recentpopularlog in

rtopitt : boa_prática   75

octokit/octokit.rb: Ruby toolkit for the GitHub API
Ruby client to the GitHub REST API

Good example and reference of best practice implementation of this kind of API client
api  gem  github  ruby  reference  boa_prática  rest  exemplo  inspiração  http 
july 2019 by rtopitt
Don't Do This - PostgreSQL wiki
A short list of common mistakes on PostgreSQL usage.
postgresql  boa_prática  wiki  dica  how-to  sql  database  reference 
may 2019 by rtopitt
Michael Tsai - Blog - User Account Best Practices
Let’s say, hypothetically, that I wanted to create a “user account” feature for an app.

Where should I go to read up on best practices for safely storing the user’s password on the backend?
programming  security  hash  senha  boa_prática  reference  dica 
march 2019 by rtopitt
Cipherli.st - Strong Ciphers for Apache, nginx and Lighttpd
The above ciphers are Copy Pastable in your nginx, Lighttpd or Apache config. These provide Strong SSL Security for all modern browsers, plus you get an A+ on the SSL Labs Test. In short, they set a strong Forward Secrecy enabled ciphersuite, they disable SSLv2 and SSLv3, add HTTP Strict Transport Security and X-Frame-Deny headers and enable OCSP Stapling (except on Lighttpd, it does not support that yet).
apache  nginx  ssl  sysadmin  security  ciphers  how-to  dica  boa_prática  configuration  webserver 
february 2017 by rtopitt
Everything you need to know about HTTP security headers - Appcanary
This article explains what secure headers are and how to implement these headers in Rails, Django, Express.js, Go, Nginx, and Apache.
http  tutorial  security  framework  tip  boa_prática  header 
january 2017 by rtopitt
nayafia/lemonade-stand: A handy guide to making $$ in open source
"I do open source work, how do I get paid for it?"

Below I've listed every way I know of that people get paid for open source work, roughly ordered from small to large. Each funding category links to several real examples. (Wherever possible, I've tried to link to a useful article or page instead of just a homepage.)

The categories are not mutually exclusive. For example, a project might have a foundation but also use crowdfunding to raise money. Someone else might do consulting and also have a donation button. Etc. The purpose of this guide is to provide an exhaustive list of all the ways you can get paid, so that you can figure out what works best for you.
software_livre  dica  reference  boa_prática  financiamento  how-to  ferramenta  idéia  inspiração 
june 2016 by rtopitt
How to write a great error message — Medium
The 3 most important things when writing error messages

Don’t abuse alerts for upselling or showing superfluous information. People will stop reading the messages that are actually important.

Don’t just assume people know about the context of a message. They might toggle between apps and see your message days after it happened. Always include enough information for users to make sense of it.

Use a friendly, non-technical, non-threatening tone of voice.

TL;DR Write actionable error messages that laypeople can understand.*

*Not sure if they do? Show them to a non-technical person and ask them to explain it back to you.
how-to  dica  erro  copyright  webapp  app  desenvolvimento  reference  boa_prática  bad_practice 
june 2016 by rtopitt
Contributor Covenant: A Code of Conduct for Open Source Projects
An easy way to begin addressing this problem is to be overt in our openness, welcoming all people to contribute, and pledging in return to value them as human beings and to foster an atmosphere of kindness, cooperation, and understanding.

