Trusting Inputs, Via RESTa Via Nanciacum

João P. Bragança
All too often, security is treated as an afterthought in our models. I’m as guilty of this as anyone. :) Now that HTTP is becoming the most popular protocol inside the enterprise, sending bad data across the wire becomes much easier. A hidden input field is not all that hidden. Let’s take everyone’s second favorite fake business problem: Enrolling Students in Classes. Let’s take it further and say we want to develop this as a SaaS product.

Organizing Per Feature in Nancy

João P. Bragança
We’ve all built applications that look like this: There’s a bit of a problem here. What does Exception Reporting have to do with Validation? Or the Home Page? Mostly nothing, other than these classes perform the same kind of function. much, much nicer to have views, view models, validators, command/query handlers all adjacent together — Jimmy Bogard (@jbogard) October 2, 2013 Wouldn’t it be easier to organize everything by feature instead?

Getting RavenDB Profiling Working on Nancy

João P. Bragança
This is my second attempt. :) About a year ago I made an attempt to wire Nancy together with RavenDB and failed miserably. Needed a break from businessy coding last night so I decided to work on something fun instead. The ability to see what’s going on in your application is so important when it comes to performance tuning. Yes, there’s that old adage about premature optimization. IMO this phrase is taken out of context.

Automatic Exception Reporting with YouTrack and Nancy pt. 2: Bouncing Off the Green Monster

João P. Bragança
In Part 1 of this series we looked at putting NancyFX as a simple http wrapper in front of YouTrack. Now we’re going to make it more RESTful - i.e. we will display the error page to the user agent and include the exception report form on that page. We will do this by leveraging Nancy’s status code handling features. This will allow us to intercept any status code we want and modify the response.

Automatic Exception Reporting with YouTrack and Nancy pt. 1: The Skeleton

João P. Bragança
Getting the business users to try and recreate a bug is difficult to say the least. They may not remember what it is they did to reproduce. But you can bet that if you don’t fix it by yesterday you’re gonna get an earful. In fact we just did. This is me doing something about it :) Turns out this is annoyingly easy with Nancy and the YouTrackSharp library, so easy that I’m not going to bother test driving this.

Empty Project - Nancy vs MVC4

João P. Bragança
I just installed the Nancy Templates for Visual Studio for Visual Studio. Before this, creating a project for Nancy has always been a bit of a pain - adding a mvc project and then removing a whole bunch of crap you don’t need. Way too much fiddlery required. What really got me was the minimalistic set of dependencies: Nine is a good number. Compare that to an empty MVC4 project:Seventeen is very inauspicious.