Technology Blog

Establishing OAuth Credentials with Salesforce

Posted by Adrian Wright

Apr 21, 2015 11:47:46 PM

Introduction

As discussed in my last post, a strong understanding of OAuth is critical to the success of your Salesforce API integration project.  In this post, I'll show you how to set up OAuth communications.

Read More

Topics: Salesforce

When Should You Return 404 Instead of 403 HTTP Status Code and How to in ASP.NET.

Posted by Max McCarty

Apr 14, 2015 3:52:03 PM

Read More

Topics: Security, .NET, ASPNET

Getting Started With Salesforce Integrations

Posted by Adrian Wright

Apr 6, 2015 11:00:00 PM

You're a custom web app developer and your manager tells you you're responsible for building a Salesforce integration.  You've written web service clients before, so no sweat, right?  You start to research Salesforce API's and realize there are a few things you'll need to know to make this interface really shine.

Read More

Topics: Salesforce

OWASP #5 Security Misconfiguration: Hardening your ASP.NET App

Posted by Max McCarty

Apr 1, 2015 11:20:09 PM

Read More

Topics: Angular, JavaScript, Security, .NET, OWASP, ASPNET

What's New In IBM MobileFirst V7.0?

Posted by Jorge Balderas

Mar 25, 2015 12:10:09 AM

Summa recently attended IBM InterConnect in Vegas and learned about exciting features of the new release of IBM MobileFirst Platform Foundation v7.0. This release was originally announced on Feb 17, 2015 and became available for electronic download on March 20, 2015. Here is a summary of new features worth paying attention to. 

Read More

Topics: Mobile Development, mobile applications, Mobile First, hybrid, IBM, IBM Interconnect 2015

What’s New in IBM Integration Bus V10.0?

Posted by Chris Wastchak

Mar 23, 2015 10:29:05 PM

Prior to the InterConnect 2015 conference, IBM announced IBM Integration Bus V10.0.  This is the second product release of IBM Integration Bus (succeeds IIB V9.0), and it is the 10th version of what was previously IBM WebSphere Message Broker, one of IBM's flagship integration products.  The announced release date is March 27th, 2015.

Read More

Topics: Process Integration, MQTT, IBM Integration Bus, REST, cloud, IBM, MQ, Integration Bus, IPaaS, Swagger, IBM Interconnect 2015

Insecure Direct Object Reference: Is your ASP.NET App Data Secure?

Posted by Max McCarty

Mar 11, 2015 6:13:00 PM

As an aerospace engineer at X94, your boss has asked you to retrieve the technical drawings on a particular patent from building 2.  Unfortunately, access to the building requires you to produce proof that you have access to the building which you promptly do in the form of a badge to security.  Once on the 13th floor, access to the Architects and Engineer drawings library requires verification by their biometrics system that you are who you claim to be.  Finally at your destination, you provide the librarian an alpha-numeric code which means nothing to you, but in the right hands, can be converted to the actual index of where to find the technical drawings you have come for.

Read More

Topics: Security, OWASP, ASPNET, Web Development

Ever Wonder What Happened to Your Azure Website Connection String?

Posted by Max McCarty

Feb 25, 2015 9:35:48 PM

The Curious Case of the Missing Azure Connection String

You’re new to Azure and you’re working on deploying your shiny new web application to Azure’s Website service. But you’re storing your web application in a public repository like GitHubBitBucket or CodePlex.  Currently, through any number of possible techniques, you have managed to keep your connection strings out of public view by not checking it in.   Now you’re trying to figure out how to continue committing to your repository and deploy to Azure without having to commit your connection string just so Azure Websites can be aware of it.  Sound familiar?

Read More

Topics: Security, azure, Web Development

Preventing XSS in ASP.NET Made Easy

Posted by Max McCarty

Feb 20, 2015 1:59:00 PM


“Our web applications can trust the motives of its users and the information they provide”

                                                       - No One Ever

 

Is your web application serving up static data, pages that never change and don't accept any user input implicitly or explicitly?

If yes, we're done here. This post isn't for you.

Read More

Topics: Security, ASPNET, XSS, Cross-Site scripting

My Agile Is Broken

Posted by Nivia Henry

Jan 27, 2015 11:13:00 PM

Agile Adoption – Then and Now

Believe it or not, there was a time when Agile was unheard of in the mainstream. It was a fringe concept thought only applicable to hippie programmers and tiny startups. In those days, Agile was a virus that infected the organization via idealists and frustrated developers; but instead of weakening its host, Agile strengthened it.

Read More

Topics: Agile and Development, Agile

Search This Site