The Contributor Covenant can be one way to express these values. Pledge your respect and appreciation for contributors and participants in your open source project by adding an explicit CODE_OF_CONDUCT.md to your project repository.
software_livre  conduta  compromisso  código  comunidade  boa_prática  reference  licença 
december 2015 by rtopitt
thoughtbot playbook
"Livro" com os princípios, práticas e guias de trabalho da Thoughbot, muito interessante.
startup  development  inspiração  reference  e-book  faq  guia  empresa  organização  boa_prática  exemplo 
april 2015 by rtopitt
thoughtbot/guides
Guides for getting things done, programming well, and programming in style.
github  ruby  reference  programming  guia  how-to  estilo  linguagem  git  ios  rails  boa_prática 
april 2015 by rtopitt
Enough With the Salts: Updates on Secure Password Schemes - Blog - Matasano Security
When it comes to password storage, you’re much better off using a well tested and reviewed system than writing your own. You’ll want that to be something purpose built, rather than relying on fast cryptographic hashes which are especially susceptible to fast guessing and hardware optimization. This means you’ll want to use scrypt, bcrypt, or PBKDF2 (in my order of preference) with an appropriate work factor. If you’re stuck deciding between scrypt and bcrypt, you can pretty much flip a coin and end up with something reasonable.
hash  security  senha  criptografia  server  database  boa_prática  reference  importante  algorithm 
april 2015 by rtopitt
Ruby in Production: Lessons Learned — Medium
Having deployed a variety of Ruby apps (Rails and non-Rails) over the course of many years, here are some lessons I’ve learned to keep things afloat. Tools like Mina and Capistrano already do most of these (more on that further down), but its good to have a first-hand understanding of what needs to happen.
rails  ruby  devops  sysadmin  server  boa_prática  tip  top10  deploy  reference  linux  unix  produção 
march 2015 by rtopitt
REST lessons learned
This post provides an overview of some lessons I learned while bulding non-trivial REST APIs.
api  rest  webservice  dica  top10  boa_prática 
march 2015 by rtopitt
10 Things to Stop Saying to Your Kids (and What to Say Instead)
Current research shows that some of the most commonly used and seemingly positive phrases we use with kids are actually quite destructive. Despite our good intentions, these statements teach children to stop trusting their internal guidance system, to become deceptive, to do as little as possible, and to give up when things get hard.

Here’s a list of the top ten things to eliminate from your vocabulary now. I’ve also included alternatives so that you can replace these habitual statements with phrases that will actually encourage intrinsic motivation and emotional connection.
top10  parenting  criança  dica  boa_prática  lifehack 
march 2015 by rtopitt
The God Login
How would God build this login dialog? The answer is, of course, God wouldn't bother to build a login dialog at all. Every user would already be logged into GodApp the second they loaded the page because God knows who they are. Authoritatively, even.

This is obviously impossible for us, because God isn't one of our investors.

But.. how close can we get to the perfect godlike login experience in Discourse? That's a noble and worthy goal.
design  ux  login  form  webdesign  fluxo  interface  tip  top10  boa_prática  padrão  inspiração  reference 
january 2015 by rtopitt
bbatsov/rails-style-guide
The goal of this guide is to present a set of best practices and style prescriptions for Ruby on Rails 4 development. It's a complementary guide to the already existing community-driven Ruby coding style guide.
rails  ruby  style  guide  programming  boa_prática  modelo  inspiração 
october 2014 by rtopitt
Observer Pattern in RUBY — Medium
In this quick article we’re going to go over the Observer Pattern. The observer pattern is used when you are building a system where the state of one object effects the state of other objects.
design_patterns  boa_prática  ruby  programming  how-to  reference  oop  ood 
october 2014 by rtopitt
Home Page - Television Tropes & Idioms
This wiki is a catalog of the tricks of the trade for writing fiction. Tropes are devices and conventions that a writer can reasonably rely on as being present in the audience members' minds and expectations. On the whole, tropes are not clichés. The word clichéd means "stereotyped and trite." In other words, dull and uninteresting. We are not looking for dull and uninteresting entries. We are here to recognize tropes and play with them, not to make fun of them.
tv  cinema  wiki  reference  script  história  boa_prática  clichê 
july 2014 by rtopitt
Guarding with arrays
This week I applied a pattern I've been using for years to two separate pull requests from our devs. In both cases I was able to help them refactor their code to use an enumerator as code guards instead of conditional statements.
ruby  boa_prática  array  refactoring  tip  programming 
may 2014 by rtopitt
Document Explicit Dependencies Through Tests
Being conscious about what must be required for a particular source file is a good thing. Instead of loading everything but the kitchen sink through the spec_helper, let’s specify the minimum dependencies inside of the test.
rspec  rails  ruby  teste  dependência  performance  boa_prática  tdd 
may 2014 by rtopitt
Falsehoods programmers believe about geography | Thias の blog
Here are some falsehoods about geography I found in software, the list is, by far, not exhaustive.
boa_prática  erro  top10  modelagem  mito  geografica  mapa  georeferenciamento  reference  tip  programming 
may 2014 by rtopitt
Falsehoods programmers believe about time: @noahsussman: Infinite Undo
I have repeatedly been confounded to discover just how many mistakes in both test and application code stem from misunderstandings or misconceptions about time. By this I mean both the interesting way in which computers handle time, and the fundamental gotchas inherent in how we humans have constructed our calendar — daylight savings being just the tip of the iceberg.

