Scaletta del talk:
Introduzione: Chi è Profesia/WSO2
Cosa è un Identity server
Ruolo di Identity server in architettura
Panoramica feature Identity server
Configurazione social Google
Login con google e non con un esempio
Considerazioni finali
This document introduces the hapi.js framework for building web applications and services. It was created by Eran Hammer and is used by companies like Walmart. Hapi.js focuses on modularity, reliability, and security. It allows for logical modularization of applications into smaller modules. It has been tested at large scale without issues, such as all of Walmart's Black Friday traffic for two years. The document discusses how to install hapi.js, create a basic server, add routes and handlers, use plugins, and decorate the server. It recommends next steps like using the makemehapi tool for guided learning and provides contact details for the author.
The document discusses server-side OSGi using Apache Sling. It provides an overview of Apache Sling as a REST-based web framework powered by OSGi. It describes how Sling uses key OSGi specifications and services like Declarative Services, Configuration Admin Service, and Http Service. The advantages of using OSGi with Sling are its modularity, extensibility, and dynamic capabilities. Some challenges are OSGi's steep learning curve and issues around scripting and legacy specifications.
Using hapi plugins to version your API (hapiDays 2014)Dave Stevens
Organizing your web application using hapi's plugin architecture provides a great deal of flexibility and modularization. This talk details how to utilize this flexibility to version your API.
- Apache Sling is a REST-based web application framework that is powered by OSGi. It uses OSGi concepts like bundles, services, and declarative services.
- Sling maps URLs to resources, which can represent items in a JCR repository or files in the filesystem. HTTP methods map to script names that handle requests.
- Using OSGi provides advantages like modularity, extensibility, and dynamism through declared dependencies and classloader isolation. However, OSGi also presents challenges around learning curve and legacy specifications.
1) The document describes setting up a Laravel application to manage image uploads to a database. It includes configuration of the database connection, generation of models and controllers using Artisan commands, and setup of routes for the image upload functionality.
2) Views are created to display the image upload form, show individual images, and list all images along with edit and delete links.
3) The ImagesController contains methods for storing, retrieving, updating, and deleting images from the database along with logic for handling file uploads.
Como realizar un login rapidamente con Laravel, haciendo uso de la línea de comandos.
Es asombroso cuan rápido se puede avanzar mediante laravel (creador de usuario).
The Apache Felix Web Console has been created out of a need to remotely administer an OSGi Framework. This administration includes maintenance of bundles, editing Configuration, and introspecting the system in terms of identifying services and Declarative Services components. In addition the Web Console offers a plugin-model for it to be easily extended.
Standing on the shoulders of giants, Silex is a micro framework built on top of Symfony2 components. It provides an ideal environment for throwing together a simple, single file application. We’ll look at a real example of installing and setting up Silex and creating our first application with full dependency injection, templating and all the other features that you would expect of a modern day PHP framework. This session is recommended for anyone looking to break into the Symfony ecosystem with a simple introduction to a small framework build upon the core components of it’s bigger brother (Symfony2).
This document introduces the hapi.js framework for building web applications and services. It was created by Eran Hammer and is used by companies like Walmart. Hapi.js focuses on modularity, reliability, and security. It allows for logical modularization of applications into smaller modules. It has been tested at large scale without issues, such as all of Walmart's Black Friday traffic for two years. The document discusses how to install hapi.js, create a basic server, add routes and handlers, use plugins, and decorate the server. It recommends next steps like using the makemehapi tool for guided learning and provides contact details for the author.
The document discusses server-side OSGi using Apache Sling. It provides an overview of Apache Sling as a REST-based web framework powered by OSGi. It describes how Sling uses key OSGi specifications and services like Declarative Services, Configuration Admin Service, and Http Service. The advantages of using OSGi with Sling are its modularity, extensibility, and dynamic capabilities. Some challenges are OSGi's steep learning curve and issues around scripting and legacy specifications.
Using hapi plugins to version your API (hapiDays 2014)Dave Stevens
Organizing your web application using hapi's plugin architecture provides a great deal of flexibility and modularization. This talk details how to utilize this flexibility to version your API.
- Apache Sling is a REST-based web application framework that is powered by OSGi. It uses OSGi concepts like bundles, services, and declarative services.
- Sling maps URLs to resources, which can represent items in a JCR repository or files in the filesystem. HTTP methods map to script names that handle requests.
- Using OSGi provides advantages like modularity, extensibility, and dynamism through declared dependencies and classloader isolation. However, OSGi also presents challenges around learning curve and legacy specifications.
1) The document describes setting up a Laravel application to manage image uploads to a database. It includes configuration of the database connection, generation of models and controllers using Artisan commands, and setup of routes for the image upload functionality.
2) Views are created to display the image upload form, show individual images, and list all images along with edit and delete links.
3) The ImagesController contains methods for storing, retrieving, updating, and deleting images from the database along with logic for handling file uploads.
Como realizar un login rapidamente con Laravel, haciendo uso de la línea de comandos.
