Using AOP

Posted in AOP, Best Practices, Encapsulation, Security by RhysC

I have been dodging AOP for a while now for the main reason that is “Looks to hard”, especially when you have to explain it to PM’s and other dev’s who are still trying to get to grips with basic IoC and ORM concepts, after all projects are not solo efforts.
However I have now found a nice looking framework that may help.
PostSharp is an Attribute driven lightweight AOP framework that modifies the IL as a Post build event in the .Net framework.
This article here has got me very excited about implementing standardised Logging, Security, Exception Handling and maybe even Design by Contract.

Once i get my home development PC back from the dead I will post more about how easy it is (or isnt) and how it affect the project at runtime.
Should be interesting.

10Apr2007

Scotts Gu’s reply to AJAX secuity breaches

Posted in AJAX, Security by RhysC

Scotts Gu’s reply to AJAX secuity breaches can be seen here

4Apr2007

AJAX Security flaws

Posted in AJAX, Security by RhysC

Interesting article on AJAX Security flaws, sighted by Joe On .NET, but some reason its no longer showing on his site(?)
http://www.eweek.com/article2/0,1895,2110554,00.asp

“…. called JavaScript Hijacking—can be found in the biggest AJAX frameworks out there, including three server-integrated toolkits: Microsoft ASP.Net AJAX (aka Atlas), Google Web Toolkit and xajax—the last of which is an open-source PHP-class library implementation of AJAX….”

One line synopsis:
Basically don’t use in built AJAX when sensitive data is being passed, but it is fine on public sites.

Rhys Campbell

Category Archives: Security

Using AOP

Scotts Gu’s reply to AJAX secuity breaches

AJAX Security flaws