background preloader

Web

Facebook Twitter

Best Practices for Designing a Pragmatic RESTful API | Vinay Sahni. Your data model has started to stabilize and you're in a position to create a public API for your web app. You realize it's hard to make significant changes to your API once it's released and want to get as much right as possible up front. Now, the internet has no shortage on opinions on API design. But, since there's no one widely adopted standard that works in all cases, you're left with a bunch of choices: What formats should you accept?

How should you authenticate? Should your API be versioned? In designing an API for Enchant (a Zendesk Alternative), I've tried to come up with pragmatic answers to these questions. My goal is for the Enchant API to be easy to use, easy to adopt and flexible enough to dogfood for our own user interfaces. ... or just skip to the bottom and signup for updates Latest from the Enchant blog How to make your app lovable A decent app helps you get the job done. ... and those apps, the ones that make things feel effortless, are the ones we love the most.

Caching. Mrdoob : position: absolute; left:... CSS Length Explained. When styling a web site with CSS you might have realised that an inch on a screen is not an actual inch, and a pixel is not necessarily an actual pixel. Have you ever figured out how to represent the speed of light in CSS pixels? In this post, we will explore the definition of CSS length units starting by understanding some of the physical units with the same name, in the style of C.G.P. Grey. The industrial inch (in) People who live in places where the inch is a common measure are already familiar with the physical unit. For the rest of us living in places using the metric system, since 1933, the “industrial inch” has been defined as mathematical equivalent of 2.54 centimeters, or 0.0254 metres. The device pixel Computer screens display things in pixels. Display pixel density, dots per inch (DPI), or pixels per inch (ppi) The MacBook Air (2011) I am currently using comes with a 125 DPI display, so (width or height of one device pixel) = 1/125 inch = 0.008 inch = 0.02032 cm The CSS pixel (px)

Comment suivre un internaute sans cookie ni javascript ? Vous vous croyez protégé de toute forme de tracking car vous avez désactivé ou filtré le JavaScript, flash, les cookies...etc. ? Eh bien détrompez-vous, car même si vous avez mis en place ce plugin qui permet de brouiller les pistes face à des méthodes de tracking non traditionnelles comme Panopticlik, il est toujours possible de vous suivre. Comment ? Et bien tout simplement en détournant l'utilisation des ETag. Pour ceux qui ne seraient pas familiers avec ce concept, ETag est une fonctionnalité propre aux serveurs web type Apache, qui permet simplement d'identifier de manière unique un fichier (page web, image, CSS...Etc.). Lorsque vous-vous rendez sur une page web, votre navigateur envoie au serveur Apache, l'ETag du fichier qu'il s'apprête à lui demander (et qu'il possède dans son cache).

Si le numéro d'ETag du fichier présent sur le serveur est identique, cela signifie que celui-ci n'a pas changé et qu'il n'est pas nécessaire de le télécharger à nouveau. Vous avez aimé cet article ? Les attributs async et defer pour <script> Deux attributs HTML permettent de modifier le comportement des balises <script> et plus particulièrement pour le chargement des ressources JavaScript : async : charger/exécuter les scripts de façon asynchrone. Defer : différer l'exécution à la fin du chargement du document. Ils sont souvent confondus avec pourtant des conséquences différentes. À l'heure où les performances sont surveillées de plus en plus près par les robots d'indexation, et les temps de chargement scrutés pour le confort des utilisateurs, leur usage est le bienvenu.

Ces attributs sont reconnus par tous les navigateurs modernes actuels : Firefox 3.6+, Chrome, Safari, à partir d'Internet Explorer 10 et bientôt Opera. Attributs async et defer, effets communs Le but de ces deux attributs, décrits en détails ci-après, est principalement de charger et lancer l'interprétation de code JavaScript sans bloquer le rendu HTML (son affichage à l'écran). Le goulot Exemple brut <! Du côté réseau : Verdict L'attribut defer Exemple avec defer.

HTML5

Mean by linnovate. Brio: Animated explainer videos, animation for the web and TV. Popline - An HTML5 Rich-Text-Editor Toolbar. InK - Interface Kit. NSA's PRISM: Protect yourself with these alternative services. Loops7 Afraid someone is watching? Try these services for a little privacy.

If you're at all like me, the announcement that the NSA's secret PRISM program was collecting and analyzing data from pretty much every major Internet service, and thus could potentially be listening in on my phone calls, reading my emails and looking at my documents stored in the cloud, made you feel icky. Sure, the NSA said they weren't intentionally looking to spy on Americans, but just the possibility of this happening feels like a breach of privacy.

Fortunately, there's a whole cottage industry around encrypted versions of popular Internet services, most of which don't need any technical knowledge to set up and operate. An important caveat: No encryption scheme is entirely secure, and this is the NSA, one of the most advanced signal intelligence agencies the world has ever known. If they really want to look at your email, they will. Web browsing. Deep dive into the murky waters of script loading. Introduction In this article I’m going to teach you how to load some JavaScript in the browser and execute it. No, wait, come back! I know it sounds mundane and simple, but remember, this is happening in the browser where the theoretically simple becomes a legacy-driven quirk-hole. Knowing these quirks lets you pick the fastest, least disruptive way to load scripts. For starters, here’s how the spec defines the various ways a script could download and execute: Like all of the WHATWG specs, it initially looks like the aftermath of a cluster bomb in a scrabble factory, but once you’ve read it for the 5th time and wiped the blood from your eyes, it’s actually pretty interesting: My first script include Ahh, blissful simplicity.

