Welcome to Software Development on Codidact!
Will you help us build our independent community of developers helping developers? We're small and trying to grow. We welcome questions about all aspects of software development, from design to code to QA and more. Got questions? Got answers? Got code you'd like someone to review? Please join us.
Activity for jmathewâ€
| Type | On... | Excerpt | Status | Date |
|---|---|---|---|---|
| Comment | Post #290498 |
Separating it is sort of a paranoid safety measure in case there's any way to exploit the Swagger middleware (AFAIK there is none). And perhaps Kestrel*, though touted as production ready, may not be able to serve actual API requests while receiving millions of requests (DDOS) for large static assets... (more) |
— | 4 months ago |
| Comment | Post #290498 |
I'm also a little confused on how a static site that displays no user generated content can be exploited via script injection? It's clear someone can pwn you if they can control your swagger file, but publishing the swagger file should already be secured. Maybe the swagger UI's I'm used are more basi... (more) |
— | 4 months ago |
| Comment | Post #290498 |
Is the API meant to be shared between teams or is it essentially just for the team that deploys it?
If the API is meant for other teams, they need some documentation and that must be delivered. Swagger that's available in network is reasonable. Also, if your SRE is expecting a threat on the inter... (more) |
— | 4 months ago |
| Comment | Post #290066 |
Yes, if you have alternatives, don't directly using gateway protocols. However, its not about the reverse proxy sitting in front so much as how limiting working with something like FastCGI in general will be compared to a framework that communicates via an HTTP server. (more) |
— | 6 months ago |
| Comment | Post #290066 |
I think your thought answers the architectural dilemma if I'm understanding what you mean by dilemma correctly.
Your application server needs to communicate somehow and why not HTTP? It creates a nice developer experience locally since you can talk to it using HTTP tools which are abundant and wh... (more) |
— | 7 months ago |
| Edit | Post #290066 |
Post edited: |
— | 7 months ago |
| Edit | Post #290066 |
Post edited: |
— | 7 months ago |
| Edit | Post #290066 |
Post edited: |
— | 7 months ago |
| Edit | Post #290066 | Initial revision | — | 7 months ago |
| Answer | — |
A: Using an existing web server vs writing your own 3rd Option: You put a web server like Nginx, etc in front of your application server which can also handle 'raw' network traffic. Even in the PHP scenario this is common. There are a few reason I do this: Something like Nginx is more tested than your framework's internal networking code. So it'... (more) |
— | 7 months ago |
| Comment | Post #289443 |
The first few paragraphs are not biased and were useful to me: a non-biased observer with knowledge of python and pip, but new to pipx. It puts the statements in your question into context. For example, I thought it was indeed strange that they talked about PyPi being an "app store" as suggested in y... (more) |
— | 9 months ago |
| Edit | Post #288166 | Initial revision | — | 11 months ago |
| Answer | — |
A: Are there other reasons why useEffect might not be defined apart from not importing it? You need import all functions from the React library that you use. Add `import {useEffect, useState} from 'react'` to your file. (more) |
— | 11 months ago |
| Comment | Post #286006 |
No problem glad to help! Feel free to summarize and answer. (more) |
— | about 2 years ago |
| Edit | Post #286217 | Initial revision | — | about 2 years ago |
| Answer | — |
A: How to uncollapse the first and second tiers of a link tree in JavaScript? The first item your selector returns is the top level arrow. `hasAttribute` just tells us if the attribute is present, not what the value is. So basically your condition is returning true for all elements. Since that includes the top level element, it gets clicked and everything collapses. Try: ... (more) |
— | about 2 years ago |
| Comment | Post #286006 |
If `winpty` does work, it's likely the problem you're facing is what's described in that link. Basically, your installation of python is expecting a windows console and git-bash isn't one.
If the goal is to just be able to do run the same command in both terminals setting up aliases in git-bash i... (more) |
— | about 2 years ago |
| Comment | Post #286006 |
Maybe try `winpty black version.py` when in git-bash? A complete shot in the dark but its come in handy for certain interactive `yarn` commands. [Relevant link](https://stackoverflow.com/questions/48199794/winpty-and-git-bash) (more) |
— | about 2 years ago |
| Comment | Post #285799 |
Now that's so bad it's funny! (more) |
— | about 2 years ago |
| Edit | Post #285799 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285799 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285799 | Initial revision | — | over 2 years ago |
| Answer | — |
A: What are the disadvantages of using auto mapper libraries? It's fairly obvious, but the greater the difference between the input object and the mapped output, the less valuable auto mapping becomes. The configuration and fluent syntax for the exceptional cases are neat, but a regular property assignment is more readable, requires zero extra knowledge and in... (more) |
— | over 2 years ago |
| Edit | Post #285485 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285485 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285485 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285485 | Initial revision | — | over 2 years ago |
| Answer | — |
A: Conditionally ignore files in git > Something like automatically ignoring all .pdf files for which a .tex of the same name exists? We can do something close to that. We can reject the commit if your change list contains pdf and tex files with the same name and path with a git hook. You can then remove the files and try again. Thi... (more) |
— | over 2 years ago |
| Comment | Post #285116 |
Hah. It is a trade off for sure, but not one that affects anyone in any practical way. It works 99.999...% of the time. Any major outage will be resolved shortly precisely because it's so broadly used. I can't recall a single instance where Google single sign on failed. And I've used it since it beca... (more) |
— | over 2 years ago |
| Edit | Post #285116 |
Post edited: |
— | over 2 years ago |
| Edit | Post #285116 | Initial revision | — | over 2 years ago |
| Answer | — |
A: How can we grow this community? Not having a single sign on option greatly increased the friction in adopting the site for me. This was further compounded when the sign up process failed the first time. Which I believe was a bug that has since been addressed because I have since made my account (obviously). Apologies if this ... (more) |
— | over 2 years ago |