This document summarizes Subbu Allamaraju's presentation on building RESTful web APIs. The presentation covers REST architecture constraints including identifying resources with URIs, manipulating resources through representations, self-descriptive messages, and hypermedia as the engine of application state. It also discusses building RESTful HTTP APIs by using the HTTP methods like GET, POST, PUT, DELETE according to their definitions and designing resources around domain nouns. The presentation provides examples of RESTful and non-RESTful API designs.
This presentation gives a high level concepts and more of code to take a stab at developing a simple Restful server. I targeted people who would like to build a simple RESTFul server from scratch and experiment.
this is an old version. new version here: http://blog.apigee.com/detail/slides_for_restful_api_design_second_edition_webinar/
It's been 10 years since Fielding first defined REST. So, where are all the elegant REST APIs? While many claim REST has arrived, many APIs in the wild exhibit arbitrary, productivity-killing deviations from true REST. We'll start with a typical poorly-designed API and iterate it into a well-behaved RESTful API.
REST 101: An Overview To Representational State Transfer.Omar Fernando Zafe
REST APIs offer an easy way of communication between applications. Big companies like Amazon, Twitter, Facebook and MercadoLibre implement Restful APIs to provide their services. This talk is an introduction to understand how this technology works and how can be consumed by our apps.
This talk introduces Spring's REST stack - Spring MVC, Spring HATEOAS, Spring Data REST, Spring Security OAuth and Spring Social - while refining an API to move higher up the Richardson maturity model
This presentation gives a high level concepts and more of code to take a stab at developing a simple Restful server. I targeted people who would like to build a simple RESTFul server from scratch and experiment.
this is an old version. new version here: http://blog.apigee.com/detail/slides_for_restful_api_design_second_edition_webinar/
It's been 10 years since Fielding first defined REST. So, where are all the elegant REST APIs? While many claim REST has arrived, many APIs in the wild exhibit arbitrary, productivity-killing deviations from true REST. We'll start with a typical poorly-designed API and iterate it into a well-behaved RESTful API.
REST 101: An Overview To Representational State Transfer.Omar Fernando Zafe
REST APIs offer an easy way of communication between applications. Big companies like Amazon, Twitter, Facebook and MercadoLibre implement Restful APIs to provide their services. This talk is an introduction to understand how this technology works and how can be consumed by our apps.
This talk introduces Spring's REST stack - Spring MVC, Spring HATEOAS, Spring Data REST, Spring Security OAuth and Spring Social - while refining an API to move higher up the Richardson maturity model
An examination of the current data portability design patterns used in Social Media sites. Looking at a possible new Open Stack concept to create true plug and play interfaces for user to exchange data
Build and Deploy Robot Applications Easily (ROB302-R) - AWS re:Invent 2018Amazon Web Services
We’ll use an object detection robot as an example to show how AWS RoboMaker can help you build the robot of your dreams. We’ll do a deep dive into the architecture of our robot application. You’ll learn how it uses various AWS services to detect and react to objects. Along the way, we’ll show you how AWS RoboMaker makes it easy to develop and test such applications. Finally, we’ll dive into how AWS RoboMaker deploys your application to a fleet of robots.
OpenAPI v.Next - Events, Alternative Schemas & the Road AheadTed Epstein
-- Presented at KCDC 2018 --
The OpenAPI Specification, already the most widely used REST API description language, is growing fast, and evolving to meet the challenges that come with broad adoption in a dynamic and diverse API ecosystem. In this session, we'll get up to speed with the latest developments in the OpenAPI spec, the tools ecosystem and member community. We'll show highlighted features of last year's major 3.0 release, dive into the new design capabilities currently in progress, and discuss the evolving roadmap for 3.x, 4.x and beyond.
If you still running servers for website backend, come and see how you can remove server operations from your tasks list and focus on developing the best code and product.In this session, we will take a common website architecture and show how can we use AWS Lambda, AWS AppSync and other Services to build smarter and better systems.
If you still running servers for website backend, come and see how you can remove server operations from your tasks list and focus on developing the best code and product.