In fact I have seen so many of these misconceptions crop up in other people’s (and my own) programs that I thought it would be worthwhile to collect a list of the more common problems here.
boa_prática  erro  top10  modelagem  mito  tempo  data  hora  reference  tip  programming 
may 2014 by rtopitt
Falsehoods programmers believe about addresses
Addressing is a fertile ground for incorrect assumptions, because everyone's used to dealing with addresses and 99% of the time they seem so simple. Below are some incorrect assumptions I've seen made, or made myself.
boa_prática  erro  top10  modelagem  mito  endereço  reference  tip  programming 
may 2014 by rtopitt
JavaScript’s this: how it works, where it can trip you up
In JavaScript, the special variable this is relatively complicated, because it is available everywhere, not just in object-oriented settings. This blog post explains how this works and where it can cause problems, concluding with best practices.
javascript  boa_prática  dúvida  this  reference  tip  programming 
may 2014 by rtopitt
Ingresso.com Como Nao Lidar Com Seguranca Da Info · Marco Agner
Neste post, mostro falhas de segurança críticas no site do serviço Ingresso.com e espero trazer benefícios e mais conhecimento às pessoas de outras áreas fora de engenharia/ciência da computação, especialmente, aos clientes da empresa citada. E, espero que a empresa resolva os problemas citados de uma vez por todas de forma transparente para o bem de todos envolvidos.
falha  senha  brasil  bizarrice  geek  criptografia  boa_prática  ingresso  security 
may 2014 by rtopitt
GoodUI
A Good User Interface has high conversion rates and is easy to use. In other words, it's nice to both the business side as well as the people using it. Here is a running idea list, which
we try on projects.
design  webdesign  ui  ux  interface  conversão  saas  boa_prática  reference  tip 
february 2014 by rtopitt
Sitespeed.io - Analyze your website speed and performance
Sitespeed.io is an open source tool that helps you analyze your website speed and performance based on performance best practices and metrics. It collects data from multiple pages on your website, analyze the pages using the rules and output the result as HTML or JUnit XML.

You can analyze one site, analyze & compare multiple sites or let it run in your CI tool to make sure that your site is always built the best way for speed.
ci  frontend  performance  webapp  software_livre  ferramenta  html  boa_prática  velocidade  teste  verificação  analysis 
january 2014 by rtopitt
How to Win an Argument With a Nutritionist
Many dietitians are NOT basing their nutrition advice on the latest science.

The general guidelines are completely outdated. They have barely changed in the past few decades, even though nutrition science has advanced greatly.

By far the best way to win an argument about nutrition is to have a link to a good scientific study. Nutrition is science, after all, although it often tends to resemble religion or politics.

If you ever find yourself in an argument with an outdated nutrition professional, vegan or low-fat zealot, then feel free to use the answers and studies listed below.
nutrição  top10  dieta  alimentação  emagrecimento  boa_prática  mito  fato  reference  science 
january 2014 by rtopitt
Como escolher o melhor canal WiFi para reduzir interferências e aumentar o desempenho da conexão - BR-Mac.org
Um utilitário que vem instalado no seu sistema analisa o tráfego e faz uma lista dos melhores canais para você configurar no roteador sem fio e usar o WiFi com menos interferências e mais desempenho.
apple  mac  wi-fi  canal  boa_prática  melhor  conexão  qualidade  interferência  network  tip 
january 2014 by rtopitt
Best Practices for Designing a Pragmatic RESTful API | Vinay Sahni
Now, the internet has no shortage on opinions on API design. But, since there's no one widely adopted standard that works in all cases, you're left with a bunch of choices: What formats should you accept? How should you authenticate? Should your API be versioned?