Es asombroso cuan rápido se puede avanzar mediante laravel (creador de usuario).
The Apache Felix Web Console has been created out of a need to remotely administer an OSGi Framework. This administration includes maintenance of bundles, editing Configuration, and introspecting the system in terms of identifying services and Declarative Services components. In addition the Web Console offers a plugin-model for it to be easily extended.
Standing on the shoulders of giants, Silex is a micro framework built on top of Symfony2 components. It provides an ideal environment for throwing together a simple, single file application. We’ll look at a real example of installing and setting up Silex and creating our first application with full dependency injection, templating and all the other features that you would expect of a modern day PHP framework. This session is recommended for anyone looking to break into the Symfony ecosystem with a simple introduction to a small framework build upon the core components of it’s bigger brother (Symfony2).
The presentation of the second Meetup:
Appium server capabilities/ server flags
Real device vs. Emulators
Local server vs. Third party
Test two different apps in the same test
Test native app and browser in one test
Sails.js is a MVC web framework for Node.js built on Express. It is inspired by frameworks like Ruby on Rails and uses conventions over configurations. Sails.js features include a database-agnostic ORM, auto-generated REST APIs, and easy WebSocket integration. To get started, install Sails.js globally and use the sails command to generate a new project, lift the app, and generate models, controllers and REST APIs.
This document discusses integration testing with Cucumber, Webrat, and Selenium. It provides information on each tool and how they can be used together. Cucumber is used to write feature tests in a plain language format. Webrat allows interacting with pages and making assertions in Ruby. Selenium is used to drive a real browser for tests. The document includes code examples of using each tool individually and together in a Cucumber test suite.
The document provides instructions for installing Oracle API Gateway 11.12.1.0 on an Oracle Linux 5 server. It includes requirements for disk space, memory, ports and prerequisites for installing the Oracle software. Detailed steps are provided for creating a software user and group, configuring system files, installing the API Gateway software and creating an initial API Gateway instance.
A gentle Introduction to the concept of Progressive Web Apps, explaining the key concept needed to build a website/app that works even when your user is on a flaky network.
The document discusses best practices for designing APIs, including using RESTful design with resources, separating the API into versions and modules, implementing authentication and authorization, and handling exceptions, caching, logging, instrumentation and performance. It also covers JSON formatting, CRUD operations, pagination, and documentation.
This document provides instructions for setting up user authentication for a Rails application using Devise and OAuth with Facebook. It includes steps for installing Devise, generating a User model, configuring routes and callbacks, setting up the Facebook application, and connecting a user's Facebook account to authenticate and sign in.
Slides presented at the Vue.js meetup in Paris the 3rd of December 2016.
Nuxt.js is a minimalist framework for server-rendered Vue.js applications.
https://nuxtjs.org
This document summarizes updates to Spring Boot, including updates from versions 1.0 to 1.3. It highlights new features like auto-configuration, embedded servlet engines, developer tools, caching support, and the ability to create fully executable JAR files. It also briefly mentions upcoming updates in Spring Boot 1.4 and Spring 5, including JDK 9 support, HTTP/2, and reactive programming.
This document introduces Grape, an open-source Ruby framework for building REST-style web APIs. It discusses how to install Grape, create CRUD actions, add namespaces and versioning, validate parameters, add authentication, and support different API formats. It also compares the performance of Grape to Rails APIs, finding that Grape has a higher request throughput and lower latency. Resources for learning more about Grape include its Google Group, YARD documentation, and wiki.
The document discusses Service Workers, which allow web applications to work offline by caching assets and responding to fetch events. Some key points covered include:
- Service Workers can be used to cache assets on install to enable offline usage. They also allow programmable caching and handling of fetch events.
- Other capabilities include background processing and push notifications. The standard is maintained by the W3C.
- Service Workers have a lifecycle of registration, installation, and activation. They are scoped to URLs and can handle fetch events for navigation and subresource requests.
This document introduces Elefrant, an open source Node.js framework for building scalable APIs. It provides modularity, customizability, authentication, documentation, and other features out of the box. The creator developed it to meet his needs for building real-time, multidevice apps. The framework is currently in version 0.1 but future versions will offer more extensibility through custom components.
SAP is the most popular business application. There are more than one hundred eighty thousand installations all over the world. But people spend enormous amounts of money to install it and then forget about security. In ERP systems, all business processes are performed, all critical information is stored.
The presentation describes how SAP Portal works and kinds of attacks it can be exposed to.
This document provides an overview and recap of key concepts in building web applications with Ruby on Rails, including the Rails console, ActiveRecord queries, views with embedded Ruby and layouts, helper methods, models, controllers, routing, validations, and associations. It discusses using the Rails console to run ActiveRecord queries. It also covers defining routes and generating RESTful routes, writing controller actions, and linking views to controllers. Finally, it discusses writing tests to validate models, and setting up associations between the Station and Stream models using has_many and belongs_to.
