Friend: “is your office close to your local?” Me: “close to… my local?” Friend: “no, the place’s name is ‘your local’!” Me: “ohh!” I searched for the place Your Local and found our that it’s a restaurant in Esteban St. in Makati’s Legazpi Village. They had interesting dishes like laksa fettuccine, torched salmon donburi, and […]
Web Security: How SQL Injection is done
SQL injection is one of the most common website exploits. For us developers to prevent SQL injection attacks, we must first understand how it’s done. Together, let’s review the basics of SQL injection. Remember, let’s use our knowledge on good things only, okay? The scope of this post is only a MySQL injection sample from […]
Prevent direct access to directories of subdomains
From my hosting platform (e.g. cPanel), I created two subdomains for web apps. The web apps reside in the following directories: /foo/bar/app_one/ /foo/bar/app_two/ And the subdomains I created are accessed through these URLs: http://app_one.bar.domain.com (pointing to /foo/bar/app_one/ directory) http://app_two.bar.domain.com (pointing to /foo/bar/app_two/ directory) For security purpose, I don’t want anyone to access the web app […]
How to open BPI savings account without maintaining balance (requirements & steps)
I wanted to open a joint account with someone, and our choice is a BPI savings account with ATM card. We failed to make it a BPI “joint” savings account (I’ll tell you why later), but I successfully opened a BPI savings account without maintaining balance. Want a BPI savings account without maintaining balance? I’ll […]
Learning MongoDB on Windows 7 (Shell Edition)
I’ve worked on a high-volume site that processed thousands of telecom network subscribers everyday. Me and the rest of the team managed to handle the challenges using MySQl and query optimizations, but now, I wonder how easier the tasks would have been if we had used NoSQL / MongoDB back then. My environment and methods: […]
Mob Psycho 100 anime episode 2 review (SPOILER ALERT)
I watched the second episode of Mob Psycho 100 last night and though I said in my episode 1 reaction that I found the manga chapters 1 and 2 were funnier than anime’s episode 1, I liked the anime’s episode 2 better than manga chapters 3 and 4. Mob Psycho 100 episode 2 featured funny scenes that were […]
Laravel 5: create route group that is only available during testing (Middleware)
Today I needed to protect a group of routes from everything except my testing environment. I need to run PHPUnit tests that depend on certain routes, but I don’t want those routes to be available anywhere else. I’ll share in this blog post what I did to get what I need. Assumptions in this tutorial: […]
Laravel 5: activate API token guard and print “Unauthorized” instead of login redirect
In Laravel 5, I wrap my API routes in a route group like this:
|
1 2 3 |
Route::group(['middleware' => ['auth:api','throttle']], function() { // API routes here }); |
Notice that I use auth:api and throttle on my middleware array. auth:api turns on the auth middleware with API token as guard, while throttle activates rate limiter for APIs. To get started with API token authentication, you may read https://gistlog.co/JacobBennett/090369fbab0b31130b51. […]
Android app dev: ShareActionProvider in Activity & Fragment
I’ve been taking the Developing Android Apps course on Udacity, and yesterday I encountered a difficulty in solving the Quiz: Share Intent. One of the course’s goal is to build the Sunshine App – an Android app with weather forecast. In that quiz I had to implement ShareActionProvider on my DetailsFragment so that a share […]
Mob Psycho 100 anime episode 1 review (SPOILER ALERT)
My office friends are watching Mob Psycho 100, an anime series that just started airing last week. It’s from the same creator of One-Punch Man, who is called One. I read chapter 1 of the Mob Psycho 100 manga after watching episode 1 of the anime, and honestly, the manga made me laugh more than […]