In designing an API for SupportFu (Customer support software for SaaS & eCommerce), I've tried to come up with pragmatic answers to these questions. My goal is for the SupportFu API to be easy to use, easy to adopt and flexible enough to dogfood for our own user interfaces.
api  design  rest  how-to  padrão  boa_prática  inspiração  importante  trabalho  hateoas  restful  reference  tip  webservice 
december 2013 by rtopitt
Shell Scripting - Best Practices | Java Code Geeks
Most programming languages have a set of “best practices” that should be followed when writing code in that language. However, I have not been able to find a comprehensive one for shell scripting so have decided to write my own based on my experience writing shell scripts over the years.
shell  bash  boa_prática  top10  script  reference  compilation  tip  programming 
november 2013 by rtopitt
Thinkful | Javascript Best Practices Part 1
This guide, the first in a two part series, was adapted from a popular slideshow by Christian Heilmann, a Web Evangelist at Mozilla. Though JavaScript has a few notoriously tricky features, it's more important than ever in software development. This list of best practices uses code samples and side-by-side examples to help you write more readable, efficient code.
javascript  boa_prática  exemplo  código-fonte  tip  programming 
august 2013 by rtopitt
tbaggery - A Note About Git Commit Messages
I want to take a moment to elaborate on what makes a well formed commit message. I think the best practices for commit message formatting is one of the little details that makes Git great. Understandably, some of the first commits to rails.git have messages of the really-long-line variety, and I want to expand on why this is a poor practice.

Here’s a model Git commit message:
commit  git  workflow  boa_prática  modelo  exemplo  controle_de_versão  tip 
august 2013 by rtopitt
Semantic Versioning 2.0.0
Given a version number MAJOR.MINOR.PATCH, increment the:

MAJOR version when you make incompatible API changes,
MINOR version when you add functionality in a backwards-compatible manner, and
PATCH version when you make backwards-compatible bug fixes.

Additional labels for pre-release and build metadata are available as extensions to the MAJOR.MINOR.PATCH format.
software  guia  boa_prática  release  versionamento  biblioteca  gem  reference  version 
july 2013 by rtopitt
Superhero.js
Creating, testing and maintaining a large JavaScript code base is not easy — especially since great resources on how to do this are hard to find. This page is a collection of the best articles, videos and presentations we've found on the topic.
javascript  boa_prática  lista  top10  web  webdesign  teste  compilation  tip 
june 2013 by rtopitt
Rails SQL Injection Examples
This page lists many query methods and options in ActiveRecord which do not sanitize raw SQL arguments and are not intended to be called with unsafe user input. Careless use of these methods can open up code to SQL Injection exploits. The examples here do not include SQL injection from known CVEs and are not vulnerabilites themselves, only potential misuses of the methods.

Please use this list as a guide of what not to do.
rails  ruby  sql  injection  bug  hack  active_record  how-to  boa_prática  security  compilation  database 
june 2013 by rtopitt
Better Specs { rspec guidelines with ruby }
RSpec is a great tool in the behavior-driven development (BDD) process of writing human readable specifications that direct and validate the development of your application.

On the web there are many resources that give complete overview of _what_ you can do with RSpec. But there are fewer resources devoted to how to create a great RSpec test suite.

