Code & Coffee 4/8/2022

 Code & Coffee 4/8/2022

• Meetings!
• Why so many
• Looking for 
• Example
• Meeting about a service
• Dev team was attempting to create an unauthenticated service with no ssl
• Meeting was to discuss that
• How did that come to be?
• Meetings turned into Authentication and security
• Why is it acceptable to create an unauthenticated unsecure service?
• Is there training needed?
• Oauth and JWT?
• JWT / jot what are you talking about?
• it is suggested in rfc7519 to pronounce JWT as "jot"
• https://datatracker.ietf.org/doc/html/rfc7519

Is it safe to store JWT in memory?

To reiterate, whatever you do, don't store a JWT in local storage (or session storage). If any of the third-party scripts you include in your page is compromised, it can access all your users' tokens. To keep them secure, you should always store JWTs inside an httpOnly cookie

Code & Coffee - 4/15/2022

 Code & Coffee - 4/15/2022

• Slack hacks and tools
• Organize channels into groups
• Google calendar integrations
• What happens when a Saas goes down
• Risk assessment
• -- insert link from Derek
• Jira
• use a spreadsheet for a couple days?
• Git
• It is distributed, don't panic
• Might want more than an "accidental strategy" though
• Regular mirroring of code repository
• Mirror the pipeline enough to do an emergency build
• AWS
• panic!
• CI server
• What happens when the pipeline provider zonks out?
• Can you do a local build and deploy?
• What parts can be skipped?
• Soft deletes
• Safer removal of data by soft delete first
• Soft deletes and right to be forgotten laws
• Don't recognize me list
• how to store the list?
• Wouldn't the list turn into a high value target
• Or do would it be stored as a sort of fingerprint

Code & Coffee - 4/22/2022

 Code & Coffee 4/22/2022

• Office upgrades
• Warming up the floor 
• Heated floor
• Or a nice thick rug!
• what about the rolly chair?
• Hang it from the ceiling
• Random stories
• It's a good thing our dads didn't present a bull for the damages we caused
• Working in Clojure
• Catching up on who is where and how things are going
• Worked with so-n-so for a couple years and saw him once even though we worked 20 ft apart.
• different floors
• Interview with a javascript developer:
• https://www.youtube.com/watch?v=Uo3cL4nrGOk
• Great Adventure dating book:
• https://www.theadventurechallenge.com/
• How to feel old
• The new intern was born after I got married
• The 20th anniversary edition of Tron is now 20 years old.
• Coding challenge
• Simulated PR in Github
• How does the candidate respond to critical and positive feedback?
• Unlimited time (days)
• Differentiating developer level
• Juniors talk about what happened around them
• Mids talk about what happened in the project
• Seniors talk about their contribution and the value to the business
• Super Seniors talk about everything
• Thomas wore a tie
• How much cloud development/serverless can be done locally
• Quite a bit but it gets complex
• Cross cloud portability
• Sticky platforms
• Sometimes monoliths are not so bad:
• https://www.amazon.com/Strategic-Monoliths-Microservices-Addison-Wesley-Signature/dp/0137355467
• Unit tests are crap:
• Try this to improve:
• https://www.manning.com/books/effective-software-testing
• This talks a lot about how to better structure tests for good results.

Code & Coffee - 4/1/2022

 Code & Coffee - 4/1/2022

• Looking for moar developers - writing the job description
• Checked out some code and talked about Java Optional for a bit.
• fiddled with the code and made it betterer
• Code review is a view into the heart and soul.... or at least thought process of how other developers think
• Ahh yes, today is the day to be a little extra careful on the internet
• What is your favorite April Fools internet thing?