This document discusses adding authentication to a Rails application using the Devise gem. It covers generating a User model with Devise, installing Devise and its dependencies, and configuring authentication features like login, logout, and restricting access to controllers. Key aspects include:
1. Generating a User model with rails generate devise:install.
2. Adding Devise and its dependencies to the Gemfile and running bundle install.
3. Adding authentication checks like user_signed_in? and current_user to views.
4. Restricting controller actions with a before_filter to authenticate users.
In this session you will learn:
Understand Servlet life cycle
For more information, visit: https://www.mindsmapped.com/courses/software-development/java-developer-training-for-beginners/
This document provides an introduction to using the Silex micro-framework for building APIs. It outlines key Silex features such as routing, middleware, service providers, controllers and commands. The document also provides examples of setting up Silex via Composer, implementing HTTP methods like GET and POST, using middleware for authentication and error handling, and connecting to a database with Doctrine. It concludes by sharing a live example and inviting questions.
The document discusses dependency injection in OSGi environments. It describes several implementations of dependency injection for OSGi including Declarative Services, Apache Felix Dependency Manager, OSGi Declarative Services, Apache Felix iPOJO, Spring DM, and Peaberry. It provides details on Declarative Services versions 1.0 and 1.1, including their use of XML descriptors and annotations for component configuration and lifecycle management.
The document provides steps for setting up a blog using Ruby on Rails, including generating a scaffold for posts with name, title, and content fields, generating a comment model that belongs to posts, and configuring routes and controllers to display posts and allow adding comments to posts. Models are generated for posts and comments with associations defined, and views are added to display posts and comments. The steps shown configure a basic blog application with posts and associated comments.
Using Istio to Secure & Monitor Your ServicesAlcide
Good observability in a microservice architecture is not easy. Istio can help to remove the complexity from developers and leave the work to the operator. Learn how to gain a deeper understanding of using Istio for monitoring tasks, while using Istio security features to secure your microservices and spot security anomalies.
For the recorded webinar: https://bit.ly/2KNaGmc
Mastering Microservices with Kong (DevoxxUK 2019)Maarten Mulders
When architecting microservice solutions, you'll often find yourself struggling with cross-cutting concerns. Think security, rate limiting, access control, monitoring, location-aware routing… Things can quickly become a nightmare.
The API Gateway pattern can help you solve such problems in an elegant and uniform way. Using Kong, an open source product, you can get started today. In this session we'll look at the why and how of this approach.
The presentation of the second Meetup:
Appium server capabilities/ server flags
Real device vs. Emulators
Local server vs. Third party
Test two different apps in the same test
Test native app and browser in one test
Sails.js is a MVC web framework for Node.js built on Express. It is inspired by frameworks like Ruby on Rails and uses conventions over configurations. Sails.js features include a database-agnostic ORM, auto-generated REST APIs, and easy WebSocket integration. To get started, install Sails.js globally and use the sails command to generate a new project, lift the app, and generate models, controllers and REST APIs.
This document discusses integration testing with Cucumber, Webrat, and Selenium. It provides information on each tool and how they can be used together. Cucumber is used to write feature tests in a plain language format. Webrat allows interacting with pages and making assertions in Ruby. Selenium is used to drive a real browser for tests. The document includes code examples of using each tool individually and together in a Cucumber test suite.
The document provides instructions for installing Oracle API Gateway 11.12.1.0 on an Oracle Linux 5 server. It includes requirements for disk space, memory, ports and prerequisites for installing the Oracle software. Detailed steps are provided for creating a software user and group, configuring system files, installing the API Gateway software and creating an initial API Gateway instance.
A gentle Introduction to the concept of Progressive Web Apps, explaining the key concept needed to build a website/app that works even when your user is on a flaky network.
The document discusses best practices for designing APIs, including using RESTful design with resources, separating the API into versions and modules, implementing authentication and authorization, and handling exceptions, caching, logging, instrumentation and performance. It also covers JSON formatting, CRUD operations, pagination, and documentation.
This document provides instructions for setting up user authentication for a Rails application using Devise and OAuth with Facebook. It includes steps for installing Devise, generating a User model, configuring routes and callbacks, setting up the Facebook application, and connecting a user's Facebook account to authenticate and sign in.
Slides presented at the Vue.js meetup in Paris the 3rd of December 2016.
Nuxt.js is a minimalist framework for server-rendered Vue.js applications.
https://nuxtjs.org
This document summarizes updates to Spring Boot, including updates from versions 1.0 to 1.3. It highlights new features like auto-configuration, embedded servlet engines, developer tools, caching support, and the ability to create fully executable JAR files. It also briefly mentions upcoming updates in Spring Boot 1.4 and Spring 5, including JDK 9 support, HTTP/2, and reactive programming.
This document introduces Grape, an open-source Ruby framework for building REST-style web APIs. It discusses how to install Grape, create CRUD actions, add namespaces and versioning, validate parameters, add authentication, and support different API formats. It also compares the performance of Grape to Rails APIs, finding that Grape has a higher request throughput and lower latency. Resources for learning more about Grape include its Google Group, YARD documentation, and wiki.
