Authentication and Authorization Architecture in the MEAN Stack

•

4 gostaram•5,218 visualizações

This document discusses authentication and authorization architecture in browser applications. It covers authenticating and authorizing clients to protect them from outsiders and each other. It discusses using cookies versus tokens to maintain state and different authentication providers like Passport. It also discusses authorizing by role, resource, or custom and setting up API routes and restricting access by object or post-query filtering. The client side uses Angular to handle login and check authorization status before accessing resources. Templates can show/hide elements based on authorization.

Internet

5 Authentication
Authorization
Architecture
in Browser Applications
Yuri Takhteyev, rangle.io
http://yto.io
@qaramazov
+

Protecting
clients from:
outsiders
each other
themselves

Display and capture
Authentication
Business logic
Storage
Interaction logic
Interaction logic
AuthorizationServer
Client

Display and capture
Authentication
Business logic
Storage
Interaction logic
Authorization
Business logic
Authentication
Authorization
Authorization

Display and capture
Business logic
Storage
Interaction logic
Authorization
Business logic
Authentication
Authorization
Authorization :-(
Authorization :-)

Who am I?
Cookies
vs tokens
Maintaining
the state

Many Faces of Authorization
By role or
activity
By resource
instance
Altogether
custom

Setting Up an API Route
var mapper = koast.makeMongoMapper(connection);
routes = [
['get', 'robots', user.any,
mapper.get('robots', [])
],
['put', 'robots/:robotNumber', user.any,
mapper.put('robots', ['robotNumber'])
]
];

Restricting Access by Object
mapper.queryDecorator = function(query, req,
res) {
query.owner = req.user.username;
};
mapper.queryDecorator = function(query, req,
res) {
query.clientId = req.user.clientId;
};

Post-Query Filtering
mapper.filter = function(result, req) {
if (req.method === 'GET' {
return canSee(data, req);
} else {
return canEdit(data, req);
}
};

Informing the Client
mapper.clientAuthorizer = function(result, req,
res) {
result.meta.can.edit =
canEdit(result.data, req);
};

The Client Side
angular.module('sampleKoastClientApp',
['koast'])
.controller('myCtrl', ['$scope', 'koast',
'$log',
function($scope, koast, $log) {
$scope.login = function(provider) {
koast.user.initiateOauthAuthentication(
provider);
};
...

The Client Side
...
koast.user.getStatusPromise()
.then(function() {
if (koast.user.isAuthenticated) {
return koast.getResource('robots')
.then(function(robots) {
$scope.robots = robots;
});
}
})
.then(null, $log.error);
}]);

The Template
<span ng-if="robot.can.edit">
<button>...</button>
</span>

Thank You.
Contact:
yuri@rangle.io
http://yto.io
@qaramazov
This presentation:
http://yto.io/auth
Koast:
http://yto.io/koast

Image Credits
by yewenyi
by striatic
by bible-history
by dunechaser
by nikhilverma
Distributed under
Creative Commons Attribution
Share-Alike License, v. 2.0
by psd

Mais conteúdo relacionado

Mais procurados

OAuth 2.0 and OpenId Connect

Saran Doraiswamy

CIS14: Consolidating Authorization for API and Web SSO using OpenID Connect

CloudIDSummit

Loggin in to a website seems easy. But what seems so simple, is only easy as long as the website is based on a monolith in the background. But what happens, if there are lots of microservices at work? How do the microservices know that the user is who he is and how can this be achieved efficiently? The use of JSON Web Tokens (JWT) can be a solution. Presentation from the 2017 microXchg Conference in Berlin.

Authorization and Authentication in Microservice Environments

LeanIX GmbH

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorisation. He will explore the existing impl More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro. Authentication is normally a stateful service. Most of the implementations rely on the HTTP session, thus introducing state as the session is an in-memory data structure in the application server. In the microservices era, most of the companies are developing such called RESTful services, where one of the principles is to create stateless systems. In such scenario, authentication should be stateless too. There is a standard specification to secure web application and API's, that is being adopted massively by the industry: OAuth 2. The specification doesn't explicitly cover how to make a stateless implementation. And most of the existing ones depend on some sort of external storage (such as a DB) to store the tokens generated for a later validation. Fortunately, there is another specification by the IETF called JSON Web Token, that can be combined with OAuth 2 to achieve a stateless authentication system. In the session, Alvaro will explain the core concepts of OAuth 2, as well as JWT and how can them be used together to achieve the last 2 letters of REST: State Transfer.

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Alvaro Sanchez-Mariscal

Mit 2014 introduction to open id connect and o-auth 2

Justin Richer

CIS14: Working with OAuth and OpenID Connect

CloudIDSummit

Stateless Auth using OAuth2 & JWT

Gaurav Roy

ConFoo 2015 - Securing RESTful resources with OAuth2

Rodrigo Cândido da Silva

OpenID Connect - An Emperor or Just New Cloths?

Oliver Pfaff

2016 pycontw web api authentication

Micron Technology

OpenID Connect: An Overview

Pat Patterson

The OpenID Connect or OAuth frameworks can be used to achieve a range of security levels. Properly used, it mitigates many risks. However, OpenID Connect’s flexibility, combined with its shared ontogeny with OAuth 2.0, creates opportunities for error--developers may not use (or even know about ) certain features necessary to achieve the transaction integrity they desire. The good news is that client software and middleware services can do some of the heavy lifting. You can have the best of both worlds--maximizing security and developer joy. Whether you’re a developer or security architect, what should you look for in an application that acts as an OpenID Connect client?

The Client is not always right! How to secure OAuth authentication from your...

Mike Schwartz

Have you ever wondered how single-sign-on on sites like Google and Facebook works? Are you a fan of stateless application architectures? Do you want to learn how to put together a modern security approach for your next Spring Boot project? If the answer is yes, to anything above, then this session is for you. Dmitry will explain what is OAuth 2.0 and JWT, why are they popular, and how to integrate them in Java project.

Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin

Java User Group Latvia

Constructing a successful and simple API is the lifeblood of your developer community, and REST is a simple standard through which this can be accomplished. As we construct our API and need to secure the system to authenticate and track applications making requests, the open standard of OAuth 2 provides us with a secure and open source method of doing just this. In this talk, we will explore REST and OAuth 2 as standards for building out a secure API infrastructure, exploring many of the architectural decisions that PayPal took in choosing variations in the REST standard and specific implementations of OAuth 2.

Securing RESTful APIs using OAuth 2 and OpenID Connect

Jonathan LeBlanc

Как да контролираме достъпа до web API и други защитени ресурси посредством OAuth 2.0, и как да идентифицираме потребители с OpenID Connect. Лекцията е предназначена за уеб архитекти и програмисти, както и за всички разработчици, които искат да научат повече за новите уеб протоколи за авторизация и автентикация.

Protecting web APIs with OAuth 2.0

Vladimir Dzhuvinov

ID連携入門 (実習編) - Security Camp 2016

Nov Matake

Websites and applications are implementing social single sign-on to allow users to login using trusted authentication providers such as Google, Facebook, and even Salesforce. Join us to learn how to configure the OpenID Connect authentication provider to allow users to authenticate at Google to access a Salesforce environment. We'll also look at how you can relieve yourself of the burden of password management by having your web app login users via Salesforce.

