search
Follow Topic rss_feed
Prevent DOM-based cross-site scripting vulnerabilities with Trusted Types
Prevent DOM-based cross-site scripting vulnerabilities with Trusted Types

Reduce the DOM XSS attack surface of your application.

Bharat Dwarkani shared on Apr 05, 2020
image
web.dev
bookmarks
share
visibility2
visibility2 share bookmarks
Are you using JWTs for user sessions in the correct way?
Are you using JWTs for user sessions in the correct way?

JSON Web Tokens (or JWTs) have become incredibly popular and you’ve likely heard of them before. What you may not have heard is that JWTs were originally designed for use in OAuth – which is fundamentally different to user sessions.

Bharat Dwarkani shared on Apr 02, 2020
image
supertokens.io
bookmarks
share
visibility16
visibility16 share bookmarks
UX inspiration from Google Material Design for Text Box Validations
UX inspiration from Google Material Design for Text Box Validations

Recently, on checking UX of Google Drive Forums. I came across how google has handled validation states for Text Box

Bharat Dwarkani wrote on Mar 15, 2020
image
sharetechlinks.com
bookmarks
share
visibility14
visibility14 share bookmarks
Do This to Improve Image Loading on Your Website
Do This to Improve Image Loading on Your Website

Jen Simmons explains how to improve image loading by using width and height attributes.

Bharat Dwarkani shared on Feb 20, 2020
image
css-tricks.com
bookmarks
share
visibility8
visibility8 share bookmarks
API Umbrella - Open source API management platform
API Umbrella - Open source API management platform

API Umbrella is an open-source API management platform for exposing web service APIs. The basic goal of API Umbrella is to make life easier for both API creators and API consumers.?

Bharat Dwarkani shared on Feb 17, 2020
image
github.com
bookmarks
share
visibility17
visibility17 share bookmarks
How to dockerize your static website with Nginx, automatic renew SSL for domain by Certbot and deploy it to Di
How to dockerize your static website with Nginx, automatic renew SSL for domain by Certbot and deploy it to Di

How to dockerize your static website with Nginx, automatic renew SSL for domain by Certbot and deploy it to DigitalOcean

Bharat Dwarkani shared on Jan 29, 2020
image
dev.to
bookmarks
share
visibility4
visibility4 share bookmarks
JWT vs Cookies?
JWT vs Cookies?

JWT vs Cookies

Bharat Dwarkani shared on Jan 26, 2020
image
dev.to
bookmarks
share
visibility4
visibility4 share bookmarks
An Intro to CSRF
An Intro to CSRF

Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated. CSRF attacks specifically target state-changing requests, not theft of data, since the attacker has no way to see the response to the forged request.

Bharat Dwarkani shared on Jan 26, 2020
image
dev.to
bookmarks
share
visibility4
visibility4 share bookmarks
Light House Performance Audits
Light House Performance Audits

Measure performance and find opportunities to speed up page loads.

Bharat Dwarkani shared on Jan 22, 2020
image
web.dev
bookmarks
share
visibility6
visibility6 share bookmarks
Defer non-critical CSS
Defer non-critical CSS

CSS files are render-blocking resources: they must be loaded and processed before the browser renders the page. Web pages that contain unnecessarily large styles take longer to render. In this guide, you'll learn how to defer non-critical CSS with the goal of optimizing the Critical Rendering Path, and improving First Contentful Paint (FCP).

Bharat Dwarkani shared on Jan 15, 2020
image
web.dev
bookmarks
share
visibility6
visibility6 share bookmarks
add