In this session, we will take a common website architecture and show how can we use AWS Lambda, AWS AppSync and other Services to build smarter and better systems.
Neptune is a Graph database, but what is a graph database, when should it be used and how? Come to this sessions and learn about Neptune and the different use cases for graph databases and how it can be used, including demos.
Ruby Support for AWS Lambda at Native Speed with JetsTung Nguyen
Here's the presentation I gave at the AWS Summit in Toronto 2018.
Abstract:
In this dev chat, we review how to run Ruby on AWS Lambda using a tool called Jets. Jets is a framework that enables you to create serverless applications with the beautiful language, Ruby. Learn how Ruby support was added to Lambda with native-like performance, and discover how Lambda works under the hood to understand how this was accomplished. We show you how to get started through a demo with a Lambda Ruby application, and we deploy it to Lambda with a single command.
Whether you build software for enterprises, mobile, or internal microservices, security is important. Standards like SAML, OIDC, and SPIFFE help you solve identity and authentication, but for them authorization is out of scope. When you need to control "who can do what" in your app, you are on your own.
To solve authorization, you may be tempted to hardcode logic against SAML assertions, scopes, or X.509 certificate attributes. But, approaches like this lead to systems that are hard to understand and painful to maintain.
This talk shows how to leverage the Open Policy Agent (which is used by companies like Netflix and Chef) to build a powerful authorization system on top of industry-standard authentication protocols. The talk showcases how decoupling leads to authorization solutions that are easier to understand while enabling fine-grained control over the app.
OneSpring: 5 Myths of Rich Internet ApplicationsOneSpring LLC
What are Rich Internet Applications or RIAs? Are they the panacea for everything that ails us? User Experience expert Laurie Gray from OneSpring discusses some of the most common attitudes toward RIA’s and addresses the 5 biggest myths surrounding this exciting technology.
Talk to me Goose: Going beyond your regular ChatbotLuc Bors
Session from oracle code one 2018: After his first steps into robotics and IoT, this session’s speaker decided to take it one step further: a more realistic robot that knows who you are and responds to your questions. Using chatbot technology and voice and face recognition, this robot can become a real add-on to your daily life. In this session, you will learn how the speaker extended an off-the-shelf solution with additional cloud technology to make these things work
Search Engines and Flash: Secrets, Tricks, and Black Magicguestb1f3a
Adobe Flash is a binary format and has not always been accessible to search engine spiders (small bits of code that algorithmically determine a page’s content for rankings in search engines). SEO experts have developed several key workarounds and new technical developments have made new functionality available to search engines and developers alike.
Duane Nickull, an Adobe Technical Evangelist, will showcase some advanced tips and tricks to give you the edge over the competition as well as share some secrets. Attendees will learn how to increase initial page rankings as well as monitor and increase dynamic page ranks.
An examination of the current data portability design patterns used in Social Media sites. Looking at a possible new Open Stack concept to create true plug and play interfaces for user to exchange data
Build and Deploy Robot Applications Easily (ROB302-R) - AWS re:Invent 2018Amazon Web Services
We’ll use an object detection robot as an example to show how AWS RoboMaker can help you build the robot of your dreams. We’ll do a deep dive into the architecture of our robot application. You’ll learn how it uses various AWS services to detect and react to objects. Along the way, we’ll show you how AWS RoboMaker makes it easy to develop and test such applications. Finally, we’ll dive into how AWS RoboMaker deploys your application to a fleet of robots.
OpenAPI v.Next - Events, Alternative Schemas & the Road AheadTed Epstein
-- Presented at KCDC 2018 --
The OpenAPI Specification, already the most widely used REST API description language, is growing fast, and evolving to meet the challenges that come with broad adoption in a dynamic and diverse API ecosystem. In this session, we'll get up to speed with the latest developments in the OpenAPI spec, the tools ecosystem and member community. We'll show highlighted features of last year's major 3.0 release, dive into the new design capabilities currently in progress, and discuss the evolving roadmap for 3.x, 4.x and beyond.