OpenID Connect and Single Sign-On for Beginners

Salesforce Developers

JavaOne 2014 - Securing RESTful Resources with OAuth2

Rodrigo Cândido da Silva

Json web token api authorization

Giulio De Donato

As products and companies move towards IoT model, users and machines alike need to interact with various APIs. Securing these APIs in a connected world can be a challenge faced by many. Fortunately, there are open standards addressing even the most complex of use cases - OAuth, OpenID and OpenID Connect happen to be widely adopted and have a growing support across many API and Identity Providers. In this session I'll talk about these standards, and walk through common use cases/flows from an API Provider as well as consumer's side. We will explore how these standards come together to not only secure the APIs, but also manage identity.

Securing your APIs with OAuth, OpenID, and OpenID Connect

Manish Pandit

Mais procurados (20)

OAuth 2.0 and OpenId Connect

CIS14: Consolidating Authorization for API and Web SSO using OpenID Connect

Authorization and Authentication in Microservice Environments

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Mit 2014 introduction to open id connect and o-auth 2

CIS14: Working with OAuth and OpenID Connect

Stateless Auth using OAuth2 & JWT

ConFoo 2015 - Securing RESTful resources with OAuth2

OpenID Connect - An Emperor or Just New Cloths?

2016 pycontw web api authentication

OpenID Connect: An Overview

The Client is not always right! How to secure OAuth authentication from your...

Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin

Securing RESTful APIs using OAuth 2 and OpenID Connect

Protecting web APIs with OAuth 2.0

ID連携入門 (実習編) - Security Camp 2016

OpenID Connect and Single Sign-On for Beginners

JavaOne 2014 - Securing RESTful Resources with OAuth2

Json web token api authorization

Securing your APIs with OAuth, OpenID, and OpenID Connect

Semelhante a Authentication and Authorization Architecture in the MEAN Stack

As our applications grow in complexity, application security needs to change to keep pace. Using real-world examples we will explore new implementations for front-end user authorization and authentication best practices. We’ll go beyond the basics of determining if a user is logged in, and discuss using JSON Web Tokens (JWT) for authentication. By examining security vulnerabilities lurking in most web applications we will demonstrate strategies to implement new security patterns using today’s hottest JavaScript frameworks (Angular, React, Vue). You’ll find unique ways to differentiate users by roles or security groups, changing the user experience. We’ll discuss ways to control a user’s access down to a single data point by moving our authorization model to the component level. Key areas we’ll cover: - JSON Web Token (JWT) best practices - Route and Component level authorization - Role based user access - Vulnerabilities in modern web apps

Denied! Securing your Application with Better User Authorization

Brian Childress

Whether you build software for enterprises, mobile, or internal microservices, security is important. Standards like SAML, OIDC, and SPIFFE help you solve identity and authentication, but for them authorization is out of scope. When you need to control "who can do what" in your app, you are on your own. To solve authorization, you may be tempted to hardcode logic against SAML assertions, scopes, or X.509 certificate attributes. But, approaches like this lead to systems that are hard to understand and painful to maintain. This talk shows how to leverage the Open Policy Agent (which is used by companies like Netflix and Chef) to build a powerful authorization system on top of industry-standard authentication protocols. The talk showcases how decoupling leads to authorization solutions that are easier to understand while enabling fine-grained control over the app.

Implementing Authorization

Torin Sandall

RoadSec 2017 - Trilha AppSec - APIs Authorization

Erick Belluci Tedeschi

GDG Cloud Taipei: Meetup #52 - Istio Security: API Authorization

KAI CHU CHUNG

In this talk we discuss key architecture patterns for designing authentication and authorization solutions in complex microservices environments. We focus on the key advantages and capabilities of AWS Cognito User Pools and Federated Identities and explore how this service can address the challenges of implementing client to service, service to service and service to infrastructure auth. In addition, we discuss patterns and best practices around building a highly available and resilient decentralised authorization solution for microservices environments based on OIDC. We present a simple RBAC implementation together with fine-grained permissions and end to end automation.

Complex architectures for authentication and authorization on AWS

Boyan Dimitrov

Saxo Bank is on a growth journey and Kafka is a critical component to that success. Securing our financial event streams is a top priority for us and initially we started with an on-prem Kafka cluster secured with (the de-facto) Kerberos. However, as we modernize and scale, the demands of hybrid cloud, multiple domains, polyglot computing and Data Mesh require us to also modernize our approach to security. In this talk, we will describe how we took the default (non-production ready) Kafka OAuth implementation and productionized it to work with Kafka in Azure Cloud, including the Kafka stack and clients. By enabling both Kerberos and OAuth running on-prem and in the cloud, we now plan to gracefully retire Kerberos from our estate.

How we eased out security journey with OAuth (Goodbye Kerberos!) | Paul Makka...

HostedbyConfluent

TLDR - OAuth

Andy March

UserCentric Identity based Service Invocation

guestd5dde6

OAuth is not an API or a service: it is an open standard for authorization and any developer can implement it. OAuth is a standard that applications can use to provide client applications with “secure delegated access”. OAuth works over HTTPS and authorizes devices, APIs, servers, and applications with access tokens rather than credentials, which we will go over in depth below. OpenID Connect (OIDC) is built on top of the OAuth 2.0 protocol. It allows clients to verify the identity of the user and to obtain their basic profile information. This session covers how OAuth 2.0 and OIDC work, when to use them, and frameworks/services that simplify authentication. Blog: https://developer.okta.com/blog/2017/06/21/what-the-heck-is-oauth Online Tools: - https://oauth.com/playground - https://oauthdebugger.com - https://oidcdebugger.com Never Build Auth Again → https://developer.okta.com

What the Heck is OAuth and OIDC - UberConf 2018

Matt Raible

Understanding Identity in the World of Web APIs – Ronnie Mitra, API Architec...

CA API Management

How to Build an Indivo X Personal Health App

Ben Adida

With a complete new Identity/Access Management Suite on the Oracle market, one might forget the good old SSO server, bundled with each and every IAS server. Although it has some out-of-the-box capabilities like WNA and X509 certificate support, it can be quite hard to set up an authentication scheme just the way you (or your customers) like it. Using a case study, this presentation discusses how you can extend Oracle’s Single Sign On (SSO) server to your needs. It will discuss : - Integration & authentication with smartcard passports (eID) - Authentication with digital certificates - Implementing fallback authentication schemes - Integration with SSL terminators and reverse proxies - DIY federated authentication - writing your own SSO plugin The solutions presented are part of AXI NV/BV's portfolio.

