Simple, Secure Authentication with CodeIgniter

avatar-krasimir.jpg Krasimir Hristozov

CodeIgniter is a simple, lightweight PHP framework that remains a popular option for many developers. It might lack the sophisticated architecture and advanced features of Symfony or Laravel, but it compensates with a small footprint and a shallow learning curve. In this tutorial, I will show you how to build a simple application for creating/viewing news items. We will extend the standard CodeIgniter tutorial to add user authentication to the application, require a logged-in user...

Read more

Okta Developer Office Hours Q&A - September 2019 Edition

avatar-matt_raible.jpg Matt Raible

On September 19, 2019, we held our first Okta Developer office hours. Our goal was to host a live Q&A with developers that use Okta. Over 150 developers attended! We streamed the session live on YouTube, so you can watch it below if you like. We received around 60 questions during our live-stream and did not get a chance to answer them all. After close examination, we determined that many questions overlapped and ended up...

Read more

Get Familiar with Android and Gradle

avatar-mikel.jpg Mikel Pascual

Interested in Android development? Then you should get familiar with Gradle, the only Android development build system that Google officially supports. Gradle manages all aspects of the Android development process, making it easy to: Compile your code Solve dependency trees and conflicts between libraries Merge your code and resources with those of your libraries Cache resources for compilation performance Connect it all to the Android SDK Finally packaging it into the right format with the...

Read more

The Dangers of Self-Signed Certificates

avatar-bdemers.jpg Brian Demers

How many times have you started a new job, and the first thing you see on the company intranet is a “Your connection is not private” error message? Maybe you asked around and were directed to a wiki page. Of course, you probably had to click through the security warnings before actually viewing that page. If you are security-minded, this probably bothers you, but because you have a new job to do, you accept the...

Read more

Get to Know Entity Framework and PostgreSQL

avatar-terje-kolderup.jpg Terje Kolderup

Entity Framework is one of the most pervasive Object-Relational Mappers (ORMs) for ASP.NET. An ORM maps an application’s object entities to relational entities in a database, and allows developers to build and edit the database schema from the code. Furthermore, Entity Framework’s design makes it particularly friendly for PostgreSQL developers. Entity Framework (EFCore) Core is a lighter weight and more flexible version that specifically enables .NET objects. It reduces the amount of data access code...

Read more

An Illustrated Guide to OAuth and OpenID Connect

avatar-reverentgeek.jpg David Neal

In the “stone age” days of the Internet, sharing information between services was easy. You simply gave your username and password for one service to another so they could login to your account and grab whatever information they wanted! Yikes! You should never be required to share your username and password, your credentials, to another service. There’s no guarantee that an organization will keep your credentials safe, or guarantee their service won’t access more of...

Read more

A Thorough Introduction to PASETO

avatar-rdegges.jpg Randall Degges

Today I’m going to introduce you to one of my favorite pieces of security technology released in the last several years: PASETO (platform-agnostic security tokens). PASETO is a relatively new protocol, designed by Scott Arciszewski in early 2018 that is quickly gaining adoption in the security community. While PASETO is still a young technology, I thought it’d be interesting to take an in-depth look at it, since it’s both incredibly useful and solves a lot...

Read more

Goodbye Javascript! Build an Authenticated Web App in C# with Blazor + ASP.NET Core 3.0

avatar-quorralyne.jpg Heather Downing

Curious what the experience would be like to trade in Javascript for C# on the front end? You are about to find out! For many years, Javascript (and it’s child frameworks) have had their run of the DOM (Document Object Model) in a browser, and it took having that scripting knowledge to really manipulate client-side UI. About 2 years ago, all of that changed with the introduction of Web Assembly - which allows compiled languages...

Read more

Performance Testing with Apache Bench

avatar-leebrandt.jpg Lee Brandt

Every web developer I know is concerned with the performance of their web applications. How fast will my app load? Will it handle a lot of users? How well will it lots of data? Will it scale? These are just some of the questions that developers ask themselves but very rarely have any idea how to test. Generally, when performance testing, most developers worry about “load testing”, or how an app will perform under load....

Read more

Tutorial: Develop Apps with Secure WebSockets in Java

avatar-jimena.png Jimena Garbarino

WebSockets is a modern transport layer technology that establishes a two-way communication channel between a client and a server, perfect for low-latency, high-frequency interactions. WebSockets tend to be used in collaborative, real-time or event-driven applications, where traditional client-server request-response architecture or long polling would not satisfy requirements. Use cases include stock trading and shared dashboard applications. In this tutorial, I’ll give you a quick overview of the WebSockets protocol and how it handles messages with...

Read more