Microsoft.Extensions.AI–Part II - ASP.NET Core Integration
Last week I finally started my journey with Microsoft.Extensions.AI after having used only Semantic Kernel for all my agentic AI workflows...| bartwullems.blogspot.com
Today, when building web applications, security has to be a top priority. An easy mistake to make is forgetting to add the [Authorize] attribute to controllers or actions inside your ASP.NET Core backend. This creates a security vulnerability where sensitive pages become accessible to unauthenticated users.| The art of simplicity
In our previous posts, we covered content type validation and file size validation as the first two layers of defense in our file upload security pipeline. Today, we're diving into what I consider the most critical validation step: file signature validation, also known as "magic number" validation. This is where we stop trusting what files claim to be and start verifying what they actually are.| The art of simplicity
In the first post of this series, we explored how content type validation serves as the first line of defense against malicious file uploads. Today, we're tackling another critical security concern: file size validation and why it's essential for protecting your application from resource exhaustion attacks.| The art of simplicity
As I gladly accept any kind of performance improvement I can get in my applications, I like to use the System.Text.Json source generator to ...| bartwullems.blogspot.com
Last week I finally started my journey with Microsoft.Extensions.AI after having used only Semantic Kernel for all my agentic AI workflows...| bartwullems.blogspot.com
I thought it’d be worth posting an example of a bigger task I did the other day - just to show what can be done, without crazy vibe-coding, on a non-greenfields app, using ASP.Net Core not some simplistic front-end tooling. This was originally part of a longer post but I thought it was worth splitting - this example is used in my post Clowns to the left of me … The task - Sending a message when data changes We have an ASP.Net core application which includes a relationship between Business...| Korny’s Blog
With the release of .NET 9 , Microsoft has removed Swashbuckle from the default Web API templates. If you have never heard about Swashbuckl...| bartwullems.blogspot.com
Who doesn’t like a nice bit of ‘ASCII Art’? I know I certainly do!| Performance is a Feature!
Give your ASP.NET 4.x apps a refresh with the latest OWIN updates and Proof Key for Code Exchange| Scott Brady
Getting started with mkcert for IIS TLS certificates and ASP.NET Core client certificate authentication| Scott Brady
The software and web development industry is experiencing new twists and turns every year with the introduction of new trends, languages, frameworks, etc. With the advancement in technology, developers have an ample range of versatile languages to choose from for developing platforms with advanced functionality. This is where Node.js and ASP.NET come into the picture […] The post Node.js Vs ASP.NET – Battle of Two Server-Side Languages appeared first on Simple Programmer.| Simple Programmer
…and why you should report it (maybe).| markitzeroday.com
Automated tests are pretty awesome to be honest! They make life a lot simpler in many ways. And even if a lot of people are talking about how we need to do unit testing, I find integration testing much more valuable to be honest.| Fear of Oblivion
Testing a website is usually considered just another day at work, Burp Suite is usually the tool of our choice for automating some of the scans that apply in this field. Assessing the authenticated part of the site is also common, and since Burp can be used as an HTTP proxy, it can capture our session tokens (usually HTTP cookies) and perform scans just like we’d do as humans. This token is usually remain unchanged over the time of the session, and the session itself is kept alive by the sc...| Silent Signal Techblog
Rate limiting is a way to control the amount of traffic that a web application or API receives, by limiting the number of requests that can be made in a given period of time.This can help to improve the performance of the site or application, and to prevent it from becoming unresponsive.| Maarten Balliauw {blog}