Extending Oracle SSO

kurtvm

iMasters Intercon 2016 - Identity within Microservices

Erick Belluci Tedeschi

InterCon 2016 - Segurança de identidade digital levando em consideração uma a...

iMasters

WebRTC Identity in SAML Federations

Mihály Mészáros

Single Page Apps bring a unique set of concerns to authentication and user management. Robert Damphousse, lead Javascript engineer at Stormpath, will show you how to use Stormpath to secure an Angular.js app with any backend: Java, Node, PHP, .NET and more! Robert will deep dive into Angular.js authentication best practices and an extended technical example. Join us! Topics Covered: - Authentication in Single Page Apps (SPA) - Using JWTs instead of Session IDs - Secure Cookie storage - Cross-Origin Resource Sharing - Where does Stormpath fit in your architecture? - End-to-end example with Angular.js + Express.js - Password-based registration and login - How to secure your API endpoints - Implement User Authorization - Design for a frictionless User Experience

How to Use Stormpath in angular js

Stormpath

Single Sign-On security issue in Cloud Computing

Rahul Roshan

Amazon Cognito lets you easily add user sign-up and sign-in to your mobile and web apps. Finding the right identity solution can often be challenging. In this session, we will look at how Cognito can support a wide range of authentication scenarios including customers, employees and systems to help you make the right choices. Speaker: Stephen Liedig. Solutions Architect. Amazon Web Services Level: 300

Managing Identity and Securing Your Mobile and Web Applications with Amazon C...

Amazon Web Services

AWS Dev Day Kyiv 2019 Track: Backend & Architecture Session: ""How to implement authorization in your backend with AWS IAM"" Speaker: Stas Ivaschenko, AWS solutions architect at Provectus Level: 400 Video: https://www.youtube.com/watch?v=4Jje_WJ4V7Q AWS Dev Day is a free, full-day technical event where new developers will learn about some of the hottest topics in cloud computing, and experienced developers can dive deep on newer AWS services. Provectus has organized AWS Dev Day Kyiv in close collaboration with Amazon Web Services: 800+ participants, 18 sessions, 3 tracks, a really AWSome Day!  Now, together with Zeo Alliance, we're building and nurturing AWS User Group Ukraine — join us on Facebook to stay updated about cloud technologies and AWS services: https://www.facebook.com/groups/AWSUserGroupUkraine "

How to implement authorization in your backend with AWS IAM

Provectus

OAuth is a widespread web-based standard. It’s purpose is to provide safe inter-application access to web resources without having to reveal passwords or other sensible credentials across the wire or to third party applications. After lots of tough discussions for two and a half years version 2.0 of this standard has been released – finally. This session gives you an introduction to OAuth 2.0. You will understand its concepts as well as its limitations and pitfalls. You will also learn how it feels to write your own OAuth 2.0 based application based on real-life code examples.

OAuth 2.0 – A standard is coming of age by Uwe Friedrichsen

Codemotion

Semelhante a Authentication and Authorization Architecture in the MEAN Stack (20)

Denied! Securing your Application with Better User Authorization

Implementing Authorization

RoadSec 2017 - Trilha AppSec - APIs Authorization

GDG Cloud Taipei: Meetup #52 - Istio Security: API Authorization

Complex architectures for authentication and authorization on AWS

How we eased out security journey with OAuth (Goodbye Kerberos!) | Paul Makka...

TLDR - OAuth

UserCentric Identity based Service Invocation

What the Heck is OAuth and OIDC - UberConf 2018

Understanding Identity in the World of Web APIs – Ronnie Mitra, API Architec...

How to Build an Indivo X Personal Health App

Extending Oracle SSO

iMasters Intercon 2016 - Identity within Microservices

InterCon 2016 - Segurança de identidade digital levando em consideração uma a...

WebRTC Identity in SAML Federations

How to Use Stormpath in angular js

Single Sign-On security issue in Cloud Computing

Managing Identity and Securing Your Mobile and Web Applications with Amazon C...

How to implement authorization in your backend with AWS IAM

OAuth 2.0 – A standard is coming of age by Uwe Friedrichsen

Mais de FITC

Varun Vachhar rangle.io Overview JavaScript frameworks allow us to build innovative and delightful experiences for our users. A common approach adopted with these modern tools is to combine all required JavaScript into one large bundle. Therefore, causing the loading performance to suffer. Especially on older devices or devices with low memory and processing power. An alternative approach is to split your code into various smaller chunks which you can then be loaded on demand — allowing you to reduce the load time drastically. In this session, Varun will demonstrate how you can adopt the practice of code-splitting when building applications with frameworks such as React and Vue. Objective Learn how to use code-splitting to improve the loading performance of Javascript heavy applications. Target Audience Front-end developers who build JavaScript heavy applications Assumed Audience Knowledge Basic understanding of web development and some familiarity with frameworks such as React, Angular or Vue. Level Intermediate Five Things Audience Members Will Learn What is code-splitting? Different types of code-splitting How to split a React or Vue application How to “lazy-load” parts of the application Removing duplicate code from chunksa

Cut it up

FITC

Presented at Web Unleashed 2019 More info at www.fitc.ca/webu Andréa Crofts League Overview Examining our responsibility as creators to design for disconnection. The “restore connection” alert isn’t just for devices– it applies to people too. And it’s more important now than ever before. Digital creators, we need to talk. The rise in mental health as a result of situational stress is a prevailing theme in today’s society, and some of the products we’re building are the root cause. But we have the power to change this. As creators of digital products, how might we enable our users to be more present in their lives? How might we invest in features like Instagram’s activity timer, despite the fact that they’re fundamentally counterintuitive to the usage metrics most behemoth tech companies are driving towards? We have a responsibility as creators of digital products to enable others to disconnect …and re-connect with themselves, physically and mentally. This intersection is an emerging category Andrea likes to call digital health, and it’s something we can create together. Objective To share actionable strategies, principles and considerations for designing with digital health top of mind. Andrea will get into some #realtalk about how we can collectively create more balance and presence for the humans using our products. Target Audience Designers and digital creators of all kinds – especially those building digital products at scale! Level Open to audience members of any skill level (this is a more high-level talk) Five Things Audience Members Will Learn Tips and best-in-class examples of designing for digital health Design guidelines and principles for designing with digital health in mind Evidence-based practices to ground your future design decisions Strategies for re-framing the success metrics of digital products Design ethics resources

Designing for Digital Health

FITC

Presented at Web Unleashed 2019 More info at www.fitc.ca/webu Luke DeWitt REDspace Overview JavaScript’s popularity has exploded over the last decade, taking it from a laughable scripting language to one that powers much of the web today. Because it’s so flexible and so easy to learn, it’s extremely popular with new developers looking to cut their teeth in programming. However, these strengths are also weaknesses, as it’s incredibly easy to write bad JavaScript without even knowing it. A lot of these newer developers jump from “Hello, World!”, to TodoMVC in order to find the library that makes their life easier. By doing this, they skip over some of the important details of not only how JavaScript works, but also how to optimize its performance to ensure the best user experience. The Chrome profiler is a very handy tool that not a lot of developers have experience with. In this talk, we’ll take a beginner’s look at the profiler tool and examine how to use it to best improve your web application, and identify bottlenecks in your code without having to rely only on console.log statements. Objective To help developers understand how to better make use of the JavaScript profiler. Target Audience Any JavaScript developers Assumed Audience Knowledge Basic JavaScript Level Beginner / intermediate Five Things Audience Members Will Learn Javascript inner-workings Profiling concepts Identifying bottlenecks Profiling node applications Tooling

Profiling JavaScript Performance

FITC

presented at Web Unleashed 2019 For more info see https://fitc.ca/event/webu19/ Kevin Daly RBC Ventures Every developer has faced the difficult choice of deciding what tech stack they should use for a new project. Should you use the latest tech or something that everyone knows? Which framework is the best for your team? To survive your tech stack, developers must make trade-offs with developing on new tech stacks and the ability to maintain and scale their applications. In this presentation, you’ll learn how to evaluate your tech stack and understand the pros and cons of using bleeding edge technology. Using his past experiences, Kevin will also share his lessons learned and how his team tackles managing their tech stack today.

Surviving Your Tech Stack

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Bushra Mahmood Unity Technologies Overview In this talk, Bushra Mahmood will explain how to articulate and pitch augmented reality as a viable medium to help solve problems. Learn about what makes an AR application come together on both mobile devices and headsets. Uncover different tools and methodologies for problem-solving and making a compelling story. By properly understanding this technology and its parts, creatives can take an active role in shaping and defining this new space in computing. Objective Learn the tools and techniques required to pitch an augmented reality project. Target Audience Designers, product managers, product stakeholders. Assumed Audience Knowledge An understanding of product design and an awareness of AR Five Things Audience Members Will Learn The right language to use when explaining ‘spatial’ design The different requirements and considerations for scoping an AR project The tools that are currently available for AR authoring Insights into what the near and far future will hold for this medium. An example of an AR application pitch

How to Pitch Your First AR Project

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Karri Ojanen RBC Royal Bank of Canada Overview Over the past number of years companies have adopted the idea of customer-centricity. People across functions can fluently talk about the importance of paying special attention to end-user needs and overall customer experience. But innovation and forward-thinking ideas that connect both customer and business needs can’t simply be squeezed out of brainstorm sessions and sticky notes if the organization doesn’t learn how to effectively look outside of its own silos. In this session, Karri will show how to move from jumping to solutions to driving innovation by understanding the question first. Target Audience Designers, researchers, strategists, product managers, and technology leads Three Things Audience Members Will Learn Methodologies and tools to form insights out of a holistic understanding of customer challenges How to synthesize data to form a vision of the better future How to break the vision into manageable chunks that drive value for the business and the customer at every launch

Start by Understanding the Problem, Not by Delivering the Answer

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Alan Williams Imaginary Forces Overview During dailies as an intern at Imaginary Forces, Alan’s director, Karin Fong, would follow her animation feedback with one of the scariest and empowering questions of his career, “what do you think?” Over the last eight years, Alan’s transition from technician to creative director came from a dramatic shift in how he approached and answered that question. By examining larger conceptual principles to practical application in commercial and tv/film design, such as HBO’s Vinyl and Netflix’s Anne with an E, he will share hard-learned lessons that can empower you, whether in Photoshop, behind a camera, or pitching to clients, in developing and selling your creative voice. Target Audience Visual communicators eager to become more evocative storytellers Five Things Audience Members Will Learn ‘Method branding’ in a selfie culture O.C.D. (observe, collect, dissect) & the imagination The resuscitating power of rearrangement Pertinence vs pipeline: the crippling cage of routine Less pitching, more poetry

Cocaine to Carrots: The Art of Telling Someone Else’s Story

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Carl Sziebert Google Overview Innovation is defined as the process of making an idea into a good or service that creates value by meeting a need or solving a problem at scale. This talk explores ways to find inspiration from everyday sources, invest in skills that foster collaboration, and identify opportunities for impact. While leveraging the core principles of and learnings from designing products for real people, Carl will examine a number methods for building creativity and innovation into our everyday work. Target Audience For individual contributors looking to cultivate opportunities for impact and find the right time, space, and tools to innovate in our everyday work. Five Things Audience Members Will Learn A bottom-up approach to framing innovation within your daily work Identify and validate opportunities that make an impact Prioritize, prototype, and build understanding of the problems you are solving Collaborate locally and globally Seek, give, and apply feedback often

Everyday Innovation

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Chris Zacharias imgix Overview The average website loads over 1.5MBs of content per page, making over 75 requests. Many popular websites are serving over 5MBs just to load their homepages. And these numbers represent measurements taken AFTER compression is applied. The full weight of many popular websites is pushing 20+ MBs these days. In an era where performance truly matters to the end user experience, web developers need techniques to help curtail this bloat in data down the wire. No matter how well you optimize, there is no better way to than to delete things you do not need. How does one determine what is essential to the user experience and what is not? One answer Chris posits is to develop a hyper-lightweight version of your website which will provide critical insights into your specific performance priorities. This is a process that he has leveraged on many projects, in particular at YouTube to reduce the size of the video watch page from 1.5MBs to 100KBs. In this talk, Chris will take real-world web pages and show techniques for dramatically reducing their page weight and for identifying areas to optimize, while outlining the key steps to doing this well. Objective Learn a process for building a hyper-lightweight version of your website for establishing reasonable performance budgets, grounded in reality, to work from. Target Audience Web developers Assumed Audience Knowledge HTML, CSS, Javascript, some server-side awareness. Level Intermediate Five Things Audience Members Will Learn How to analyze a web page for performance issues A holistic approach to deconstructing an existing website A clear process for building a hyper-lightweight version of your website Translating your findings into real performance priorities Establishing a realistic performance budget

HyperLight Websites

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Michael Fullman VT Pro Design Overview An exploration of the process of creation. We live in a time where technology and inspiration are more readily available and accessible than ever before. That being said we also live in a time that mostly highlights the successes of projects and process. In this particular talk Michael wants to touch on the process of creation with technology at VT Pro, to further explore a full circle approach to inspiration and creation where often times our next project is inspired by something learned in the process of creating something else. By exploring what went wrong and what went right in a number of different projects he’s created, Michael will touch on points where inspiration can be found in this world of seemingly endless technology; the importance of collaboration; what can be learned from the moments that don’t necessarily go as planned; and how often projects come close to failure than the audience ever knows. Lastly he wants to touch on the process of finding personal inspiration to inspire an audience, and the momentum to push further that comes from their energy. Objective Things often don’t go as planned, but often that’s the fun part. Target Audience Creative technologists and experience designers Five Things Audience Members Will Learn Collaborative process Giving personality to a piece of technology How to learn from the unexpected We all start somewhere (the journey is just as important as the destination) Everything is possible now

Everything is Terrifying

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Sands Fish MIT Media Lab Overview Today, the environments that humans occupy in space are designed for survival. Humans are carefully shuttled to and from space, and during their relatively short stays, they are provided with minimum supplies to remain alive and able to perform experiments. As we begin to plan less for short visits and more for life in space (such as a six to eight month trip to Mars and beyond) the question becomes: What does human culture look like in space? This talk will explore how human culture, design, and creativity might evolve as we begin to live in space, and the unique environmental conditions that might guide us in certain directions, just as the environment on Earth has. It will discuss space tourism, living in zero gravity, and some experiments in art and design that hint at future aesthetics. Objective Convey what opportunities exist at the outset of a more democratized New Space age, and call out the aesthetics, ethics, and cultural frontiers we find ourselves faced with at the end of the second decade of this century. Target Audience Those interested in the future of human life in space Five Things Audience Members Will Learn The history of human culture in space Unique design constraints and considerations when designing for zero gravity The experience of flying in a zero-g flight The aesthetics at play in human spacefaring — (what has been) New forms, new materials, new ideas — (what might be)

Post-Earth Visions: Designing for Space and the Future Human

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Lindsay Munro Adobe XD Overview Your social network could be more valuable than the work you’re doing today, because it could (and should) lead to the opportunities you get tomorrow. Your next post could result in your next recommendation, job, collaboration, exhibit, and next level experience. In this session, you’ll learn how to hone and build your online social media presence to attract brands and engage in the modern-day endorsement deal. Get a behind-the-scenes perspective on the things brands look for in creative profiles and the rules of engagement. Objective Teach the ins and outs of what it means to be a creative social influencer. Target Audience Creatives looking to up level their social media presence and strike brand partnerships. Things Audience Members Will Learn How to set yourself up for “success” on social media The importance of working with the right brands Figuring out compensation and negotiating contracts The ins and outs of disclosure and liability How to not mess it up

The Rise of the Creative Social Influencer (and How to Become One)

FITC

Presented at FITC Toronto 2019 More info at www.fitc.ca/toronto Amelie Rosser Jam3 Overview For the past two years Jam3 worked alongside Joy Kogawa and the NFB to create East of the Rockies, an augmented reality storytelling experience. East of the Rockies is the first interactive AR game of its kind. The story takes users through a piece of Canadian history where Japanese Canadians were forced to leave their homes and live at internment camps during WWII. This talk will cover the creation of the game: from concept and storyboarding, to the development process in Unity and various challenges and questions to consider from a creator’s perspective. Objective To let the audience in on the behind the scenes of developing an AR experience like East of the Rockies. Target Audience For those interested in Augmented Reality storytelling and game development. Five Things Audience Members Will Learn AR techniques using Unity Storytelling in AR Prototyping interactions in AR Game state management using Unidux Game optimization techniques in Unity

East of the Rockies: Developing an AR Game

FITC

The Knowledge Society: Three Talks About the Future Futurism Innovation Science Isabella Grandic The Knowledge Society Overview Join three incredible, young, and brilliant minds as they present their findings on topics that we’ll all have to deal with in the not so distant future. This series of talks will explore how exponential technologies like synthetic farming, nanotechnology, and quantum computing can be used to solve some of the world’s most difficult problems. The speakers are all students of The Knowledge Society (TKS), a human accelerator for high school students designed to help them impact billions. TKS encourages students to take risks and think big. Ayaan Esmail‘s talk will cover creating a proactive healthcare system

Creating a Proactive Healthcare System

FITC

R.C. Woodmass Crescendo Overview The reports are in: how we relate to technology directly affects how we relate to other humans, to our environments, and to ourselves. Are we headed for a technological dystopia, where robots are in charge and empathy is just a word for the history books? Not necessarily! Learn how the interfaces we interact with can teach us how to be better communicators, increase our understanding of each other, and how product design might be the key to building a positive future for all. Objective Directly address fear and skepticism about technology, inspiring all who design and build tech to think more empathetically when building UX and UI. Target Audience Product designers, HR specialists, and anyone skeptical about technology Three Things Audience Members Will Learn How to create user interfaces that are flexible enough to include everyone, even if they can’t keep up with all the different identities and new labels that people are using What is conversation design, and how it has the power to teach people how to communicate How AI has the potential to be more inclusive than previous data analysis systems, if we leverage its weaknesses to the human advantage

World Transformation: The Secret Agenda of Product Design

FITC

Matt Swoboda Notch Overview The adoption of real-time technologies and workflows for content creation is a seismic shift in the world of video/graphics. It has a fundamental effect on not just on render times but on the entire creative process. In this session hear from someone who has been using realtime graphics for creative work for almost 20 years, and his experiences in applying it to productions such as the Ed Sheeran world tour and Cirque du Soleil. Objective Give the audience an overview of what really is capable in a real-time workflow today, and where things are headed. Target Audience Anyone who wants to take confident steps in the direction of real-time motion graphics, especially within the live, installation and AR fields. Five Things Audience Members Will Learn How does real-time change the creative and production process Limitations – where does it work, where doesn’t it make sense What real-time graphics are capable of today What happens on a rock’n’roll tour bus What DOESN’T happen on a rock’n’roll tour bus

The Power of Now

FITC

Hasan Ahmad Aquent DEV6 Overview PWAs are a newly emerging delivery format for web, desktop apps. The fact that they can be installed on a client device and behave like natively installed apps means that special care should be taken when designing and building these types of apps, above and beyond a typical browser-only web application. One of the most important (potential) differentiators in the user experience of a PWA app vs a traditional web app is the ability to provide a high-performance UI because of their ability to do things like cache resources offline, including entire pieces of Web UI code, and the use of background services. In this talk we are going to do an exhaustive overview of the entire landscape of building PWAs from a performance-first perspective. Target Audience Web development teams Assumed Audience Knowledge Web Development fundamentals Objective Large enterprise applications Five Things Audience Members Will Learn Why PWA’s require performance engineering What tools are available to measure performance metrics Offline caching strategies Host device considerations: desktop and mobile Taking advantage of background code: Service Workers

High Performance PWAs

FITC

Bhavana Srinivas Netlify Overview A new web stack has emerged. A stack powered by modern browsers, API economy and Git based workflows. A stack that is not tied to specific technologies. A stack that takes into account both developer experience while building the application, and user experience when interacting with the application. A stack that delivers better performance, higher security, and lower cost of scaling for web applications. In this talk, Bhavana will dive more into the architecture and best practices for building performant web applications using the JAMstack Objective Educate the audience about the JAMstack and why it powers performant sites Target Audience Web stakeholders who want fast, secure and performant websites Assumed Audience Knowledge Built a website/interacted with sites Five Things Audience Members Will Learn What is the JAMstack The ecosystem around the JAMstack How to improve the performance of your site built on the JAMstack Example sites built on this architecture Resources and best practices

Rise of the JAMstack

FITC

Midge “Mantissa” Sinnaeve Mantissa Overview Midge will be speaking about his experience of switching to open source applications for his freelance work. From ditching expensive software subscriptions to going down the linux rabbit hole, he’ll take you along for the ride and show you some cool stuff along the way. It’s an in-depth look at what happens when your digital tools become an extension of yourself and how that can in turn inspire you to get better as an artist and find your style. Objective Taking a critical look at how you work and why. Target Audience (Motion) designers, 3D & VFX artists Four Things Audience Members Will Learn Open Source Design Tools Self-criticism Inspiration Letting go

From Closed to Open: A Journey of Self Discovery

FITC

Studio Macouno has been realizing post industrial projects for two decades. Though they’re very busy doing things like creating generative shavers for Philips and designing life size 3D printed petition elephants, those are but a fraction of what they would like to do. In this talk Dolf will explore the projects they just don’t have time for. The things the studio would love to do but can’t do on it’s own. The things that are way out there… Those that don’t seem possible, or are just too much work. The dreams that they think are a bit too much, but they just might do anyway. Objective Finding, funding and founding cooperatives for creative futurist projects. Target Audience People interested in making things today that seem ideas for tomorrow. Five Things Audience Members Will Learn Some about generative design 3d printing Art Running projects And making things happen

Projects Ain’t Nobody Got Time For

FITC

Mais de FITC (20)

Cut it up

Designing for Digital Health

Profiling JavaScript Performance

Surviving Your Tech Stack

How to Pitch Your First AR Project

Start by Understanding the Problem, Not by Delivering the Answer

Cocaine to Carrots: The Art of Telling Someone Else’s Story

Everyday Innovation

HyperLight Websites

Everything is Terrifying

Post-Earth Visions: Designing for Space and the Future Human

The Rise of the Creative Social Influencer (and How to Become One)

East of the Rockies: Developing an AR Game

Creating a Proactive Healthcare System

World Transformation: The Secret Agenda of Product Design

The Power of Now

High Performance PWAs

Rise of the JAMstack

From Closed to Open: A Journey of Self Discovery

Projects Ain’t Nobody Got Time For

Último

Ballia Escorts Service Girl ^ 9332606886, WhatsApp Anytime Ballia

meghakumariji156

Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts. A nutshell review for Hot Call girls in Abu Dhabi. My experience was superb with them this is the only recommended Call girls service in Abu Dhabi with verified Call girls. I am using their services from past 6 months they never ever disappointed me in any way. Let's just say if i asked them to provide me russian Call girls they fulfilled my request or even pakistani Call girls or indian Call girls in Abu Dhabi. They have their owen drivers who brings the Call girls in less time in any area of Abu Dhabi like as well. I'm writing here everything after experience their services in all conditions. So hopefully they will keeps working in the same way and makes more consumers like me. These guys are the best example of work with perfection. Pleased with Abu Dhabi Call girls and highly suggested to every one. Call girls whatsapp numbers in abu dhabi. Rent a girlfriend abu dhabi, stylish call girls abu dhabi any more than she had to. In a way, I guess I was the reason for her being like, Indian call girls abu dhabi, Indian call girl abu dhabi, indian call girls in abu dhabi, indian call girl agency abu dhabi, Pakistan call girls in abu dhabi, Pakistani call girl in abu dhabi, russian call girls in abu dhabi, russian call girl service in abu dhabi, indian call girls numbers abu dhabi, pakistani call girls number abu dhabi, teen call girls in abu dhabi, outcall call girls in abu dhabi Al Zahiyah Abu Dhabi Call Girls, Al Wahda Abu Dhabi Call Girls, Al Khalidiya Abu Dhabi Call Girls, Khalifa City Abu Dhabi Call Girls, Al Reem island Call Girls, Yas Island Call girls, Al lulu Island Call Girls, Nurai Island Call girls, Saadiyat Island Call Girls, Tourist Club Area Call Girls, Al Baraha Call Girls, Al Bateen Call Girls, Al Danah Call Girls, Al Dhafrah Call Girls, Al Falah City Call Girls, Al Ghadeer Call Girls she was, at least partially, and that made me feel even more responsible to help fix it. But I'd be lying if I didn't admit more sordid, and much more interesting, thoughts crept up right alongside that responsibility.

Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts

Monica Sydney

The presentation of the talk "Solid Pods Vs Personal Knowledge Graphs: Similarities and Differences" that was given by the PhD researcher Eleni Ilkou, in the 2nd Solid Symposium. Abstract: Solid Pods and Personal Knowledge Graphs are pioneering constructs within the Semantic Web community, each offering unique avenues for empowering individuals in the digital realm. Solid Pods stand as decentralized bastions of data control which grant users unprecedented authority over their digital presence, ensuring ownership, privacy and portability of personal data. Personal Knowledge Graphs infuse personal data and activity with contextual relevance, facilitating the synthesis and discovery of knowledge. This presentation aims to briefly reflect on the main similarities and differences among the Solid Pods and Personal Knowledge Graphs.

2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs

EleniIlkou

20240510 QFM016 Irresponsible AI Reading List April 2024.pdf

Matthew Sinclair

哪里办理美国迈阿密大学毕业证(本硕)umiami在读证明存档可查【Q/微信741003700】原版仿制全套留学文凭材料（毕业证/成绩单（GPA成绩修改）/文凭学历证书/在读证明、毕业完成信、Offer录取通知书)；（真实可查）教育部学历认证、留信网认证、文凭认证、diploma、certificate、Degree、Transcript（实体公司，专业可靠）。 1:1完美还原海外各大学证书上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微741003700。留学生归国服务中心面向美国英国澳洲加拿大留学生提供以下服务: 一、办理毕业证成绩单（学校原版1：1高仿真制作）二、留信认证（留学回国人员学历认证，网上存档可查，查到后付款）三、教育部学历认证（中国教育部留服中心存档可查,查到后付款）办理流程 1、收集客户办理信息； 2、客户付定金下单、公司确认到账转制作点做电子版； 3、电子版做好发给客户确认、电子版确认好转成品部做成品； 4、成品做好拍照或者视频确认再付余款； 5、快递给客户（国内顺丰，国外DHL）。本公司诚聘美国、加拿大、英国、新西兰、澳洲、法国、德国、新加坡各地代理人员，如果你有业余时间有兴趣就请联系我们校园代理，报酬丰厚。真诚期待您的加盟。请联系本公司学历认证顾问(QQ：741003700 微信：741003700)欢迎咨询！最专业的学历顾问，最有经验的顶尖OP为广大留学生的归国之路保卫护航！

哪里办理美国迈阿密大学毕业证(本硕)umiami在读证明存档可查

ydyuyu

APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...

APNIC

Nagercoil Escorts Service Girl ^ 9332606886, WhatsApp Anytime Nagercoil

meghakumariji156

Trump Diapers Over Dems t shirts Sweatshirt

rahman018755

原件一模一样【微信：6496090 】【奥兹学院毕业证成绩单】【微信：6496090 】学位证，留信认证（真实可查，永久存档）原件一模一样/offer、雅思、外壳等材料/诚信可靠,可直接看成品样本，帮您解决无法毕业带来的各种难题！外壳，原版制作，诚信可靠，可直接看成品样本。行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备。十五年致力于帮助留学生解决难题，包您满意。本公司拥有海外各大学样板无数，能完美还原。 1:1完美还原海外各大学毕业材料上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微6496090 【主营项目】一.毕业证【q微6496090】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【q/微6496090】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才办理奥兹学院毕业证【微信：6496090 】外观非常简单，由纸质材料制成，上面印有校徽、校名、毕业生姓名、专业等信息。办理奥兹学院毕业证【微信：6496090 】格式相对统一，各专业都有相应的模板。通常包括以下部分：校徽：象征着学校的荣誉和传承。校名:学校英文全称授予学位：本部分将注明获得的具体学位名称。毕业生姓名：这是最重要的信息之一，标志着该证书是由特定人员获得的。颁发日期：这是毕业正式生效的时间，也代表着毕业生学业的结束。其他信息：根据不同的专业和学位，可能会有一些特定的信息或章节。办理奥兹学院毕业证【微信：6496090 】价值很高，需要妥善保管。一般来说，应放置在安全、干燥、防潮的地方，避免长时间暴露在阳光下。如需使用，最好使用复印件而不是原件，以免丢失。综上所述，办理奥兹学院毕业证【微信：6496090 】是证明身份和学历的高价值文件。外观简单庄重，格式统一，包括重要的个人信息和发布日期。对持有人来说，妥善保管是非常重要的。

一比一原版奥兹学院毕业证如何办理

Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charming call girls Booking Now open +91- 9332606886 Pune VIP Call Girls is highly qualified professionals. #S10 They will offer only top quality services and never try to scam or drain you of money; in fact, they strive to give complete satisfaction so that each cent spent was worth its worth. Furthermore, these professionals pride themselves in keeping customer details confidential; any information gleaned will never be shared with any third party.$V15 Two shots with one girl: ₹4500/in-call, ₹7500/out-call Body to body massage with : ₹5500/in-call Full night for one person: ₹7000/in-call, ₹12000/out-call •𝐂𝐨𝐥𝐥𝐞𝐠𝐞 𝐆𝐢𝐫𝐥𝐬 •𝐇𝐨𝐮𝐬𝐞𝐰𝐢𝐯𝐞𝐬 •𝐇𝐢𝐠𝐡 𝐏𝐫𝐨𝐟𝐢𝐥𝐞 𝐆𝐢𝐫𝐥𝐬 •𝐑𝐚𝐦𝐩 𝐌𝐨𝐝𝐞𝐥𝐬 •𝐅𝐨𝐫𝐞𝐢𝐠𝐧𝐞𝐫 𝐆𝐢𝐫𝐥𝐬 𝐎𝐮𝐫 𝐞𝐬𝐜𝐨𝐫𝐭 𝐬𝐞𝐫𝐯𝐢𝐜𝐞𝐬 •𝐇𝐉 (𝐇𝐚𝐧𝐝 𝐉𝐨𝐛) •𝐁𝐉 (𝐁𝐥𝐨𝐰𝐣𝐨𝐛) # Completion # (Oral To Completion) # Special Massage # O-Level (Oral ) # Oral With A Noncondom) # COB (Come On Body) # Extraball (Have Many Times) # All Meetings 100%Safe

Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...

kumargunjan9515

Real Men Wear Diapers T Shirts sweatshirt

rahman018755

Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls. A nutshell review for Hot Call girls in Abu Dhabi. My experience was superb with them this is the only recommended Call girls service in Abu Dhabi with verified Call girls. I am using their services from past 6 months they never ever disappointed me in any way. Let's just say if i asked them to provide me russian Call girls they fulfilled my request or even pakistani Call girls or indian Call girls in Abu Dhabi. They have their owen drivers who brings the Call girls in less time in any area of Abu Dhabi like as well. I'm writing here everything after experience their services in all conditions. So hopefully they will keeps working in the same way and makes more consumers like me. These guys are the best example of work with perfection. Pleased with Abu Dhabi Call girls and highly suggested to every one. Call girls whatsapp numbers in abu dhabi. Rent a girlfriend abu dhabi, stylish call girls abu dhabi any more than she had to. In a way, I guess I was the reason for her being like, Indian call girls abu dhabi, Indian call girl abu dhabi, indian call girls in abu dhabi, indian call girl agency abu dhabi, Pakistan call girls in abu dhabi, Pakistani call girl in abu dhabi, russian call girls in abu dhabi, russian call girl service in abu dhabi, indian call girls numbers abu dhabi, pakistani call girls number abu dhabi, teen call girls in abu dhabi, outcall call girls in abu dhabi Al Zahiyah Abu Dhabi Call Girls, Al Wahda Abu Dhabi Call Girls, Al Khalidiya Abu Dhabi Call Girls, Khalifa City Abu Dhabi Call Girls, Al Reem island Call Girls, Yas Island Call girls, Al lulu Island Call Girls, Nurai Island Call girls, Saadiyat Island Call Girls, Tourist Club Area Call Girls, Al Baraha Call Girls, Al Bateen Call Girls, Al Danah Call Girls, Al Dhafrah Call Girls, Al Falah City Call Girls, Al Ghadeer Call Girls she was, at least partially, and that made me feel even more responsible to help fix it. But I'd be lying if I didn't admit more sordid, and much more interesting, thoughts crept up right alongside that responsibility.

Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls

Monica Sydney

Call girls Service in Ajman 0505086370 Ajman call girls. Being an enthusiast of women I examined many call girls in the prior 3 months but never got that much pleasure from anyone. I'm facing challenges in my own relationship that is the reason I become close to such girls but when you cannot get peace even paying for women that thing hurts more. I chose This call girl agency and tried one of their Indian call girl she gave me real comfort and after one week of that service, I chose another Pakistani call girls and again then Russian. so overall my practice was magnificent. The price is also moderate per hour. The plus point is the girl comes instantly to your location doesn't matter you are in Ajman or al Nahda or Deira or any area she comes undeviatingly to your hotel room. Ajman call girls, call girls in Ajman, indian call girls in Ajman, pakistani call girls in Ajman, Ajman escorts, Ajman call girls number, indian call girls numbers, pakistani call girls numbers, paid sex in Ajman, girls for night in Ajman, night service in Ajman

Call girls Service in Ajman 0505086370 Ajman call girls

Monica Sydney

Best SEO Services Company in Dallas | Best SEO Agency Dallas

Digicorns Technologies

APNIC Updates presented by Paul Wilson at ARIN 53

APNIC

"Boost Your Digital Presence: Partner with a Leading SEO Agency"

growthgrids

Top profile Call Girls In Dindigul [ 7014168258 ] Call Me For Genuine Models We are available 24*7 Booking Contact Details :- WhatsApp Chat :- +91-7014168258 If you're looking for India Call girls you've come to the right place. You'll find some of the most beautiful call girls in our location with. These ladies have pleasing personalities, hot figures, and a passion for physical pleasure. Call girls in India Lucknow Many men have booked them for their erotic and soul-mixing performances, which are sure to leave you with unforgettable memories. #K09 Escort Service India is available in the city for men and women of all ages. They can satisfy your sexual needs and will make your experience even more enjoyable and memorable. Whether you're looking for a blow-job, stripping, lovemaking, or other dirty acts, you'll be able to find a match for your tastes and budget. These highly trained professionals will help you have an unforgettable night. One Shot — 5000/in call (time 1 hour), 6000/out call Two shot with one girl — 8000/in call (time 2 hour), 10000/out call Body to body massage with sex- 8000/in call (time 1 hour) Full night Service for one person– 12000/in call, 13000/out call (shot limit 3-4 shots) Full night Service for more than 1 person — please contact Us —7014168258 We are available 24*7 all days of the year. Call us — 7014168258 Thank you for Visiting.

Top profile Call Girls In Dindigul [ 7014168258 ] Call Me For Genuine Models ...

gajnagarg

原版制作美国爱荷华大学毕业证（iowa毕业证书）学位证网上存档可查【Q/微信741003700】原版仿制全套留学文凭材料（毕业证/成绩单（GPA成绩修改）/文凭学历证书/在读证明、毕业完成信、Offer录取通知书)；（真实可查）教育部学历认证、留信网认证、文凭认证、diploma、certificate、Degree、Transcript（实体公司，专业可靠）。 1:1完美还原海外各大学证书上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微741003700。留学生归国服务中心面向美国英国澳洲加拿大留学生提供以下服务: 一、办理毕业证成绩单（学校原版1：1高仿真制作）二、留信认证（留学回国人员学历认证，网上存档可查，查到后付款）三、教育部学历认证（中国教育部留服中心存档可查,查到后付款）办理流程 1、收集客户办理信息； 2、客户付定金下单、公司确认到账转制作点做电子版； 3、电子版做好发给客户确认、电子版确认好转成品部做成品； 4、成品做好拍照或者视频确认再付余款； 5、快递给客户（国内顺丰，国外DHL）。本公司诚聘美国、加拿大、英国、新西兰、澳洲、法国、德国、新加坡各地代理人员，如果你有业余时间有兴趣就请联系我们校园代理，报酬丰厚。真诚期待您的加盟。请联系本公司学历认证顾问(QQ：741003700 微信：741003700)欢迎咨询！最专业的学历顾问，最有经验的顶尖OP为广大留学生的归国之路保卫护航！

原版制作美国爱荷华大学毕业证（iowa毕业证书）学位证网上存档可查

ydyuyu

NALASOPARA CALL GIRL ❤ 07506202331 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL IN We are Providing :- ● – Private independent collage girls . ● – independent Models . ● – House Wife’s . ● – Private Independent House Wife’s ● – Corporate M.N.C Working Profiles . ● – Call Center Girls . ● – Live Band Girls . ●- Foreigners & Many More . Service type: 1.In call 2.out call 3. full Lip to Lip kiss 4.69 5.b-job without Condom 6. Hard Core sex & Much More. 7 Body to Body Touch 8 Kissing 9 Sucking Boobs and More 10 Enjoy by Hand 11 Relax By Oral 12 Sex with Happy Ending • In Call and Out Call Service • 3* 5* 7* Hotels Service • 24 Hours Available • Indian, Russian, Punjabi, Kashmiri Escorts • Real Models, College Girls, House Wife, Also Available • Short Time and Full Time Service Available • Hygienic Full AC Neat and Clean Rooms Avail. In Hotel 24 hours • Daily Escorts

Mira Road Housewife Call Girls 07506202331, Nalasopara Call Girls

Priya Reddy

在线制作约克大学毕业证（yu毕业证）在读证明认证可查【Q/微信741003700】原版仿制全套留学文凭材料（毕业证/成绩单（GPA成绩修改）/文凭学历证书/在读证明、毕业完成信、Offer录取通知书)；（真实可查）教育部学历认证、留信网认证、文凭认证、diploma、certificate、Degree、Transcript（实体公司，专业可靠）。 1:1完美还原海外各大学证书上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微741003700。留学生归国服务中心面向美国英国澳洲加拿大留学生提供以下服务: 一、办理毕业证成绩单（学校原版1：1高仿真制作）二、留信认证（留学回国人员学历认证，网上存档可查，查到后付款）三、教育部学历认证（中国教育部留服中心存档可查,查到后付款）办理流程 1、收集客户办理信息； 2、客户付定金下单、公司确认到账转制作点做电子版； 3、电子版做好发给客户确认、电子版确认好转成品部做成品； 4、成品做好拍照或者视频确认再付余款； 5、快递给客户（国内顺丰，国外DHL）。本公司诚聘美国、加拿大、英国、新西兰、澳洲、法国、德国、新加坡各地代理人员，如果你有业余时间有兴趣就请联系我们校园代理，报酬丰厚。真诚期待您的加盟。请联系本公司学历认证顾问(QQ：741003700 微信：741003700)欢迎咨询！最专业的学历顾问，最有经验的顶尖OP为广大留学生的归国之路保卫护航！

在线制作约克大学毕业证（yu毕业证）在读证明认证可查

ydyuyu

Authentication and Authorization Architecture in the MEAN Stack

1. 5 Authentication Authorization Architecture in Browser Applications Yuri Takhteyev, rangle.io http://yto.io @qaramazov +

2. Authenticate, Authorize

3. Protecting clients from: outsiders each other themselves

4. Display and capture Authentication Business logic Storage Interaction logic Interaction logic AuthorizationServer Client

5. Display and capture Authentication Business logic Storage Interaction logic Authorization Business logic Authentication Authorization Authorization

6. Display and capture Business logic Storage Interaction logic Authorization Business logic Authentication Authorization Authorization :-( Authorization :-)

7. Who am I? Cookies vs tokens Maintaining the state

8. Passport Local Social / OAuth

9. Many Faces of Authorization By role or activity By resource instance Altogether custom

10. Bottlenecks

11.

12. Setting Up an API Route var mapper = koast.makeMongoMapper(connection); routes = [ ['get', 'robots', user.any, mapper.get('robots', []) ], ['put', 'robots/:robotNumber', user.any, mapper.put('robots', ['robotNumber']) ] ];

13. Restricting Access by Object mapper.queryDecorator = function(query, req, res) { query.owner = req.user.username; }; mapper.queryDecorator = function(query, req, res) { query.clientId = req.user.clientId; };

14. Post-Query Filtering mapper.filter = function(result, req) { if (req.method === 'GET' { return canSee(data, req); } else { return canEdit(data, req); } };

15. Informing the Client mapper.clientAuthorizer = function(result, req, res) { result.meta.can.edit = canEdit(result.data, req); };

16. The Client Side angular.module('sampleKoastClientApp', ['koast']) .controller('myCtrl', ['$scope', 'koast', '$log', function($scope, koast, $log) { $scope.login = function(provider) { koast.user.initiateOauthAuthentication( provider); }; ...

17. The Client Side ... koast.user.getStatusPromise() .then(function() { if (koast.user.isAuthenticated) { return koast.getResource('robots') .then(function(robots) { $scope.robots = robots; }); } }) .then(null, $log.error); }]);

18. The Template <span ng-if="robot.can.edit"> <button>...</button> </span>

19. Thank You. Contact: yuri@rangle.io http://yto.io @qaramazov This presentation: http://yto.io/auth Koast: http://yto.io/koast

20. Image Credits by yewenyi by striatic by bible-history by dunechaser by nikhilverma Distributed under Creative Commons Attribution Share-Alike License, v. 2.0 by psd

Authentication and Authorization Architecture in the MEAN Stack

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Semelhante a Authentication and Authorization Architecture in the MEAN Stack

Semelhante a Authentication and Authorization Architecture in the MEAN Stack (20)

Mais de FITC

Mais de FITC (20)

Último

Último (20)

Authentication and Authorization Architecture in the MEAN Stack