Unfortunately, the browser blocks further rendering of the page while all this is happening. This is why the great and the good of the performance world recommend putting script elements at the end of your document, as it blocks as little content as possible. 1.js 2.js. Using HTML5 prerendering to speed up a multi-page registration process. I recently began using a newish HTML5 feature called prerendering in the Soundslice registration process, and I'm very happy with how it's been working. Prerendering is a way for you (as a web developer) to tell a web page to load (and render!) A second page in the background -- where the second page is one that's highly likely to be visited next. Here's how it works. Say you have Page A and Page B, where the user always visits them in that order. You can put a bit of code in Page A's markup that says "prerender Page B right now. " Prerendering is easy to do: just put a line of markup in Page A's <head>, like so: Note this apparently only works in Google Chrome at the moment, so the benefit is limited to that browser until other browsers implement it.

A multi-page form, as in a registration process, is a great use-case for prerendering. (Comparing the benefits of a single-page mega form vs. multi-page smaller forms is a separate discussion. Channel API on Google App Engine by Kazunori Sato on Prezi. Easily index your Single Page Application thanks to PhantomJS ¤ Vickev. Google provides a way to index your Single Page Application (SPA), built with Angular.js, Backbone.js, or other Javascript framework (ember.js, knockout.js, and others). In this article, we will first see together how it proceeds, the amount of work that the webmaster has to do, and then we will come up with an automatic solution.

All along this article, I will introduce tools and examples of this website, vickev.com (which is built with Angular.js and Node.js), to prove the relevance of the method. The magic of Google crawl Google perfectly indexes websites, but without executing any javascript code. If the website is well-done, it should display the information, no matter if the javascript is enabled or not. In order do that, the webmaster needs to test every single page disabling the Javascript engine of his browser, and see if the website provides the correct information and is browsable.

However, in the case of SPA, the foundation is based on Javascript. Try it yourself! Results ~Kevin. Mantis: Next-generation Cloud Technology for WebRTC. Today we’re proud to announce our latest WebRTC innovation: Mantis, a cloud-scaling infrastructure for our OpenTok on WebRTC platform. This is another big step forward for the TokBox team as we continue to pursue our goal of providing application developers with simple yet powerful APIs. APIs that not only leverage the latest standards to deliver the best possible experience, but that are backed by a scalable, smart cloud which supports interoperability across a variety of end-points. It was just over six months ago that we launched the OpenTok on WebRTC platform. Since that time we’ve been hard at work, constantly pushing the boundaries of OpenTok on WebRTC’s functionality and performance. We launched the first iOS SDK for WebRTC, introduced cross-platform and device support, improved connectivity with cross-platform TURN support and more.

Mantis for OpenTok on WebRTC acts as a central switching station for all the WebRTC streams in the OpenTok cloud. Why should you care about Mantis? Popcorn.js | The HTML5 Media Framework. Popcorn Maker 1.0 released – how it works. This week Mozilla is in London at the Mozilla Festival 2012. A year ago at last year’s Festival, we released Popcorn.js 1.0, and with it a way for filmmakers, journalists, artists, and bloggers to integrate audio and video into web experiences.

Popcorn has since become one of the most popular ways to build time-based media experiences for the web. It has proven to be uniquely powerful for bespoke web demos, films, visualizations, etc. This year, we’ve come to the Mozilla Festival with an even bigger 1.0 release: Popcorn Maker 1.0. Popcorn.js and Popcorn Maker With Popcorn.js, and its plugin ecosystem, we created a tool for developers. At its core, Popcorn Maker is an HTML5 web app for combining web media with images, text, maps, and other dynamic web content. Coming from Butter When we first started we thought we’d create a simple library named Butter, and that Popcorn Maker would be injectable — something you would add to existing web pages, like a toolbar.

Using LESS for CSS Repositories. How do I version my REST API? | - The RESTful cookbook. Les URLs sont pour les Humains, Pas pour les Ordinateurs | xtof. Nous sommes tous familiers avec les URLs : la chaîne identifiant uniquement le document demandé. Néanmoins, nous n’avons toujours pas imaginé qu’elles sont plus que cela : Les URLs font face à l’utilisateur et devraient être considérées comme des éléments importants de l’interface-utilisateur. Elles devraient être propres, compréhensibles, sémantiques, hiérarchiques et pas trop longues. Si l’URL ressemble à une poubelle les gens ne cliqueront pas dessus Une étude menée par Microsoft a trouvé que les URLs jouent un rôle vital pour démontrer la sécurité et la crédibilité d’un site web : Edward Cutrell and Zhiwei Guan from Microsoft Research have conducted an eyetracking study of search engine use (warning: PDF) that found that people spend 24% of their gaze time looking at the URLs in the search results.We found that searchers are particularly interested in the URL when they are assessing the credibility of a destination.

