2023 - September/October
In this issue, Sahil discusses Azure AD security pitfalls, like redirect URIs and token validation. Paul outlines building websites with Node.js, using Mustache for dynamic pages and CORS setup. Julie explains using bounded context in Domain-Driven Design for complex filtering software. Joydip delves into real-time ASP.NET Core web apps with Server-Sent Events (SSE). Shawn guides integrating Progressive Web App (PWA) capabilities via Vite. Markus explores Copilot techniques, including secure chatbots. Mike demonstrates machine learning for email spam classification. And more!
- 
            Error-Driven DevelopmentRod notices that sometimes, looking at a nagging obstacle in a new way can open your eyes to more than just a coding solution. 
- 
            Top Azure Active Directory MistakesSahil examines some of the most common mistakes and misunderstood concepts that cause insecure applications in Azure Active Directory (Entra ID if you are on board with the new name for the product). The protocols he covers are portable to any identity platform. Some common mistakes and misunderstood conceptsinclude:: redirect URIs in identity protocols, mixing different types of OpenID Connect (OIDC) flows in a single app, managing client secrets, managed identities, and understanding token validation. 
- 
            Building Web APIs Using Node.js and Express: Part 3In the third article of this series, Paul shows you how to build a website using Node.js and Express to serve web pages, how to use a templating engine called Mustache to create dynamic web pages from the data retrieved from API calls, and how to configure cross-domain resource sharing (CORS). 
- 
            Applying DDD Thinking to Refactor Aggregate FiltersIf you’ve got a complex series of problems within filtering software, Julie shows you how bounded context in Domain-Driven Design might be a good solution. 
- 
            Developing Real-Time Web Applications with Server-Sent Events in ASP.NET 7 CoreJoydip shows you how to build real-time web applications with Server-Sent Events (SSE) in ASP.NET Core, including the core concepts of SSE, the features, benefits, and downsides of SSE, and how to implement real-time updates, etc. 
- 
            Getting Started with AI Copilots in Your Own ApplicationsMarkus looks at fundamental techniques required to build Copilot-powered applications. Learn to build a secure chatbot, and learn practical skills for creating prompts, using models, and adding your own data. 
- 
            Vite and Progressive Web AppsShawn how to integrate Progressive Web App (PWA) capabilities into applications built using the Vite development build environment. It explains the concept of PWAs, their benefits, and how they bridge the gap between mobile apps and websites. 
- 
            Authentication in Laravel, Part 2: Token AuthenticationIn Part 2 of Bilal’s Authentication series, you’ll learn Token authentication in Laravel, which involves exchanging a token between the client and server for authentication, instead of sending credentials with each request. Laravel offers two packages for Token Authentication: Laravel Passport and Laravel Sanctum. 
- 
            Machine Learning Saves Precious Time: Using AI to Classify SpamLearn to use machine learning with AI to identify spam. Mike and the CODE team use AI to sort out the legitimate email messages. 

