Adam Tuliper is a software architect with Cegedim and has been developing software for over 16 years. He’s a Certified Scrum Master and MCPD Enterprise Applications Developer. Adam started his work in security and reverse engineering (x86 based – pre .NET) with the direction of going into the software protection and anti-piracy field. He has been deeply involved in .NET internals since early .NET beta and currently works extensively with WCF, ASP.NET, SQL Server, MVC, C#, jQuery, and Silverlight. Adam is an INETA Community Speaker and speaks at Tech Ed, .NET User Groups, and other events. Besides development, he has performed security audits and penetration testing for large and small companies alike and really really likes security.
This session will cover roughly 25 tips and tricks for the ASP.NET web developer.
If you have any interest in topics such as:
- Do you know how to deploy apps retail mode? -Easily configuring ssl on your dev box
- How do multiple ajax requests and the session object affect your application?
- How can I load symbols/debug information when I can’t seem to debug my web app source code?
- How can I effectively cache in MVC and how can this help me replace the lack of Viewstate?
- How can I easily develop my web app membership providers to support all of Microsoft’s database engines?
then this session is definitely for you!
Help fill your head with useful tidbits to help you cruise in your next web project!
A quick introduction into the built in support for DI provided by MVC and some typical usage patterns to keep your controller code thinned out.
The biggest problem for developers moving to MVC is not being able to use a lot of the Web Forms knowledge we’ve already spent so much time learning. This presentation will take the developer from something they already know – ASP.NET Web Forms – and move them into MVC utilizing the knowledge they already have for Web Forms. We will review a complete ASP.NET Web Forms application where we do common tasks, and then see how to do the equivalent type of task in MVC. Procedures such as Data Binding, Error Handling, URL routing, AJAX, and more will be covered. No MVC talk would be complete without discussing how to unit test our MVC code as well. This discussion will also cover common controls (grids, etc) available to the developer and how client libraries used to enhance our MVC applications.
Security is an afterthought with most developers. A common problem is that most web applications can be easily hacked. This presentation explores the most common attacks on web applications, how they work to exploit your app, and most importantly, how to protect against them. Techniques such as Cross Site Scripting, SQL Injection, Session Hijacking, and Cross Site Request Forgery will be covered. ASP.NET Web Forms and ASP.NET Model-View-Controller (MVC) will be covered, as both have pros and cons that will be explored. We will start with a ‘broken’ application and secure it throughout the presentation. Learn about the various tools, techniques, and libraries to help protect your applications!