies
Francois Lascelles
Chief Architect, Layer 7
EduID Mobile App - Use-Cases, Concepts and ImplementationChristian Glahn
This presentation describes the token-agent implementation for openID Connect for authenticating native mobile apps provided by third parties. It presents a standards-based working solution for integrating loosely coupled native apps into a trust federation using. This allows for deeper integrated authentication services on Android and iOS without violating app-store policies.
This presentation has been part of the EduID Mobile App workshop at SWITCH on 25 Apr. 2017.
Thanks to Christoph Graf (SWITCH), Riccardo Mazza (USI), Michael Hausherr (FHNW), Goran Josic (USI), and Yann Cuttaz (USI).
The OAuth 2.0 authorization framework enables a third-party
application to obtain limited access to an HTTP service, either on
behalf of a resource owner by orchestrating an approval interaction
between the resource owner and the HTTP service, or by allowing
the third-party application to obtain access on its own behalf.
Presentation describes different authentication ways to protect web application. It shows difference between custom approach and authentication with OAuth1 and OAuth2.
2022 APIsecure_Why Assertion-based Access Token is preferred to Handle-based ...APIsecure_ Official
APIsecure - April 6 & 7, 2022
APIsecure is the world’s first conference dedicated to API threat management; bringing together breakers, defenders, and solutions in API security.
Why Assertion-based Access Token is preferred to a Handle-based one?
Yoshiyuki Tabata, Software Engineer at Hitachi
Integrating consumers IoT devices into Business WorkflowYakov Fain
From the software development perspective IoT is about programming "things", connecting them with each other and integrating them with existing applications. This presentation will demonstrate how IoT-enabled devices from multiple manufacturers can be integrated into a workflow of a business application. You'll see a live demo of using commercial consumer devices as a part of an application that utilizes such technologies such as REST API, OAuth, Websockets, and Java. This presentation will give you an idea of how to go about integration of new devices as they become available on the market.
An introduction to OAuth 2.0 from a Salesforce perspective to establish the foundations of OAuth 2.0. Discusses the key concepts of Authentication and Authorization and distinguishes the two. Also discusses Open ID connect.
Traditional security models no longer suffice in the new digital and API driven economy. APIs expose corporate data in very deliberate and thoughtful ways, but, as with any technology that involves enterprise data, security should always be a prime concern. How do you keep your customers' digital experiences as secure as your backend data and services?
OAuth is an API authorization protocol that enables apps to access information on behalf of users without requiring them to divulge their usernames and passwords.
Best Practices for Application Development with BoxJonathan LeBlanc
Covering the best practices for building new applications on top of Box platform, including token management, error condition and program flow, architecture, and other such topics.
Choreo: Empowering the Future of Enterprise Software EngineeringWSO2
Key topics covered:
- Real-world examples of Choreo's comprehensive coverage from application design and deployment, security, scaling, and monitoring
- Running different types of workloads, such as web applications, APIs, microservices, integrations, and tasks at scale, and wire them together to deliver seamless omnichannel digital experiences
- How Choreo improves the developer experience by eliminating repetition, silos, and redundancy through enhanced discoverability and self-serviceability
Anatomy of a Quality App, QuickBooks Connect 2017Intuit Developer
Developer Track presentation from QuickBooks Connect San Jose (Nov 2017). Want to build an awesome SaaS app that small businesses and accountants will use and recommend? This session will provide unique insights from Intuit's customer data to help you understand customer pain points that you can solve with your app. We will walk through the components of the end-to-end customer experience with a QuickBooks app integration to reveal key insights that every app developer should consider.
The Momentum of QuickBooks Developers: the Road to Success, QuickBooks Connec...Intuit Developer
Developer track presentation from QuickBooks Connect San Jose (Nov 2017). With well over two million customers worldwide, the QuickBooks platform continues to provide an incredible opportunity for app developers to succeed. Come see and hear about the latest innovations in both the platform and the ecosystem that are driving growth for developers and success for our small business customers.