The document discusses Service Workers, which allow web applications to work offline by caching assets and responding to fetch events. Some key points covered include:
- Service Workers can be used to cache assets on install to enable offline usage. They also allow programmable caching and handling of fetch events.
- Other capabilities include background processing and push notifications. The standard is maintained by the W3C.
- Service Workers have a lifecycle of registration, installation, and activation. They are scoped to URLs and can handle fetch events for navigation and subresource requests.
This document introduces Elefrant, an open source Node.js framework for building scalable APIs. It provides modularity, customizability, authentication, documentation, and other features out of the box. The creator developed it to meet his needs for building real-time, multidevice apps. The framework is currently in version 0.1 but future versions will offer more extensibility through custom components.
SAP is the most popular business application. There are more than one hundred eighty thousand installations all over the world. But people spend enormous amounts of money to install it and then forget about security. In ERP systems, all business processes are performed, all critical information is stored.
The presentation describes how SAP Portal works and kinds of attacks it can be exposed to.
This document provides an overview and recap of key concepts in building web applications with Ruby on Rails, including the Rails console, ActiveRecord queries, views with embedded Ruby and layouts, helper methods, models, controllers, routing, validations, and associations. It discusses using the Rails console to run ActiveRecord queries. It also covers defining routes and generating RESTful routes, writing controller actions, and linking views to controllers. Finally, it discusses writing tests to validate models, and setting up associations between the Station and Stream models using has_many and belongs_to.
This document discusses adding authentication to a Rails application using the Devise gem. It covers generating a User model with Devise, installing Devise and its dependencies, and configuring authentication features like login, logout, and restricting access to controllers. Key aspects include:
1. Generating a User model with rails generate devise:install.
2. Adding Devise and its dependencies to the Gemfile and running bundle install.
3. Adding authentication checks like user_signed_in? and current_user to views.
4. Restricting controller actions with a before_filter to authenticate users.
In this session you will learn:
Understand Servlet life cycle
For more information, visit: https://www.mindsmapped.com/courses/software-development/java-developer-training-for-beginners/
This document provides an introduction to using the Silex micro-framework for building APIs. It outlines key Silex features such as routing, middleware, service providers, controllers and commands. The document also provides examples of setting up Silex via Composer, implementing HTTP methods like GET and POST, using middleware for authentication and error handling, and connecting to a database with Doctrine. It concludes by sharing a live example and inviting questions.
The document discusses dependency injection in OSGi environments. It describes several implementations of dependency injection for OSGi including Declarative Services, Apache Felix Dependency Manager, OSGi Declarative Services, Apache Felix iPOJO, Spring DM, and Peaberry. It provides details on Declarative Services versions 1.0 and 1.1, including their use of XML descriptors and annotations for component configuration and lifecycle management.
The document provides steps for setting up a blog using Ruby on Rails, including generating a scaffold for posts with name, title, and content fields, generating a comment model that belongs to posts, and configuring routes and controllers to display posts and allow adding comments to posts. Models are generated for posts and comments with associations defined, and views are added to display posts and comments. The steps shown configure a basic blog application with posts and associated comments.
Using Istio to Secure & Monitor Your ServicesAlcide
Good observability in a microservice architecture is not easy. Istio can help to remove the complexity from developers and leave the work to the operator. Learn how to gain a deeper understanding of using Istio for monitoring tasks, while using Istio security features to secure your microservices and spot security anomalies.
For the recorded webinar: https://bit.ly/2KNaGmc
Mastering Microservices with Kong (DevoxxUK 2019)Maarten Mulders
When architecting microservice solutions, you'll often find yourself struggling with cross-cutting concerns. Think security, rate limiting, access control, monitoring, location-aware routing… Things can quickly become a nightmare.
The API Gateway pattern can help you solve such problems in an elegant and uniform way. Using Kong, an open source product, you can get started today. In this session we'll look at the why and how of this approach.
SAP is the most popular business application. There are more than one hundred eighty thousand installations all over the world. But people spend enormous amounts of money to install it and then forget about security. In ERP systems, all business processes are performed, all critical information is stored.
The presentation describes how SAP Portal works and kinds of attacks it can be exposed to.
AtlasCamp 2015: Connect everywhere - Cloud and ServerAtlassian
Patrick Streule
You have an idea for an add-on? You want to tap into both the Atlassian Cloud and Server customer base without writing and maintaining it twice? Patrick illustrates some techniques you can use today to share most of your code between the Connect and the P2 add-on implementation.
This is a presentation of the Amazon Web Service compatible EC2 interface to CloudStack. AWS EC2 is the de facto standard for compute clouds whether they are private or public. EC2 has a multiple client libraries and tools that can be used to provision virtual machine instances.
In this talk we walk through how to enable an EC2 like service in a CloudStack based cloud, how to register the users and how to use clients to talk to CloudStack the same way you would talk to the AWS EC2 public clouds.
Design Summit - RESTful API Overview - John HardyManageIQ
This is an overview of the new RESTful API in the ManageIQ Anand release. Build cross-cloud applications and management systems using ManageIQ as a developer platform.