Better Specs tries to fill this gap by collecting most of the "best practices" that other developers learn through years of experience.
rspec  rails  ruby  teste  tdd  bdd  guia  boa_prática  estilo  reference  tip 
april 2013 by rtopitt
Troy Hunt: Lessons in website security anti-patterns by Tesco
Site do Tesco no UK comete todos os erros possíveis relacionados à segurança na web de uma só vez.
boa_prática  mau_exemplo  review  web  reino_unido  bizarrice  criptografia  senha  geek  reference  security 
august 2012 by rtopitt
Common Security Mistakes in Web Applications - Smashing Magazine
Web application developers today need to be skilled in a multitude of disciplines. It’s necessary to build an application that is user friendly, highly performant, accessible and secure, all while executing partially in an untrusted environment that you, the developer, have no control over. I speak, of course, about the User Agent. Most commonly seen in the form of a web browser, but in reality, one never really knows what’s on the other end of the HTTP connection.
webapp  boa_prática  top10  http  xss  csrf  geek  importante  formulário  html  cookie  security 
october 2010 by rtopitt
DarkPatterns.org
This pattern library is dedicated to Dark Patterns: user interfaces that have been designed to trick users into doing things they wouldn’t otherwise have done.
boa_prática  má_prática  webdesign  interface  sacanagem  security 
september 2010 by rtopitt
10 Usability Tips Based on Research Studies
This article discusses usability findings of research results such as eye-tracking studies, reports, analytics, and usability surveys pertaining to website usability and improvements. You’ll discover that many of these usability tips will be common sense but are further supported with numbers; however, some might surprise you and change your outlook on your current design processes.
usabilidade  webdesign  importante  top10  pesquisa  seo  melhores_práticas  boa_prática  interface  science  tip 
september 2010 by rtopitt
Yahoo! Design Pattern Library
This library shares user interface patterns with the web design and development community. We've got 59 patterns today and more on the way, and we welcome your feedback.
yahoo  boa_prática  webdesign  padrão  importante  lista  interface  reference  tip 
august 2010 by rtopitt
HTML5 Boilerplate - A rock-solid default for HTML5 awesome.
HTML5 Boilerplate is the professional badass's base HTML/CSS/JS template for a fast, robust and future-proof site. After more than two years in iterative development, you get the best of the best practices baked in: cross-browser normalization, performance optimizations, even optional features like cross-domain ajax and flash. A starter apache .htaccess config file hooks you the eff up with caching rules and preps your site to serve HTML5 video, use @font-face, and get your gzip zipple on. Boilerplate is not a framework, nor does it prescribe any philosophy of development, it's just got some tricks to get your project off the ground quickly and right-footed.
html5  framework  css3  html  css  webdesign  htaccess  javascript  jquery  template  modelo  importante  boa_prática  reference 
august 2010 by rtopitt
API Anti-Patterns (how NOT to write a RESTful API) « Mike Pearce – blog
The talk was on API Anti-Patterns. I’d originally thought about doing a talk on How To Write a RESTful API, but the topic is enormous and sprawling and I only had 30 mins. So, I flipped the idea on it’s head and wrote about the things which we find with supposedly RESTful APIs which really aren’t RESTful. It’s shorter and, more importantly, funnier. So, below you’ll find the video and the slides from the night.
http  rest  api  webapp  boa_prática  anti_pattern  presentation  talk  video 
august 2010 by rtopitt
Pattern Tap
Repositório de padrões e melhores práticas em webdesign. Pattern Tap is here to satisfy and encourage the inspiration needs of my interface design peers and peeps. We aspire to be the design tap for your next inspiration need. Pattern Tap was born out of our love for the best interface designs on the web. We wanted a place where we could come and easily find the stuff we were looking for. Sometimes it was a matter of some inspiration for pulling off a horizontal nav bar with a ton of sections, sometimes it was just trying to visually separate some content. We didn't find any central place to find all this stuff, so we made our own.
padrão  boa_prática  melhores_práticas  webdesign  top10  coleção  inspiração  design  html  css  elemento  importante  compilation 
july 2010 by rtopitt
basecamphq.com | Unmatched Style
I’ve been wanting to pick apart the basecamphq.com website for some time now. And recently while working on our own sign up process and form designs for some upcoming unmatchedstyle expansions I spent a good deal of time really digging through many of the top web application or sales based websites I’ve come across in the past 6-8 months. Basecamp (actually the entire suite of 37signals product sites) is really at the top of that list and deserves some review.
review  formulário  venda  webdesign  exemplo  boa_prática  design  marketing  redação  copyright  analysis 
june 2010 by rtopitt
Starbucks Does Not Use Two-Phase Commit - Enterprise Integration Patterns
