Let's have some command-line fun with curl, [jq][1], and the [new GitHub Search API][2].
Today we're looking for:
Khon tkt028
tkt028
/ 00-about-search-api-examples.md
Created
December 7, 2015 08:30
— forked from jasonrudolph/00-about-search-api-examples.md
5 entertaining things you can find with the GitHub Search API
tkt028
/ Secure Sessions Howto
Created
October 29, 2015 01:00
— forked from nikmartin/A: Secure Sessions Howto
Secure sessions with Node.js, Connect, and Nginx as an SSL Proxy
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Secure sessions are easy, but it's not very well documented, so I'm changing that. | |
| Here's a recipe for secure sessions in Node.js when NginX is used as an SSL proxy: | |
| The desired configuration for using NginX as an SSL proxy is to offload SSL processing | |
| and to put a hardened web server in front of your Node.js application, like: | |
| [NODE.JS APP] <- HTTP -> [NginX] <- HTTPS -> [CLIENT] | |
| To do this, here's what you need to do: |
tkt028
/ 1-securing-express.md
Created
October 24, 2015 15:21
— forked from cerebrl/1-securing-express.md
Securing ExpressJS
- Don't run as root.
- For sessions, set
httpOnly(andsecuretotrueif running over SSL) when setting cookies. - Use the Helmet for secure headers: https://github.com/evilpacket/helmet
- Enable
csrffor preventing Cross-Site Request Forgery: http://expressjs.com/api.html#csrf - Don't use the deprecated
bodyParser()and only use multipart explicitly. To avoid multiparts vulnerability to 'temp file' bloat, use thedeferproperty andpipe()the multipart upload stream to the intended destination.
tkt028
/ .gitconfig
Created
October 22, 2015 02:04
— forked from robmiller/.gitconfig
Some useful Git aliases that I use every day
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # Working with branches | |
| # | |
| # Get the current branch name (not so useful in itself, but used in | |
| # other aliases) | |
| branch-name = "!git rev-parse --abbrev-ref HEAD" | |
| # Push the current branch to the remote "origin", and set it to track | |
| # the upstream branch | |
| publish = "!git push -u origin $(git branch-name)" |
tkt028
/ my Arch Linux cheat-sheet
Created
October 21, 2015 14:52
— forked from tungel/my Arch Linux cheat-sheet
I have kind of short term memory so I like to take note of what I've done. This cheat-sheet log some of the things I've done to my Arch Linux machine. Lots of these stuffs are based on my personal preference and may not be applicable to you. Also take note that: I'm not responsible if you break your machine by following any of the steps in this …
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Installing Arch: | |
| sudo vim /etc/pacman.conf | |
| Update packages list: sudo pacman -Syy | |
| run sudo pacman -Syu before installing any software (to update the repositories first) | |
| * Timing issue: | |
| - Change hardware clock to use UTC time: | |
| sudo timedatectl set-local-rtc 0 |
tkt028
/ about.md
Created
May 22, 2012 08:03
— forked from jasonrudolph/about.md
Programming Achievements: How to Level Up as a Developer
This gist is part of a blog post. Check it out at:
http://jasonrudolph.com/blog/2011/08/09/programming-achievements-how-to-level-up-as-a-developer
NewerOlder