Home » Author Archives: Ricardo Zuasti

Author Archives: Ricardo Zuasti

Web development frameworks – part 4 : Django


This is a part of my web frameworks review series. Check it out if you haven’t already. Moving on to Django, the Python based all star. Django was created by the folks at the Lawrence Journal-World and released to the public in 2005. It’s very active and with a strong group of followers, the framework is currently in it’s 1.4 ...

Read More »

Web development frameworks – part 3 : Ruby on Rails


The next runner is Ruby on Rails v3. Unless you have been living under a bucket without an RJ45 port (yes, some buckets have Internet access), you have probably heard of Ruby on Rails (RoR), it’s a very popular framework with lots of momentum. RoR started as an extract of the Basecamp product at 37signals and is now used in all ...

Read More »

Web development frameworks – part 2 : Play Framework 2.0


As the first candidate of our evaluation series we reviewed the Play Framework v2.0. The tutorial and reference documentation used for this article is all available from the Play documentation site. The first part of the article will go over the set of tasks we proposed to do with each framework, then moving on to evaluate each criteria item. Install ...

Read More »

Web development frameworks – part 1: Options and criteria


At my company we are evaluating which web development framework we will use for the next few years. Since our last evaluation we have been using Java application servers powered by Struts 2 as MVC, Tiles as templating engine, jQuery for Javascript awesomennes, DWR for AJAX calls and MyBatis as ORM. But we think it’s time to re-evaluate and move ...

Read More »

Anti cross-site scripting (XSS) filter for Java web apps


Here is a good and simple anti cross-site scripting (XSS) filter written for Java web applications. What it basically does is remove all suspicious strings from request parameters before returning them to the application. It’s an improvement over my previous post on the topic. You should configure it as the first filter in your chain (web.xml) and it’s generally a ...

Read More »

An agile methodology for orthodox environments


My company designs and develop mobile and web based banking solutions. Our customers (banks for the most part) are highly bureaucratized, orthodox (ie. like to have everything pre-defined and pre-approved) and risk adverse, and therefore change and the disruption of the status quo is not a normal sight within most of them. Most banking IT departments are used to the ...

Read More »

Java concurrency – Feedback from tasks


Picking up from where I left off in my last post about the java.util.concurrent package, it’s interesting and sometimes mandatory to get feedback from concurrent tasks after they are started. For example imagine an application that has to send email batches, besides from using a multi-threaded mechanism, you want to know how many of the intended emails were successfully dispatched, ...

Read More »

Preventing CSRF in Java web apps


Cross-site request forgery attacks (CSRF) are very common in web applications and can cause significant harm if allowed. If you have never heard of CSRF I recommend you check out OWASPs page about it. Luckily preventing CSRF attacks is quite simple, I’ll try to show you how they work and how we can defend from them in the least obtrusive ...

Read More »
Want to take your Java Skills to the next level?
Grab our programming books for FREE!
  • Save time by leveraging our field-tested solutions to common problems.
  • The books cover a wide range of topics, from JPA and JUnit, to JMeter and Android.
  • Each book comes as a standalone guide (with source code provided), so that you use it as reference.
Last Step ...

Where should we send the free eBooks?

Good Work!
To download the books, please verify your email address by following the instructions found on the email we just sent you.