In summary we can see that the real world is often asynchronous. Our daily lives consists of many coordinated, but asynchronous interactions (reading and replying to e-mail, buying coffee etc). This means that an asynchronous messaging architecture can often be a natural way to model these types of interactions. It also means that often we can look at daily life to help design successful messaging solutions.
artigo  starbucks  fila  mensagem  padrão  boa_prática  pattern  assíncrono  architecture  programming 
may 2010 by rtopitt
Pure RSpec Presentation
Apresentação sobre novidades e boas práticas na sintaxe do RSpec
rspec  ruby  sintaxe  boa_prática  how-to  teste  importante  rails  tip  presentation  talk  programming 
april 2010 by rtopitt
What makes a good API wrapper? — Wynn Netherland
As cool new RESTful services crop up practically each day, I find myself using or writing a lot of Ruby API wrappers. So much that I’ve seen some common approaches emerge, each with their own pros and cons. There are many considerations in designing an API wrapper, but it’s important to make the library feel as natural as possible in the language in which it’s written. With many APIs, there’s room for multiple successful libraries.
api  wrapper  boa_prática  ruby  webservice  tip  programming 
november 2009 by rtopitt
Better Ruby Idioms « Katz Got Your Tongue?
Carl and I have been working on the plugins system over the past few days. As part of that process, we read through the Rails Plugin Guide. While reading through the guide, we noticed a number of idioms presented in the guide that are serious overkill for the task at hand.
rails  ruby  plugin  how-to  padrão  boa_prática  importante  módulo  tip 
november 2009 by rtopitt
UI-patterns.com - User Interface Design Pattern Library
It has long been common practice to use recurring solutions to solve common problems. Such solutions are called design patterns; standard reference points for the experienced user interface designer. This website seeks to better the situation for the UI designer, who struggles with the same problems as many other UI designers have struggled with before him.
webapp  webdesign  boa_prática  design  gui  css  html  inspiração  interface  tip 
july 2009 by rtopitt
The Question That Makes Amazon $2.7 Billion Of Revenue
Análise do sistema de qualidade dos reviews de produtos da Amazon, como foi usado para dar maior destaque às melhores reviews, sem influência editorial, de maneira auto-gerenciada.
amazon  artigo  boa_prática  estatística  importante  review  voto  web2.0  webapp  analysis 
may 2009 by rtopitt
Photojojo » How to Photograph the Holidays — From Around the Web
Seleção de guias e dicas sobre fotografias natalinas e reveillônicas
boa_prática  how-to  top10  tip  photography 
may 2009 by rtopitt
24 ways: Rocking Restrictions
Liberate yourself from the designers’ block by restricting yourself.
boa_prática  inspiração  top10  webdesign  tip 
may 2009 by rtopitt
Listening to Your Specs
Avdi Grimm presents a perfect gift for any developer this Christmas, a comprehensive guide on writing your specs. This is something you would be referring over and over in the days to come, so make sure you keep it bookmarked.
artigo  bdd  boa_prática  rspec  ruby  teste  tip  programming 
may 2009 by rtopitt
Learning To Love Forms (Web Directions South '07) - SlideShare
Apresentação sobre como criar e estilizar formulários HTML de forma válida e semânticamente correta.
boa_prática  formulário  html  semântico  slide  webstandarts  tip  presentation  talk 
may 2009 by rtopitt
madhatted.com::Rspec
Rspec is a tasty testing suite for Rails. There is a spattering of documentation to get you started, but a few controller level items were challenging to test. Let’s look at some good approaches for each of these.
boa_prática  how-to  importante  rails  real  rspec  teste  tip 
may 2009 by rtopitt
What’s in my Encrypted ~/Private directory? « :-Dustin
Exemplo de uso inteligente do diretório encriptado do usuário na nova versão do Ubuntu Intrepid Ibex 8.10 (per user private directory)
8.10  boa_prática  criptografia  exemplo  home  intrepid  ubuntu  security  user 
may 2009 by rtopitt
Ruby-coloured glasses: acts_as_good_style
Lista de boas práticas ao escrever código Ruby, principalmente usando Rails
artigo  boa_prática  lista  rails  ruby  tip  programming 
may 2009 by rtopitt
will_paginate and view testing
Como testar paginação e views com paginação quando usando o plugin will_paginate. Boas práticas em testes
boa_prática  how-to  paginação  plugin  rails  teste  tip 
may 2009 by rtopitt
CSS techniques I use all the time | The Montoya Herald
I’m always learning new things with CSS. It’s interesting because I’ve thought of myself as a CSS expert for a while now (I’ll challenge anyone to a competition, seriously) but I still keep learning and improving. I’ve come across some technique
boa_prática  css  how-to  html  webdesign  tip 
may 2009 by rtopitt
Massive List of Rails Development Tips | Ruby on Rails for Newbies
During a brief 2 years of writing Rails applications, I’ve learned many things that have become part of my normal workflow. If you like the term, you could call them “Best Practices.”
boa_prática  deploy  lista  pattern  rails  ruby  top10  server  tip 
may 2009 by rtopitt

Copy this bookmark:





to read