From Idea to Published App, QuickBooks Connect 2017Intuit Developer
Developer Track presentation from QuickBooks Connect San Jose (Nov 2017). This session is for both new and existing QuickBooks developers. Learn about the latest tools and resources available to streamline and ease your app development, including OAuth2.0 and OpenID Connect, new SDKs, and publishing tools. Live coding and practical demos will show you the fastest path from app idea to published app.
Data Integrations that Delight! QuickBooks Connect San Jose 2017Intuit Developer
Developer Track presentation from QuickBooks Connect San Jose (Nov 2017). Explore how staged transactions improves app experience for developer and customer alike.
Event: Scaling New Heights 2017
Speaker: David Leary
Title: 50 Niche Apps in 50 Minutes
Description: In this classroom style session, you will learn the importance of picking a niche, including examples of successful niche accountant practices. In class exercises will help you pick your niche, discover niche apps that help you best serve your niche clients, open communication channels with niche app developers, and discover marketing channels you can use to target your niche client base.
NOTE: Video of presentation can be found here: https://www.youtube.com/watch?v=TsMUsLXcsGQ
QuickBooks Connect 2016 - Using WebHooks to handle data changes in your appIntuit Developer
In this session, you will learn the latest ways to manage data changes from QuickBooks in your small business SaaS app.
Key Takeaways:
• Learn the different ways to manage changes to customer data in real time
• Learn the pros and cons of the different methods
• Learn how to implement the most efficient and recommended method in your app
More and more people use their smartphones or tablets as their primary computing device. Is your app designed to work intuitively on those platforms? Learn best practices, practical tips and trade-offs for creating a responsive design that provides the best customer experience for your app.
Key Takeaways:
• Understand how customers will experience your app
• Learn why and how mobile app use is fundamentally different
• Learn how to design your app for use on a mobile device
QuickBooks Connect 2016 - Building a global app: understanding the Global Tax...Intuit Developer
Your QuickBooks app integration is successful in one region. What do you need to do to prepare it for Australia, the UK, Canada, or any other region where QuickBooks is used? Learn about the Global Tax Model and Multicurrency features available in QuickBooks and how you can implement them in your app.
Key Takeaways:
• Understand the QBO global tax model
• Understand how QBO handles multicurrency
• Learn how the QuickBooks API handles global tax and multicurrency
Ketan Kittur, Director of Product Management for Intuit Developer Group, provides a look the tools and resources available for developers who create apps that integrate with QuickBooks Online and solve problems for small business owners. Presentation first given on November 3, 2015, at the QuickBooks Connect Conference in San Jose, CA.
Watch the talk here: https://youtu.be/lz2YPMXAiyo
Harmony, Sandbox, and You: Intuit Developer Webinar, January 2015Intuit Developer
Hands-on walkthrough of Intuit's Harmony Design Toolkit, available for developers to improve customer experience with their app integrations with QuickBooks Online. Also, hands-on walkthrough of the Developer Sandbox available to Intuit Developers to speeden their app integration and testing.
Presentation on the components of an effective app pitch. Prepared for and presented to developer at Intuit's QuickBooks Connect Hackathon, Oct. 21, 2014.
Presentation by Small Business Web org on why Open APIs for accounting / QuickBooks are necessary and valuable. Prepared for and presented to a developer audience at the QuickBooks Connect Hackathon, Oct 20, 2014.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
2. Who’s in the room?
2
• What’s your role?
- ProductManager
- Engineer?
• Worked with OAuth-authorized APIs before?
- OAuth 1.0a?
- OAuth 2.0?
• What languages are you working in?
- Java?
- .NET?
- NodeJS?
3. 3
What is OAuth?
Industry Standard in durableauthentication & authorization (AuthN & AuthZ)
Token Provisioning,Use,Revocation
Replacesprocesses thatinvolve you storing username+passwordfor services you do not
provide
Widely adopted,tested,and supported
4. 4
How does OAuth work?
When you create an App on developer.intuit.com you get an OAuth consumerkey & secret
Use the consumerkey to get a requesttoken (server-to-servercall)
Open a browserwindow to Intuit for the user to authorizethe token request
Upon authorization by the user,a redirectcallback to your serverfrom the browserwindow
provides a tokenVerifier
When you get the token verifier,the responseshouldclose the popup window.