More more on ManageIQ, see http://manageiq.org/
AWS Lambda with Serverless Framework and JavaManish Pandit
Serverless is a node.js based framework that makes creating, deploying, and managing serverless functions a breeze. We will use AWS Lambda as our FaaS (Function-as-a-Service) provider, although Serverless supports IBM OpenWhisk and Microsoft Azure as well.
In this session, we will talk about Serverless Applications, and Create and deploy a java-maven based AWS Lambda API. We will also explore the command line interface to manage lambda, which is provided out of the box by serverless framework.
EdgeWorkers enables concurrent development on Akamai configurations by:
- Allowing edge logic to be expressed through JavaScript functions that can control request and response behavior
- Providing APIs to access properties of requests, responses, devices and user locations
- Supporting the ability for each part of a site to have its own EdgeWorker that is independently updated
DSLing your System For Scalability Testing Using Gatling - Dublin Scala User ...Aman Kohli
The power of Gatling is the DSL it provides to allow writing meaningful and expressive tests. We provide an overview of the framework, a description of their development environment and goals, and present their test results.
Source code available https://github.com/lawlessc/random-response-time
NGINX Can Do That? Test Drive Your Config File!Jeff Anderson
I have had countless conversations with developers, projects managers, and even executives that end up being about nginx and what it can do. Usually, the phrase "nginx can do that?" comes up. More often than not, the answer is YES. What happens though, is the nginx config file can get unwieldy. How can we assert that it will behave how it needs to over time? How can we avoid introducing inadvertent regressions?
The API Gateway runtime points to backend APIs and services and abstracts them into a layer managed by the Anypoint Platform. Consumer applications invoke services through APIs routed by the gateway, which enforces policies and collects analytics. The gateway acts as a dedicated orchestration layer separating orchestration from implementation concerns, and leverages API Manager governance capabilities to apply throttling, security, and other policies to APIs.
Oracle API Gateway integrates, accelerates, governs, and secures Web API and SOA-based systems. It serves REST APIs and SOAP Web Services to clients, converting between REST and SOAP and XML and JSON. It applies security rules like authentication and content filtering. It also provides monitoring of API and service usage, caching, and traffic management.
Vladimir Melnik from Tucha Cloud Services in the Ukraine, another company running IaaS services on Apache Cloudstack. Vladimir is the original author and maintainer of Monkeyman, a perl5 framework for Apache CloudStack automation
Using Apache as an Application Server allows building web applications with less effort by leveraging Apache's support for request processing, security, logging, and other services. The document discusses how Apache modules can integrate application services by running inside the Apache process and having access to the full HTTP request lifecycle. It provides an example Apache configuration and architecture for implementing a rule interpretation engine as an Apache module to deliver dynamic JavaScript for context-aware web pages.
Session highlighting and demonstrating approaches to common challenges in modern portlet development. Topics include AJAX in JSR-168 and JSR-286 portlets, CSS and Javascript toolkits, security, and optimization of front-end resources. This session was presented at the Jasig Spring 2010 conference in San Diego, CA by Jennifer Bourey.
At Adobe APIs are powering the next generation of Creative applications.
Mesos makes it very easy and fun to deploy and run Robust and Scalable Microservices in the Cloud. Today's technologies offer simple solutions to create RESTfull services while Mesos brings them to life faster.
As the number of microservices increase and the inter communication between them becomes more complicated, we soon realize we have new questions awaiting our answers: how do microservices authenticate ? how do we monitor who's using the APIs they expose ? How do we protect them from attacks ? How do we set throttling and rate limiting rules across a cluster of microservices ? How do we control which service allows public access and which one we want to keep private ? How about Mesos APIs and its frameworks ? Can they benefit from these features as well ?
Come and learn a scalable architecture to manage microservices in Mesos by integrating an API Management layer inside your Mesos clusters. This presentation will show you what an API Management layer is, what it's composed of and how it can help you expose microservices in a secure,managed and highly-available way, even in multi-Mesos cluster setups.
During this session you will also have the opportunity to learn how Adobe's API Platform solved this problem, where it is today and what it envisions do to with Mesos further.
If you're working with microservices already or you're creating new ones then this presentation is for you. Come and learn how Mesos together with an API management layer will make you a microservices hero in your organisation. At Adobe APIs are powering the next generation of Creative applications.
These are the slides that were presented at Red Hat's workshop: Achieving True Integration Agility with Containers, Microservices and APIs. Seattle, WA, October 26, 2017
The document discusses troubleshooting CloudStack. It covers troubleshooting for CloudStack developers and administrators. For developers, it discusses error codes, debugging tips, system virtual machine troubleshooting and port usage. For administrators, it discusses installation, configuration, log analysis, important parameters, best practices, reusing hypervisors and the CloudStack database. The document also provides references and information on getting involved in the CloudStack community.
Dmitry Chastukhin, Director of security consulting at ERPScan, speaks at Deepsec Conference 2012 on SAP Security.
