And now for something completely different. I recently had the privilege to play the first alpha preview of Tower 57: a gorgeous old school, pixel-art designed, "Chaos Engine"-inspired game by Pixwerk. A little something I got for being an early backer of its Kickstarter campaign. Warning, biased shameless plug ahead!
In October 2015 me and my partner-in-dev Emad Heydari Beni ran a small survey on how our blog readers, friends and relatives felt about privacy and security on the Internet. The survey was closed November the 11th and we started analyzing the data we had gathered. The short version? We were actually surprised at some of the answers!
As you might already know, FMA (Free Music Archive) is currently trying to raise $50,000 to maintain and expand its mission as providers of curated, CC-licensed music. I usually try not to favor one site or the other (it's usually a double-edged sword), but I do believe that FMA are absolutely worth of your attention. Let me try to explain to you why they deserve our help.
When a team of developers works on projects, they need to agree on code conventions, standards, best practices... Wait, do they have to? What are the developers giving up on in order to deliver uniformly-formatted code? In this post i defend the idea that code conventions and standards come with a high price, and that there might be a different way of working together.
One month ago, me and my friend decided to run a survey about your perception of privacy and security on the Internet. We’ve gathered enough (anonymous) data, so today we decided to close the survey. I would like to personally thank all of you who took the time to respond. As promised, we will analyze …
Since I've been excruciatingly busy lately, I've decided to share a little Halloween story with you. Of course, being a developer, you know what it will revolve around!
This is a true-ish story...
Since version 2.0, Cassandra's auto-pagination feature has simplified pagination quite a bit... if you can persist a ResultSet! What if the context is a stateless web application, where we actually would rather avoid memorizing whole result sets' states for every connected user?
After a summer break we return to our secure web client / REST-based solution: in this post we examine how our AngularJS-based web client should behave in order to comply with the security measures we've enforced on the server side.
Microsoft, Facebook, Twitter... These three incredible tech giants alone brought us, year after year, what contributes in defining today's IT landscape. All share one common weak spot though: their defaults on privacy.
Part 2 of examining a full, secure implementation of a solution for web-client, REST-based systems using AngularJS and Spring and addressing authentication, CORS and CSRF aspects. The full, working code is available on GitHub. In this part, we look at how we can prevent CSRF attacks from a server's perspective.