Non seulement propre, mais sémantique et hiérarchique Meta information. HTML5 & App Engine Backends - Google IO 2012. Browse User Interface Designs. What The Rails Security Issue Means For Your Startup. January has been a very bad month for Ruby on Rails developers, with two high-severity security bugs permitting remote code execution found in the framework and a separate-but-related compromise on rubygems.org, a community resource which virtually all Ruby on Rails developers sit downstream of. Many startups use Ruby on Rails. Other startups don’t but, like the Rails community, may one day find themselves asking What Do We Do When Apocalyptically Bad Things Happen On Our Framework of Choice? I thought I’d explain that for the general community. Nota bene: I’m not a professional security researcher. Mostly, I sell software. In the course of doing that, I (very occasionally) do original security research. Don’t skip this post because you’re not a Rails developer.

Background: What Has Been Happening in Rails-land? Ruby on Rails recently released two sets of security patches (announcements here and here), in response to related vulnerabilities discovered in the frameworks. What went wrong? Learn to code by creating an app | Ruby on Rails tutorial. AltJS compile-to-JavaScript language list. Batch • 300 Pictographs for Web & User Interface Design. The Shumway Open SWF Runtime Project | Mozilla Research. Shumway is an experimental web-native runtime implementation of the SWF file format. It is developed as a free and open source project sponsored by Mozilla Research. The project has two main goals: 1. Advance the open web platform to securely process rich media formats that were previously only available in closed and proprietary implementations. 2. Offer a runtime processor for SWF and other rich media formats on platforms for which runtime implementations are not available.

You can view live demo examples using Shumway. Mozilla’s mission is to advance the Open Web. The Open Web can be further advanced by making rich media capabilities, previously only available in Flash, also available in the native web browser stack. 1. More information can be found on the github links: * * * Jquery Slider. Www.igvita.com/slides/2012/webperf-crash-course.pdf. Winston/cactus. Nouveau look pour une nouvelle vie, version spéciale Ippon. The Noun Project. Les évènements Web à ne pas manquer en Octobre, Novembre, Décembre prochain. Alors que la fin de l’année arrive à grand pas, les événements Web ne manquent pas à l’appel et continuent de se bousculer. Aujourd’hui, je vous propose de découvrir de nouveaux rassemblements Web pour cette fin d’année 2012.

En effet, la France regorge d’événements sur lesquels, nous amateurs de conception Web, dont la soif d’apprendre n’est plus à présenter, aimons participer. Ainsi, que l’on soit expert en développement ou conception, mais également simple passionné du Web qui cherche à apprendre et à échanger, ou encore étudiant, ces événements sont quasiment indispensables pour nous ! Dans la suite de ce billet je vais présenter les principales conférences Web des prochaines semaines qui me semblent intéressantes, ainsi que celles relayées par les lecteurs, et celles pour lesquelles je devrais être présent.

L’heure est donc venue de faire un point sur celles-ci, qui vont je l’espère satisfaire votre soif de connaissances dans le monde de la conception web : Chrome supporte maintenant les FPS en version stable mais pas que … Au début du mois je mentionnais que Google avait mis à jour la version bêta de Chrome avec un certain nombre de technologies HTML5. Bien sûr, la plus importante étant l’API JavaScript « Pointer Lock » qui ajoute une fonction de blocage de la souris. Celle-ci permet au navigateur de reproduire le contrôle de la souris dont les jeux PC ont bénéficié pendant plus de deux décennies… Grâce à l’arrivée de l’HTML5, cette « technologie » est maintenant disponible pour tous.

Google a annoncé hier que la dernière version stable de Chrome qui embarque l’API « Pointer Lock ». Les utilisateurs de Chrome peuvent désormais bénéficier de la précision des contrôles natifs de la souris. Google Chrome conseille les utilisateurs à essayer BananaBread développé par Mozilla ! Google, comme Mozilla, souligne que l’API « Pointer Lock » n’est pas seulement faite pour les jeux. N’hésitez pas à vérifier les nouvelles versions de Google Chrome sur les channels afin de récupérer la liste complète des changements.

Fête sa première année ! Announcing Ringmark, a Mobile Browser Test Suite - Développeurs Facebook. Google-styleguide.googlecode.com/svn/trunk/xmlstyle.html. Protect your API: Twitter’s Denial of Service Attack and API Security. ★ Pour ne plus être en REST, comprendre cette architecture. So what is Meteor? « Hype Driven Development. WebSockets: Stable and Ready for Developers. Add SPDY support to your Apache server with mod_spdy. Instagram Engineering • What Powers Instagram: Hundreds of Instances, Dozens of Technologies. ChronoZoom.

UX

Javascript. MongoDB. La parole aux experts du Web : Que sont les CSS3 Media Queries ? Comment les intégrer et les mettre en oeuvre ? Google Plus Style Animations with Jquery and CSS3.