SAP is the most popular business application. There are more than one hundred eighty thousand installations all over the world. But people spend enormous amounts of money to install it and then forget about security. In ERP systems, all business processes are performed, all critical information is stored.
The presentation describes how SAP Portal works and kinds of attacks it can be exposed to.
Using and scaling Rack and Rack-based middlewareAlona Mekhovova
Rack provides a standard interface between web servers and web applications. It allows a web application to return a status, headers, and a body in response to an HTTP request. Middleware can be plugged into a Rack application to modify requests and responses. Popular Rack middleware includes Rack::Cache, Rack::Middleware, and Warden for authentication. In Rails, middleware is configured through an initializer and plugged into the middleware stack to run before or after other middleware.
Similar to WSO2 Italia Open Break Session #2 - Microgateway (20)
6.TICTACTECH_POLARION_5giugno_ Functional Safety & CyberSecurity con PolarionProfesia Srl, Lynx Group
Nella 6° puntata di Tic Tac Tech abbiamo ospitato Siemens che ci ha illustrato in che modo Polarion è nativamente compliance ai principali standard di sicurezza cross market e al riparo dai cyber attacchi. Ogni mercato ha le sue normative di riferimento e Polarion mette a disposizione Template ad hoc per aderire alle normative.
Non esitate a contattarci per una demo ad hoc sul vostro standard!
sales@profesia.it
In questa sessione ci concentriamo sul concetto di Total Experience e su come oggi le dinamiche che ruotano attorno ai dipendenti e ai clienti si intrecciano verso un nuovo concetto di Brand Awareness.
Migliorare la onboarding dei dipendenti grazie all'utilizzo di strumenti di Digital Adoption Platform vuol dire contribuire a migliorare retention e produttività.
I vantaggi per le organizzazioni sono molteplici:
👩🏫 Formazione tradizionale VS 👨💻 #Selflearning
🚂 Learning curve VS digital Onboarding 💹
🐢Lentezza VS Agilità 🐍
Scrivici - sales@profesia.it - per scoprire come una DAP può aiutare i tuoi colleghi in #smartworking a integrarsi facilmente nelle dinamiche aziendali
3.TIC TAC TECH: Gartner - Gestire il debito tecnico dell'architettura ITProfesia Srl, Lynx Group
Il debito tecnico dell'architettura IT è quel tipo di debito tecnico causato da una deriva architetturale derivata da decisioni non ottimali, violazioni dell'architettura del prodotto target definito e anche da best practice architetturali di settore e da compromessi architettonici adottati per velocizzare la software delivery.
In questo talk commentiamo il report di Gartner dedicato a questo tema.
Per scoprire come modernizzare il vostro IT e risolvere il debito scrivete a sales@profesia.it
2. Guidare il futuro, l'approccio di WSO2 Italia alle tendenze tecnologiche e...Profesia Srl, Lynx Group
Nella seconda puntata di TIC TAC TECH vedremo dove ci troviamo e dove siamo diretti in termini di tecnologie emergenti. Matteo, CTO di Profesia ci darà degli input su quali tendenze tecnologiche emergenti sono da cavalcare, per cogliere potenzialità e vantaggi in un Business digitale moderno che si evolve continuamente.
Guidare il futuro: l'approccio di WSO2 Italia.
Scrivi a sales@profesia.it per conoscere i nostri esperti
1. Nella prima puntata TIC TAC TECH 2024 analizzeremo il 9° Report di Sonatype sul mondo Open Source e sulla sicurezza della catena di fornitura del software. Scarica il report completo sul sito di Sonatype o scrivi a info@profesia.it per mettere in sicurezza il tuo patrimonio Open Source
Profesia e Newired presentano un webinar che racconta come è possibile rivoluzionare il vostro processo di creazione dei contenuti del vostro sito web, consentendovi di semplificare concetti complessi, snellire i flussi di lavoro e fornire istruzioni passo-passo che coinvolgano e responsabilizzino realmente i vostri utenti.
In questo webinar di 30 minuti vedrai:
- best practice sulla DAS;
- consigli pratici;
- esempi reali che dimostrano come Newired possa elevare i vostri contenuti a nuovi livelli di chiarezza ed efficacia.
Vuoi provare Newired sulla tua applicazione? Scrivi a sales@profesia.it per una POC
In Estra la Digital Transformation parte dalla User Experience del ClienteProfesia Srl, Lynx Group
Per rispondere alle esigenze di business che nel tempo hanno richiesto sempre più un approccio efficiente e rapido nella gestione dei servizi, abbiamo installato un’infrastruttura che chi ha consentito di integrare la App mobile di Estra con il gestionale aziendale. La suite WSO2 è stata la chiave che ci ha permesso di velocizzare lo sviluppo delle nostre App Web e Mobile, migliorare la sicurezza e l’esperienza dei clienti.
Intervento di Manuel Cesarini, Estra Spa.
Per maggiori informazioni puoi scrivere a sales@profesia.it
Nello speech Michelangelo Simonazzi racconta come un’integrazione tra sistemi omnicanale, stores, WMS, marketplace in ambienti internazionali permette una riduzione del time-to-market ed una standardizzazione delle procedure operative.
