devuri

API Key Generator

Generates a RFC4122 version 4 compliant UUID which can be used as an API Key. Semantics, heh.

A Pen by Uriel Wilson Jr. on CodePen.

License.

devuri

# Apache Server Configs v2.14 | MIT License
# https://github.com/h5bp/server-configs-apache

# (!) Using `.htaccess` files slows down Apache, therefore, if you have
# access to the main server configuration file (which is usually called
# `httpd.conf`), you should add this logic there.
#
# https://httpd.apache.org/docs/current/howto/htaccess.html.

# ----------------------------------------------------------------------

devuri

## Set security headers per https://observatory.mozilla.org
Header set Strict-Transport-Security "max-age=15768000" env=HTTPS
Header set Content-Security-Policy "frame-ancestors 'self'"
Header set X-Frame-Options "SAMEORIGIN"
Header set X-XSS-Protection "1; mode=block"
Header set X-Content-Type-Options "nosniff"

## Add some rewrite rules per https://stackoverflow.com/a/13997498/266535
RewriteEngine On

devuri

#Header: X-Frame-Options for XSS Protection
add_header X-Frame-Options SAMEORIGIN;
#Header: X-Content-Type Options
add_header X-Content-Type-Options nosniff;
#Header: X-XSS Protection Header
add_header X-XSS-Protection "1; mode=block";
#Header: Strict-Transport-Security
add_header Strict-Transport-Security "max-age=15768000; includeSubdomains; preload";
#Header: Content-Security-Policy
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.api.twitter.com https://gist.github.com https://syndication.twitter.com https://platform.twitter.com https://js-agent.newrelic.com https://*.nr-data.net https://*.wp.com  https://*.gravatar.com https://*.wp.com https://pagead2.googlesyndication.com https://ssl.google-analytics.com https://connect.facebook.net https://www.google-analytics.com https://cdnjs.cloudflare.com https://ajax.cloudflare.com; img-src 'self' data: https://pbs.twimg.com https://platform.twitter.com https://syndication.twitter.com https://dashb

devuri

Dr Ross Williams' collection of security related HTTP headers

• See https://www.owasp.org/index.php/List_of_useful_HTTP_headers
• See http://en.wikipedia.org/wiki/List_of_HTTP_header_fields
• See http://blog.veracode.com/2014/03/security-headers-on-the-top-1000000-websites-march-2014-report/
• See http://ibuildings.nl/blog/2013/03/4-http-security-headers-you-should-always-be-using

Reject all HTTP connections. Convert them to HTTPS or generate an error.

• See http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

devuri

<div class="container">
	<div class="row">
		<div class="col-sm-12">
			<h1>Secure Form Builder</h1>
		</div>
	</div>
	<div class="sf-message-wrap"><div class="sf-message"></div></div>
	<div class="form-builder">

	</div>

devuri

Form Builder

A Pen by Uriel Wilson Jr. on CodePen.

License.

devuri

#5 - 360 degree image slider

360 degree image view. Image slider. ThreeSixty.js demo.

A Pen by Uriel Wilson Jr. on CodePen.

License.

devuri

Collapse trick

Add an easy collapse trick adding a open and close item

A Pen by disjfa on CodePen.

License.

devuri

Basic CRUD operations with PDO

CRUD = Create, Read, Update, Delete

Open a database connection

$host = '127.0.0.1';
$dbname = 'test';
$username = 'root';