Make server-to-servercallto exchangerequestTokenand tokenVerifierfor an accessTokenand
accessTokenSecret
6. 6
Why is OAuth “hard”?
Oauth 1.0a was designed for potentially insecure communication channels
Client and Serverneed to implementcryptographyto sign & verify every requestusing the token secret
If you get the signature wrong,the requestis rejected
You are signing a signature base string composed ofthe requestmethod,scheme,server,path,GET
query parameters,and oauth parametersin the header(exceptthe oauth_signature parameteritself)in
alphabeticalorder.
• Example:
GET&http%3A%2F%2Fphotos.example.net%2Fphotos&file%3Dvacation.jpg%26oauth_consumer_key%3Ddpf43f3p2l4k
3l03%26oauth_nonce%3Dkllo9940pd9333jh%26oauth_signature_method%3DHMAC-
SHA1%26oauth_timestamp%3D1191242096%26oauth_token%3Dnnch734d00sl2jdk%26oauth_version%3D1.0%26size
%3Doriginal
• If you get the base string wrong, then the signature won’t match the base string calculated by the server and the request
is rejected.
7. 7
Libraries Help. A Lot
Signpostlibrary (oauth.signpost.*)
DevDefined.OAuth
The “request”module (npm installrequest)
PECL OAuth library or OAuthSimple
oauth Gem
Java
.Net
NodeJS
PHP
Ruby
8. 8
Critical URLs
RequestToken endpoint: https://oauth.intuit.com/oauth/v1/get_request_token
UserAuthorizationURL:https://appcenter.intuit.com/Connect/Begin
Access Tokenendpoint:https://oauth.intuit.com/oauth/v1/get_access_token
You will typically need to configure any library you use with these three key endpoints.
Reconnectendpoint:https://appcenter.intuit.com/api/v1/connection/reconnect
Tokensexpire 180 days aftergrant
Within 30 days of expiry,callthe reconnectAPIto ensure uninterruptedservicefor your users
9. 9
Oauth Tokens & Secrets are “Top Secret” Data
Yourclient credentials(ConsumerSecret)representthe ability to get a user to authorize access
to their data thinking they are granting that access to you!
If a black hatcan get your secret,they can use yourbrand to do bad things
Your consumersecretshould alwaysbe encrypted when at-rest.
An access token represents a long-term authorization foryourapp to accessa given user’s data
unattended.
Accesstoken and AccessToken Secretdata should*always*be stored in encrypted storageand the
encryptionkey shouldnotbe stored in the same place!
Access tokens& secrets shouldneverbe delivered to a browser
Nevermake a call to ourAPIs directly from client-side Javascript
For native client-side code in mobile devices:4-leggedOAuth
10. 10
Connect to QuickBooks – The Client Side
• We provide a JS library to help manage the flow
- https://js.appcenter.intuit.com/Content/IA/intuit.ipp.anywhere-1.3.2.js
- Call intuit.ipp.anywhere.setup(params)
o Params is a dictionary withgrantURL,datasources object,andpayment options object
o grantURL is the URL on your server to start the Oauth process
- When Connect To QuickBooks button is clicked call
intuit.ipp.anywhere.controller.onConnectToIntuitClicked()
o Opens a new popup window
o Initiates a sessionwithIntuit withthe parameters you suppliedregarding data sources needed, etc.
o Redirects to your Grant URL
o Your GrantURL redirects back to us for the user to authorize the connection
o We redirect back to your callback URL withthe token verifier
o Your response closes the popup window
11. 11
Gotcha!
Currentimplementationrestricts each app to one OAuth token per company!
Same usergranting a token to the same app for the same company:
• no error, previous token invalidated, new token granted.
Differentuser granting a token to the same app for the same company:
• Error! User informed that user X already subscribed to the app for this company, OAuth token is denied.
We did this to preventtwo users from connecting the same app unaware ofeach other and creating
duplicate data.