Intervento di Michelangelo Simonazzi, Gianvito Rossi.
Per maggiori informazioni puoi scrivere a sales@profesia.it
Nell’intervento Stefano Olivotto di Crédit Agricole Italia ha illustrato la sua esperienza nell’adozione di uno strumento di API management e di un processo di gestione delle API, con una particolare focalizzazione su metodologia di adozione, sulle principali sfide indirizzate e un verticale sul livello di automazione raggiunto mediante l’adozione di tecniche di DevOps.
Per maggiori informazioni scrivi a sales@profesia.it
Evoluzioni nel mondo delle API
Matteo Bordin, CTO di Profesia, Lynx Group, ci racconta in che modo l'AI può aiutare nell'esposizione di servizi digitali per una esperienza utente positiva.
Per maggiori informazioni scrivi a sales@profesia.it
WSO2 ITALIA SMART TALK #10 - Interoperability nelle utility, un caso realeProfesia Srl, Lynx Group
Nella decima puntata di WSO2 ITALIA SMART TALK 2023 - Alessio e Daniele ci raccontano alcuni casi d'uso di interoperabilità attualmente utilizzati in ambito Utility.
Vuoi conoscere Profesia e il nostro approccio orientato al Business Digitale? Scrivi a sales@profesia.it per fissare un appuntamento
WSO2 ITALIA SMART TALK 2023 - Gabriele ci mostra come installare WSO2 in AWS.
Vuoi conoscere Profesia e il nostro approccio orientato al Business Digitale? Scrivi a sales@profesia.it e fissiamo un appuntamento
The document provides an agenda for a WSO2 Italy Club event. It lists dates from March to July and speakers who will present on topics related to APIs, identity management, and interoperability between organizations. Matteo Bordin is featured as a speaker for March and will cover new features of WSO2 IS and APIM. Other topics included are identity federation, adaptive authentication, API security, user provisioning, and privacy consent management. The main use cases for WSO2 Identity Server are listed as identity federation, identity bridging, adaptive authentication, API security, access management, and identity analytics.
Leo Antonaccio ci racconta un tipico caso d'uso di implementazione di WSO2 IDENTITY SERVER con SPID.
In questo talk ci rivolgiamo non solo alle PA ma a qualsiasi organizzazione interscambi informazioni con la PA.
Vuoi conoscere Profesia?
Scrivi a sales@profesia.it per conoscere il nostro approccio: smart, collaudato, efficace
WSO2 ITALIA SMART TALK 2023 #8
ASYNCHRONOUS API. STREAMING AND EVENT DRIVEN ARCHITECTURE.
Unisciti al Gruppo Linkedin WSO2 ITALIA CLUB e scopri come avere un digital business di successo.
Scrivi a sales@profesia.it per conoscere Profesia, polo innovativo del Gruppo Lynx
WSO2 ITALIA SMART TALK #6 - Autenticazione User Centric: Identità digitaleProfesia Srl, Lynx Group
L'esposizione di dati e/o servizi attraverso la progettazione di API non deve solo tenere conto del dato che viene esposto, quanto piuttosto dell'utilizzo che l'utente farà di quel dato.
Per questo motivo la progettazione di una qualsiasi infrastruttura è bene che sia svolta partendo dalle esigenze dell'utente finale (user centred), occorre quindi chiesersi come l'usere interagirà con il prodotto in modo da poter implementare un applicativo semplice da usare così da ridurre al minimo il periodo di formazione dell'utente stesso all'utilizzo del prodotto.
WSO2 Identity Server pone l'attenzione nella gestione degli utenti finali come soggetti distinti tra di loro e con differenti peculiarità, aiutando gli amministratori della piattaforma applicativa nell'on-boarding e nella gestione degli stessi.
Scrivi a sales@profesia.it per conoscere come rendere la gestione delle identità digitali un fattore di successo
WSO2 ITALIA SMART TALK #5 - APIFICATION: OPPORTUNITÀ DELLE ORGANIZZAZIONI MOD...Profesia Srl, Lynx Group
APIfication, con questo termine sempre più "di moda" identifichiamo uno strumento che consente di valorizzare maggiormente le API, rendendo disponibili funzionalità e dati come servizio, lo riteniamo sempre più importante, in un'ottica di digital transformation, soprattutto in area banking e finance.
Un approccio più moderno all’integrazione API riduce il time-to-market, velocizza l'adozione di nuove tecnologie e crea nuovi flussi di entrate, aumentando la crescita dei ricavi.
