2023 - September/October

In this issue, Sahil discusses Azure AD security pitfalls, like redirect URIs and token validation. Paul outlines building websites with Node.js, using Mustache for dynamic pages and CORS setup. Julie explains using bounded context in Domain-Driven Design for complex filtering software. Joydip delves into real-time ASP.NET Core web apps with Server-Sent Events (SSE). Shawn guides integrating Progressive Web App (PWA) capabilities via Vite. Markus explores Copilot techniques, including secure chatbots. Mike demonstrates machine learning for email spam classification. And more!

Subscribe to CODE Magazine

Explore All CODE Issues

Error-Driven Development

By: Rod Paddock

Rod notices that sometimes, looking at a nagging obstacle in a new way can open your eyes to more than just a coding solution.
- Editorials
Top Azure Active Directory Mistakes

By: Sahil Malik

Sahil examines some of the most common mistakes and misunderstood concepts that cause insecure applications in Azure Active Directory (Entra ID if you are on board with the new name for the product). The protocols he covers are portable to any identity platform. Some common mistakes and misunderstood conceptsinclude:: redirect URIs in identity protocols, mixing different types of OpenID Connect (OIDC) flows in a single app, managing client secrets, managed identities, and understanding token validation.
- Azure
- Security
Building Web APIs Using Node.js and Express: Part 3

By: Paul Sheriff

In the third article of this series, Paul shows you how to build a website using Node.js and Express to serve web pages, how to use a templating engine called Mustache to create dynamic web pages from the data retrieved from API calls, and how to configure cross-domain resource sharing (CORS).
- ExpressJS
- node.js
Applying DDD Thinking to Refactor Aggregate Filters

By: Julie Lerman

If you’ve got a complex series of problems within filtering software, Julie shows you how bounded context in Domain-Driven Design might be a good solution.
Developing Real-Time Web Applications with Server-Sent Events in ASP.NET 7 Core

By: Joydip Kanjilal

Joydip shows you how to build real-time web applications with Server-Sent Events (SSE) in ASP.NET Core, including the core concepts of SSE, the features, benefits, and downsides of SSE, and how to implement real-time updates, etc.
- ASP.NET
Getting Started with AI Copilots in Your Own Applications

By: Markus Egger

Markus looks at fundamental techniques required to build Copilot-powered applications. Learn to build a secure chatbot, and learn practical skills for creating prompts, using models, and adding your own data.
- Artificial Intelligence
Vite and Progressive Web Apps

By: Shawn Wildermuth

Shawn how to integrate Progressive Web App (PWA) capabilities into applications built using the Vite development build environment. It explains the concept of PWAs, their benefits, and how they bridge the gap between mobile apps and websites.
- Vite
Authentication in Laravel, Part 2: Token Authentication

By: Bilal Haidar

In Part 2 of Bilal’s Authentication series, you’ll learn Token authentication in Laravel, which involves exchanging a token between the client and server for authentication, instead of sending credentials with each request. Laravel offers two packages for Token Authentication: Laravel Passport and Laravel Sanctum.
- Authentication
- Laravel
Machine Learning Saves Precious Time: Using AI to Classify Spam

By: Mike Yeager

Learn to use machine learning with AI to identify spam. Mike and the CODE team use AI to sort out the legitimate email messages.
- Artificial Intelligence
- Machine Learning
CODA: What Lies at Agile’s Heart

By: John Petersen

John takes a look at the history of Agile development and explores the difference between the process and the result. John encourages Agile practitioners to delve into the essence of Agile beyond the Manifesto to fully grasp its heart.
- Agile Development
- Editorials