my blog. for you.

Let’s talk digital.

I’m an independent IT consultant and entrepreneur in the Internet and software business. I’m interested in design, enterprise applications, web apps and SaaS products. I design and develop business solutions and applications. I help companies in terms of software quality and knowledge transfer, e.g. with Angular and Spring Boot.

API Security Best Practices by Expedited Security

For everyone dealing with web-based APIs, both as a provider and a consumer, web app security service supplier Expedited Security (known for Expedited SSL, among other products) has compiled a vast, extensive compendium on API security best practices. The importance of secure APIs and best practices that help has make APIs more secure and dependable can't be emphasised enough. Covering each possible attack vector and adopting every best practice out there can seem like a truly daunting task. Guides like this one help ... Read more

Raymond Camden @ Fronteers 2019: It Was the Best of Times, It Was the Worst of Times

Raymond Camden - It Was the Best of Times, It Was the Worst of Times from Fronteers on Vimeo. Read more

Jeremy Keith & Remy Sharp @ Fronteers 2019: How We Built the World Wide Web in Five Days

Jeremy Keith & Remy Sharp - How We Built the World Wide Web in Five Days from Fronteers on Vimeo. Read more

Paul Lewis @ Fronteers 2019: Custom Web Shadow Elements, or Whatever

Paul Lewis - Custom Web Shadow Elements, or Whatever… from Fronteers on Vimeo. Read more

Peter Müller @ Fronteers 2019: High Performance Web Fonts

Peter Müller - High Performance Web Fonts from Fronteers on Vimeo. Read more

Jennifer Wadella @ NG-DE 2019: Handling Angular Forms Without Losing Your Sanity

Read more

Guilherme Ventura @ NG-DE 2019: Watch out: observers are here to stay

Read more

Kim Maida @ NG-DE 2019: Subjecting State to Good Behavior

Read more

Katerina Skroumpelou @ NG-DE 2019: Sustainable Development Team with Angular and the PAMstack

Read more

JSON Web Tokens: Downsides, Best Practices and Secure and Robust Alternatives

JSON Web Tokens (JWTs) nowadays are commonly used for transmitting authentication data in web applications, especially those exhibiting the widespread client-server architecture where you have a fat client / single-page application written in JavaScript as a front-end and a back-end server providing REST endpoints for use by that front-end client. However, while common there are good arguments against this practice. In a nutshell, JWT often are used for storing session data such user authorization and authentication information although they aren't particularly well-suited to ... Read more
« Previous PageNext Page »