-
Insecure Zendesk SSO implementation by generating JWT client-side
Belle of the Ball …
-
A security review of phpList REST API
APIs are essential for building applications that are open and can integrate with other applications and services, yet with the openness of APIs comes a challenge: APIs can create additional security risks, as they increase the number of ways in which malicious actors could get into applications. Therefore, when developing APIs, careful design and security are important. As part of my internship at phpList, I had the opportunity to work on performing a risk assessment for the REST API. …
-
DOKU.TECH and the young spirit of Prishtina
DOKU.TECH is an annual conference in Kosova and one of the leading tech events in the Balkans that is devoted to idea sharing, igniting discussions, interactive workshops, DIY sessions, fun-filled days and musical evenings. During the past four editions, DOKU.TECH has welcomed over 5,000 attendees who came from the Balkans, Europe, and United States. This year’s DOKU.TECH motto was: “One person’s craziness, is another one’s reality.” …
-
Starting my journey as a Pragmatic Programmer
I recently started reading The Pragmatic Programmer: From Journeyman to Master, by Andrew Hunt and David Thomas, which was published in 1999. The book is well organized in short and self-contained chapters. Each chapter has tips that offer advice on several subjects such as testing, prototyping, debugging, how to communicate effectively, exception handling, best practices and challenges. …
-
Ready for Nextcloud hackweek
After attending the Nextcloud Conference 2017 and helping out at the Fosdem 2018 Nextcloud booth, I look forward to joining the other Nextclouders again, this time for a hackweek. I’m always up for some hacking. …