Your current filters are…
by Matt Yoho
We'll illustrate how much a RESTful architecture buys you when building a Rails application with respect to topics such as: reduced application code, clean client-side interaction, cacheability and scalability, and crafting great public APIs. If you haven't looked at the theory of REST in detail or just need a refresher, we'll cover the essence of the theory as a means of illustrating just how low-friction this approach makes building web applications with rich client experiences. This talk will feature examples and code in Ruby on Rails on the server and Backbone.js on the client, but the ideas are applicable to the design of any web application.
by Adam Goodman
A common security mantra is "don't roll your own" - but when developing modern web APIs, this may seem easier said than done. Unlike older, over-specified API protocols, the general concepts which underpin REST APIs do not offer much guidance on security best-practices. Worse still, some techniques that have gained widespread use have been shown to be fundamentally flawed. This session will cover some common classes of mistakes in developing and using secure web APIs, and show how reinventing the wheel can sometimes be dangerous. Along the way, we'll cover problems with authentication and authorization, information leakage, and (im)proper uses of transport-layer security, among others.
11th–13th January 2012