CategorySecurity

September 6, 2021 — After almost five years in development, the new HTTP/3 protocol is nearing its final form. Let’s take a close look at the challenges involved in deploying and testing HTTP/3, and how and if you should change your websites and resources as well. Read more…

August 26, 2021 — The Web is still wrestling with issues we take for granted offline, privacy chief among them. These are steps The New York Times took to protect users’ data, and how you can too. Read more…

August 23, 2021 — After almost five years in development, the new HTTP/3 protocol is nearing its final form. Let’s take a close look at the performance improvements of HTTP/3, congestion control, head-of-line-blocking, and 0-RTT connection set-up. Read more…

August 9, 2021 — What exactly is HTTP/3? Why was it needed so soon after HTTP/2 (which was only finalized in 2015)? How can or should you use it? And especially, how does this improve web performance? Let’s find out. Read more…

May 20, 2021 — A step-by-step tutorial on adding authentication and authorization to your Next.js apps, with Auth0. We’ll be using a Next.js SDK to connect our application to the Auth0 API and will create the dynamic API route for React. Read more…

March 11, 2020 — With the help of using NodeJS and MySQL, learn how to successfully create a secure reset password flow so you can avoid these pitfalls. Read more…

February 21, 2020 — This tutorial demonstrates how to create a simple cryptocurrency, called smashingCoin, using the concepts of JavaScript classes and Node.js. Give it a try — it’s simpler than you think! Read more…

April 9, 2019 — Every bit of JavaScript you add to a site is a potential way in for a hacker. This is doubly true if that JavaScript is hosted by someone else, such as on a public CDN. Subresource Integrity is a browser feature you can use to make sure that the code being used is exactly what you intended. Read more…

December 12, 2018 — The aim of Feature Policy is for us, as web developers, to be able to state our usage of a web platform feature, explicitly to the browser. By doing so, we make an agreement about our use, or non-use of this particular feature. Based on this the browser can act to block certain features, or report back to us that a feature it did not expect to see is being used. In this article, Rachel Andrew will show you how Feature Policy can help protect your site from third parties using APIs that have security and privacy implications, and also from your own team adding outdated APIs or poorly optimized images. Read more…

June 27, 2018 — With modern email service providers, it’s easier than ever to create a first-class transactional email experience for your users, but, for most of us, the challenge lies in the fact that you don’t know what you don’t know. If you’re sending transactional email for your application, you’ve probably got the basics down, but you may be missing out on some of the more advanced best practices without even knowing it. With this guide, Garrett Dimon will help you make sure that you haven’t overlooked anything and aren’t unwittingly doing something wrong that could be hurting your delivery or user experience for your recipients. Read more…