Friday, April 22, 2022

Code & Coffee 4/8/2022

 Code & Coffee 4/8/2022


  • Meetings!
    • Why so many
    • Looking for 
    • Example
      • Meeting about a service
      • Dev team was attempting to create an unauthenticated service with no ssl
      • Meeting was to discuss that
      • How did that come to be?
  • Meetings turned into Authentication and security
    • Why is it acceptable to create an unauthenticated unsecure service?
    • Is there training needed?
      • Oauth and JWT?
    • JWT / jot what are you talking about?
      • it is suggested in rfc7519 to pronounce JWT as "jot"
      • https://datatracker.ietf.org/doc/html/rfc7519


Is it safe to store JWT in memory?
To reiterate, whatever you do, don't store a JWT in local storage (or session storage). If any of the third-party scripts you include in your page is compromised, it can access all your users' tokens. To keep them secure, you should always store JWTs inside an httpOnly cookie

Code & Coffee - 4/15/2022

 Code & Coffee - 4/15/2022

  • Slack hacks and tools
    • Organize channels into groups
    • Google calendar integrations
  • What happens when a Saas goes down
    • Risk assessment
    • -- insert link from Derek
    • Jira
      • use a spreadsheet for a couple days?
    • Git
      • It is distributed, don't panic
      • Might want more than an "accidental strategy" though
        • Regular mirroring of code repository
        • Mirror the pipeline enough to do an emergency build
    • AWS
      • panic!
    • CI server
      • What happens when the pipeline provider zonks out?
      • Can you do a local build and deploy?
      • What parts can be skipped?
  • Soft deletes
    • Safer removal of data by soft delete first
    • Soft deletes and right to be forgotten laws
  • Don't recognize me list
    • how to store the list?
    • Wouldn't the list turn into a high value target
    • Or do would it be stored as a sort of fingerprint




Code & Coffee - 4/22/2022

 Code & Coffee 4/22/2022


  • Office upgrades
    • Warming up the floor 
      • Heated floor
      • Or a nice thick rug!
        • what about the rolly chair?
          • Hang it from the ceiling
          • Random stories
          • It's a good thing our dads didn't present a bull for the damages we caused
  • Working in Clojure
  • Catching up on who is where and how things are going
    • Worked with so-n-so for a couple years and saw him once even though we worked 20 ft apart.
      • different floors
  • Interview with a javascript developer:
  • Great Adventure dating book:
  • How to feel old
    • The new intern was born after I got married
    • The 20th anniversary edition of Tron is now 20 years old.
  • Coding challenge
    • Simulated PR in Github
      • How does the candidate respond to critical and positive feedback?
      • Unlimited time (days)
    • Differentiating developer level
      • Juniors talk about what happened around them
      • Mids talk about what happened in the project
      • Seniors talk about their contribution and the value to the business
      • Super Seniors talk about everything
  • Thomas wore a tie
  • How much cloud development/serverless can be done locally
    • Quite a bit but it gets complex
  • Cross cloud portability

Friday, April 1, 2022

Code & Coffee - 4/1/2022

 Code & Coffee - 4/1/2022

  • Looking for moar developers - writing the job description
  • Checked out some code and talked about Java Optional for a bit.
    • fiddled with the code and made it betterer
    • Code review is a view into the heart and soul.... or at least thought process of how other developers think
  • Ahh yes, today is the day to be a little extra careful on the internet
    • What is your favorite April Fools internet thing?