There are legitimate use-cases for multiple tokens (i.e.multiple stores on an e-commercesite for
differentregions),we’re consideringoptions.
12. 12
Explore the OAuth Samples
.NET: https://github.com/IntuitDeveloper/oauth-dotnet
Java:https://github.com/IntuitDeveloper/oauth-java
PHP: https://github.com/IntuitDeveloper/oauth-php
NodeJS:https://www.npmjs.com/package/node-quickbooks
npm installnode-quickbooks
cd node_modules/node-quickbooks/example
Ruby:https://github.com/ruckus/quickbooks-ruby
18. • An elegant and cohesive ecosystem API
- Envisioned as a graph
- Consumed by 1P through an internal SDK
- Experienced through projections
• High degree of automation – architected for testability
• Architecture
- Domain variability expressed consistently through Json Schema
• Accelerates decomposition through orchestrated graph queries and writes
• Enables innovation, balancing speed with governance
• Dog-fooding: identical functionality, quality, and availability for 1st, 2nd, and
3rd parties
V4 Services Overview
V4
3rd
2nd
1st
18
20. V4 Endpoint
V4 Decomposed Services
Putting it all together – ideal V4 services state
20
Internal SDK
V3 EndpointTranslation
QBO UX
Widgets
(Mobile, Web,
Future 3P)
1P 2P / 3P
Official 3P SDKs (e.g. Java, .net, PHP)
App /
Integration
App /
Integration
App /
Integration
Many (~50%) of our 3P developers also use SDKs.
Our official 3P SDKs will evolve to support multiple
API version interoperability.
Many of our 3P developers
write directly to rest APIs.
Our 1P teams
will make heavy
use of an internal
SDK that
enforces internal
best practices
around building
great offerings.
Our translation
infrastructure
makes it possible to
extend the lifetime
of API versions – a
tremendous
developer benefit
for 1P, 2P, and 3P
personas.
Accountin
g
Payroll Payments Money
Movemen
t & Risk
Transactio
ns
ReportingCompany Accountan
t
Integratio
ns
Network Indirect
Tax
Inventory
22. V4 API Services Developer Benefit
22
QBO UX
Widgets
(Mobile,Web,
Future 3P)
V4 QBO Services
App /
Integration
Complete and Consistent Foundation for Developers
• 2P/3P Developers can do anything that the UI can do
• All QBO uses the same services – so no more one-off behaviors
• Apps enjoy the same reliability as core QBO
V3 App
V3 Endpoint V4 Endpoint
V4 App
Translation
App Durability
• API version translation means that developerinvestment is durable
• No more deprecation cost for developers (and the QuickBooks team)
QBO Services
V4.1 Endpoint
V4.1 App
Translation
QBO Services
V4.n Endpoint
V4.n App
Translation
QBO Services
23. Grow My Business
Deliver Awesome Experiences Quickly
Access
New Connections
Retention
Active Connections
Speed
Time to Launch
Value
Integration Star Rating
+
+
DEVELOPER SEGMENT
23
24. V4 is a graph
V4 {
companies: {
bills: { vendor: { } }
employees: { }
vendors: { }
items: { }
}
users: {
…
}
}
Root of the graph
Has an array of
companies
Which has an array of
bills
…
24
25. Projections of the Graph
V4 {
companies: {
bills: {
vendor: { }
}
…
REST
GET https://v4.api.intuit.com/companies/1234/bills/1234/vendor
BATCH
POST https://v4.api.intuit.com/companies/1234/entities
[{vendor}, {employee}, {bill1}, {bill2}, {query}]
SIMPLE QUERY
GET
https://v4.api.intuit.com/companies/1234/bills?where=“vendor.name=J
eff”
GRAPH QUERY
POST https://v4.api.intuit.com/graphql
{ company(id: “1234”) {
bills(first: 100, where: “vendor.name=Jeff”) {
edges {
node {
id
txnDate
}
}
}
25
26. Normalized to a Batch…
Domains implement BATCH
REST SIMPLE QUERY GRAPH QL
Projections
BATCH
BATCH
26