L'APIfication può aiutare a creare con più facilità offerte integrate di vendita e marketing con i partner e a fornire prodotti e servizi più velocemente. In questo appuntamento numero 5 di WSO2 ITALIA SMART TALK ti raccontiamo come evolvere il vostro business! Scrivi a sales@profesia.it per conoscere i numerosi progetti di successo
In questo appuntamento con WSO2 SMART TALK, il nostro partner WSO2 ci racconta il caso di successo di Telefonica (O2) Germany e la sua strategia di APIfication. Scopri come monetizzare le tue API e offrire un'esperienza di navigazione user centric ai tuoi clienti. Scrivi a sales@profesia.it per iniziare subito
In questa prima puntata di WSO2 Smart Talk 2023 Matteo ci farà esplorare WSO2 API Manager 4.1.0 raccontandoci principali use cases, caratteristiche dell'ultima versione e anche accenni a versioni future
Nell'ambito dell'iniziativa #PAnontidemo_webinar, ciclo di eventi e iniziative dedicati alla Pubblica Amministrazioni italiana, Emerasoft e Profesia presentano weModI, la soluzione per l'interoperabilità delle PA conforme alle normative AgID (ModI & PDND).
Negli ultimi anni le Amministrazioni Pubbliche sono chiamate a interscambiare informazioni attraverso le API. Questo processo si è reso necessario per rendere standard il processo di interoperabilità tra gli enti sul territorio italiano.
WSO2 è la soluzione 100% Open Source e leader di mercato in grado di aiutare il Management di un ente (pubblico o privato) nel processo di manutenzione ed evoluzione delle API. Il percorso tracciato da WSO2 risponde puntualmente alle esigenze degli utenti finali e nel caso della Pubblica Amministrazione, che rappresenta uno dei principali utilizzatori della piattaforma, viene messa a disposizione l'estensione weModI, che rende WSO2 API Manager conforme ai pattern definiti da AgID.
Gli utenti hanno così la possibilità di pubblicare e sottoscrivere API aderenti ai pattern ModI in modo semplice e sicuro, avviando un percorso di collaborazione e monetizzazione che assicura trasparenza e rapidità nell'interoperabilità con altri enti nazionali ed europei secondo quello che è già noto come Interoperable Europe Act.
Se sei una PA alle prese con PDND contattaci! Scrivi a sales@profesia.it o chiamaci allo 0110120371
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
Dr. Sean Tan, Head of Data Science, Changi Airport Group
Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfMalak Abu Hammad
Discover how MongoDB Atlas and vector search technology can revolutionize your application's search capabilities. This comprehensive presentation covers:
* What is Vector Search?
* Importance and benefits of vector search
* Practical use cases across various industries
* Step-by-step implementation guide
* Live demos with code snippets
* Enhancing LLM capabilities with vector search
* Best practices and optimization strategies
Perfect for developers, AI enthusiasts, and tech leaders. Learn how to leverage MongoDB Atlas to deliver highly relevant, context-aware search results, transforming your data retrieval process. Stay ahead in tech innovation and maximize the potential of your applications.
#MongoDB #VectorSearch #AI #SemanticSearch #TechInnovation #DataScience #LLM #MachineLearning #SearchTechnology
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Introducing Milvus Lite: Easy-to-Install, Easy-to-Use vector database for you...Zilliz
Join us to introduce Milvus Lite, a vector database that can run on notebooks and laptops, share the same API with Milvus, and integrate with every popular GenAI framework. This webinar is perfect for developers seeking easy-to-use, well-integrated vector databases for their GenAI apps.
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slackshyamraj55
Discover the seamless integration of RPA (Robotic Process Automation), COMPOSER, and APM with AWS IDP enhanced with Slack notifications. Explore how these technologies converge to streamline workflows, optimize performance, and ensure secure access, all while leveraging the power of AWS IDP and real-time communication via Slack notifications.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
11. MicroGateway main Feature
Its main characteristics are:
● The ability to execute in isolation without mandatory connections to other
components (Key Manager, Traffic Manager, etc).
● The ability to host only a subset of specific APIs (defined in the API
Publisher), instead of all.
● Immutability; if you update an API, you need to re-create the
container/instance and hot deployment is not possible.
Microgateway offers you a proxy that is capable of performing security validations
(OAuth, Signed JWT), in-memory (local) rate limiting and operational analytics.
13. Design and deployment comparison
Design/ Deployment API Microgateway API Gateway
Architecture Designed for microservices Designed for monolith
Horizontal Scaling Scales independently Scaling can be done with other components
Deployment Distribution Decentralized Centralized
Runtime footprint Lightweight (2vcpu 256MbRam) Designed to run on high performing
computers with high load
Isolated lockdown
environments
Designed to work in a network isolated environment Limited functionalities(affect on throttling/
analytics)
Cloud Ready Yes Yes
Automated API CI/CD flows Supported with CLI tools Supported with CLI tools
Update APIs Immutable gateways. Rebuild the gateway upon
updating the API
Mutable gateway, updating APIs supported
14. Security Comparison
Security Mechanism API Microgateway API Gateway
Oauth2 opaque tokens
Oauth2 self-contained
tokens
Mutual SSL
Basic Auth Config based supported,
can not plug user stores
API Keys
15. Feature Comparison
Feature API Microgateway API Gateway
SOAP backends
REST APIs
JMS backend
GraphQL API
GRPC Services
Web Socket API
Custom mediator
Advanced throttling
Schema validation
Jwt revocation
Per resource endpoints