#27 Cross Site Scripting

May 04, 2007 | 5 minutes | Views, Security

Another common security issue is cross site scripting. In this episode you will see why it is so important to escape any HTML a user may submit.

Click to Play Video ▶

Download:
mp4Full Size H.264 Video (9.8 MB)
m4vSmaller H.264 Video (6.74 MB)
webmFull Size VP8 Video (19.3 MB)
ogvFull Size Theora Video (14.3 MB)

Episode #103 – Nov 12, 2012 – 95 comments

Site-Wide Announcements (revised)

Here I show how to add an announcement message at the top of every page in the application and allow the user to permanently hide it. This is all done test-first and even includes testing the JavaScript behavior. (11 minutes)

Watch Episode Read Episode

Episode #391 – Nov 07, 2012 – 84 comments

Testing JavaScript with PhantomJS

PhantomJS allows us to test JavaScript without going through a browser window. Here I show how to do this using Capybara and Poltergeist. I also give some tips on handling database transactions and skipping javascript tests. (10 minutes)

Watch Episode Read Episode

Episode #381 – Sep 21, 2012 – 167 comments

jQuery File Upload

Here you will learn how to upload multiple files over ajax using jQuery File Upload. I start with the basic functionality and customize it to fit the user interface. (13 minutes)

Watch Episode Read Episode

Episode #375 – Aug 16, 2012 – 65 comments

Monit

Monit can help ensure your Rails app stays up and running smoothly. Here I show how to set it up, receive alerts, and keep tabs on it through a web interface. (16 minutes)

Watch Episode Read Episode

Episode #373 – Aug 09, 2012 – 69 comments

Zero-Downtime Deployment

Here I show how to accomplish zero-downtime deployment using Unicorn. I also cover gotchas when working with migrations and how to put up a maintenance page when you do need to take down the site. (12 minutes)

Watch Episode Read Episode