If you still running servers for website backend, come and see how you can remove server operations from your tasks list and focus on developing the best code and product.In this session, we will take a common website architecture and show how can we use AWS Lambda, AWS AppSync and other Services to build smarter and better systems.
If you still running servers for website backend, come and see how you can remove server operations from your tasks list and focus on developing the best code and product.
In this session, we will take a common website architecture and show how can we use AWS Lambda, AWS AppSync and other Services to build smarter and better systems.
Neptune is a Graph database, but what is a graph database, when should it be used and how? Come to this sessions and learn about Neptune and the different use cases for graph databases and how it can be used, including demos.
Ruby Support for AWS Lambda at Native Speed with JetsTung Nguyen
Here's the presentation I gave at the AWS Summit in Toronto 2018.
Abstract:
In this dev chat, we review how to run Ruby on AWS Lambda using a tool called Jets. Jets is a framework that enables you to create serverless applications with the beautiful language, Ruby. Learn how Ruby support was added to Lambda with native-like performance, and discover how Lambda works under the hood to understand how this was accomplished. We show you how to get started through a demo with a Lambda Ruby application, and we deploy it to Lambda with a single command.
Whether you build software for enterprises, mobile, or internal microservices, security is important. Standards like SAML, OIDC, and SPIFFE help you solve identity and authentication, but for them authorization is out of scope. When you need to control "who can do what" in your app, you are on your own.
To solve authorization, you may be tempted to hardcode logic against SAML assertions, scopes, or X.509 certificate attributes. But, approaches like this lead to systems that are hard to understand and painful to maintain.
This talk shows how to leverage the Open Policy Agent (which is used by companies like Netflix and Chef) to build a powerful authorization system on top of industry-standard authentication protocols. The talk showcases how decoupling leads to authorization solutions that are easier to understand while enabling fine-grained control over the app.
OneSpring: 5 Myths of Rich Internet ApplicationsOneSpring LLC
What are Rich Internet Applications or RIAs? Are they the panacea for everything that ails us? User Experience expert Laurie Gray from OneSpring discusses some of the most common attitudes toward RIA’s and addresses the 5 biggest myths surrounding this exciting technology.
Talk to me Goose: Going beyond your regular ChatbotLuc Bors
Session from oracle code one 2018: After his first steps into robotics and IoT, this session’s speaker decided to take it one step further: a more realistic robot that knows who you are and responds to your questions. Using chatbot technology and voice and face recognition, this robot can become a real add-on to your daily life. In this session, you will learn how the speaker extended an off-the-shelf solution with additional cloud technology to make these things work
Search Engines and Flash: Secrets, Tricks, and Black Magicguestb1f3a
Adobe Flash is a binary format and has not always been accessible to search engine spiders (small bits of code that algorithmically determine a page’s content for rankings in search engines). SEO experts have developed several key workarounds and new technical developments have made new functionality available to search engines and developers alike.
Duane Nickull, an Adobe Technical Evangelist, will showcase some advanced tips and tricks to give you the edge over the competition as well as share some secrets. Attendees will learn how to increase initial page rankings as well as monitor and increase dynamic page ranks.
How to bring in safety back into an organizational culture when the contemporary patterns used to increase the rate of change also contribute to increased fragility? In this talk, we will look at contributing factors, the limits of chaos testing, and patterns and practices needed to support a high rate of change while also maintaining system safety.
Presented at:
Feb 6, 2019 at https://conferences.oreilly.com/software-architecture/sa-ny/schedule/2019-02-06
Mar 26, 2019 at https://t3ch.amadeus.com/agenda
Slides from my keynote presentation at the Container World 2018 conference (https://tmt.knect365.com/container-world/speakers/subbu-allamaraju#keynote-programming_keynote-are-we-ready-for-serverless)
Slides from eBay's talk at the OpenStack Summit in Tokyo (Oct 2015) - see https://openstacksummitoctober2015tokyo.sched.org/event/19e95f52289777de81fe04db92f4a082#.VjGHXq4rISQ for details.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems