What do you think about the OWASP web application security top ten as a developer?

I like the OWASP Top Ten for “developers” charts. From my point of view, it gives an awesome advice, where to start or helps to take care and remember what you maybe already know about web security implementation. From my side it feels a bit like “rub salt into the wound” of a developer soul, isn’t it so? Especially when you starting developing cloud native and microservices based applications.

Continue reading

Get started with IBM Cloud – a student perspective

In this new blog post I want to address a common situation I see students facing: there are several cloud providers and you want to check out the different platforms. The reason is you want to be prepared; for example working with cloud resources related to courses at your university or for a hackathon. One of these cloud providers is IBM Cloud and this blog post is about how to get started with IBM Cloud. This is a tailored version of my blog post: How to prepare for a Hackathon with IBM Cloud for you as a student.

IBM Cloud provides a wide range and huge amount of different services, runtimes, and more. It covers both virtual and hardware –based servers on one demand cloud-platform, which means you have complete infrastructure control. One of the great things about IBM Cloud is that you can register for an account and try before you buy without needing a credit card.

From my point of view, one of the most important objectives for student is to have a running application instance live.

To do this you need a runtime 😉

Continue reading

Getting started with continuous integration and delivery (CI/CD) using Tekton and an Open Toolchain on IBM Cloud (Part 3/3)

This blog post is about the last 14 min video for my YouTube playlist related to the hands-on tutorial “Develop a Kubernetes app by using Tekton delivery pipelines“. In this video we do the final setup of the toolchain and then we execute a Tekton pipeline. For more background please visit my first blog post “Getting started with continuous integration and delivery (CI/CD) using Tekton and an Open Toolchain on IBM Cloud (Part 1/3)“.

Note: The video was live recorded and it would take 30 min for the entire session, but I did reduce the time of the video to only 14 min ;-).

But now the video could be sometimes a little bit (too) fast.

Continue reading

Getting started with continuous integration and delivery (CI/CD) using Tekton and an Open Toolchain on IBM Cloud (Part 2/3)

This blog post is about my newly created 9 min YouTube video about the setup of the prerequisites for the hands-on tutorial “Develop a Kubernetes app by using Tekton delivery pipelines“. That video is a part of the video series for the tutorial. For more details please visit my last blog post “Getting started with continuous integration and delivery (CI/CD) using Tekton and an Open Toolchain on IBM Cloud (Part 1/3)

Continue reading

Getting started with continuous integration and delivery (CI/CD) using Tekton and an Open Toolchain on IBM Cloud (Part 1/3)

In this blog post I want to highlight that I created a 10 min detailed overview YouTube video, which is the first video of a video series related to the hands-on tutorial “Develop a Kubernetes app by using Tekton delivery pipelines“. In that tutorial video series, we setup an easy consumable Tekton pipeline in a toolchain using developer tools for think, code and deploy in context of continuous delivery. We deploy a containerized web application to a free Kubernetes Cluster on IBM Cloud.

Continue reading

Authentication and Authorization for Java Microservices with Keycloak, Quarkus and Microprofile

In this blog post I want to point out that I created a 18 min YouTube video related to the newly created workshop Get started with security for your Java Microservices made by Harald, Niklas and me .

I focus in that video on the topics authentication and authorization for Java Microservices with Keycloak, Quarkus and Microprofile. Have fun 😉


I hope this was useful for you and let’s see what’s next?

Greetings,

Thomas

#Authorization, #Authentication, #Java, #Microprofile, #Quarkus, #Keycloak

IBM Cloud Container Registry is Deprecating Container Builds

In this blog post I want to point out that I noticed that the IBM Cloud Container Registry is deprecating container builds.

If you don’t know the IBM Cloud Container Registry here are some useful features:

  • Threat insights – It provides advanced capabilities like vulnerability scanning, deployment policy enforcement, and comprehensive risk assessment and prioritization”
  • Integration – It ‘s the IBM Cloud preferred image registry; pre-integrated with the IBM Cloud Kubernetes Service for the DevOps workflow using IBM Open Toolchain or existing a CI/CD toolset.”
  • Security – It’s integrated with Identity and Access Manager and Resource Groups to provide fine-grained access controls to users within the IBM Cloud account.”
Continue reading

Get your Java microservice up and running

In this blog post I want to highlight the news, that our tutorial Get your Java Microservice up and running is now available on IBM Developer.

After you complete this workshop, you will:

  • Understand the Java implementation of a cloud-native RESTful Java microservice built on the open technologies Eclipse MicroProfile and Open Liberty
  • Be able to describe how to effectively build and run a microservice on a local machine in a container
  • Understands the steps needed to deploy a single microservice to Kubernetes and on the IBM Cloud Kubernetes service

I hope this was useful for you and let’s see what’s next?

Greetings,

Thomas

#Java, #Microprofile, #Kubernetes, #Docker, #IBMCloud

How to handle basic dynamic interaction on a webpage with Vue.js

In this blog post I want to share how to handle basic dynamic content with Vue.js on our Cloud Native Starter landing webpage. Vue.js is an open source licensed progressive framework for building user interfaces”.

The gif below shows following sequence:

  1. First, the page content changes when a button is clicked. The page shows a little pre-view of content for one of the selected topics on the Cloud Native Starter project landing page. The topics are “Basic Concepts”, “Reactive” and “Security”.
  2. Second, the image on the right hand side changes, a headline appears or changes, a description appears or changes, and a Learn more button appears and changes the content for routing to another webpage.
  3. Third, at the end in the gif the button Learn more is pressed and the page for Basic Concepts is shown.

The questions are: How ..

  • … to change images?
  • … can a text be changed or appear?
  • … to show a button and change the rooting to other webpages?
Continue reading