A podcast for developers interested in building great software products. Every episode, Adam Wathan is joined by a guest to talk about everything from product design and user experience to unit testing and system administration.
…
continue reading
תוכן מסופק על ידי Real Python. כל תוכן הפודקאסטים כולל פרקים, גרפיקה ותיאורי פודקאסטים מועלים ומסופקים ישירות על ידי Real Python או שותף פלטפורמת הפודקאסט שלהם. אם אתה מאמין שמישהו משתמש ביצירה שלך המוגנת בזכויות יוצרים ללא רשותך, אתה יכול לעקוב אחר התהליך המתואר כאן https://he.player.fm/legal.
דומה לThe Real Python Podcast
Talk Python to Me is a weekly podcast hosted by developer and entrepreneur Michael Kennedy. We dive deep into the popular packages and software developers, data scientists, and incredible hobbyists doing amazing things with Python. If you're new to Python, you'll quickly learn the ins and outs of the community by hearing from the leaders. And if you've been Pythoning for years, you'll learn about your favorite packages and the hot new ones coming out of open source.
…
continue reading
Python Bytes is a weekly podcast hosted by Michael Kennedy and Brian Okken. The show is a short discussion on the headlines and noteworthy news in the Python, developer, and data science space.
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
1
The Ticket: Discover the Future of Customer Service, Support, and Experience, with Intercom
Intercom
1k
473
On The Ticket, you'll hear Intercom's Customer Support team in conversation with the customer service leaders, renowned customer experience thinkers, and influential authors who are shaping the field of customer support. Follow The Ticket to get the weekly episodes and sign up for our twice-monthly newsletter bursting with all the insights, trends, tips, and assets your team needs to embrace the future of customer service. https://www.intercom.com/blog/newsletter 🏠 www.intercom.com
…
continue reading
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
Developer Tea exists to help driven developers connect to their ultimate purpose and excel at their work so that they can positively impact the people they influence. With over 17 million downloads to date, Developer Tea is a short podcast hosted by Jonathan Cutrell, engineering leader with over 15 years of industry experience. We hope you'll take the topics from this podcast and continue the conversation, either online or in person with your peers. Email: [email protected]
…
continue reading
Thanks for visiting The Cell Phone Junkie! I will be taking the time each week to discuss my favorite topic, cell phones. Any feedback is appreciated and welcome. You can email me at: questions (AT) thecellphonejunkie (DOT) com or call: 206-203-3734 Thanks and welcome!
…
continue reading
Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
A weekly talk show taking a pragmatic look at the art and business of Software Development and the world of technology.
…
continue reading
Player FM - אפליקציית פודקאסט
התחל במצב לא מקוון עם האפליקציה Player FM !
התחל במצב לא מקוון עם האפליקציה Player FM !
))
Security and Authorization in Your Python Web Applications
Manage episode 277418965 series 2637014
תוכן מסופק על ידי Real Python. כל תוכן הפודקאסטים כולל פרקים, גרפיקה ותיאורי פודקאסטים מועלים ומסופקים ישירות על ידי Real Python או שותף פלטפורמת הפודקאסט שלהם. אם אתה מאמין שמישהו משתמש ביצירה שלך המוגנת בזכויות יוצרים ללא רשותך, אתה יכול לעקוב אחר התהליך המתואר כאן https://he.player.fm/legal.
So you built a web application in Python. Now how are you going to authorize users? Security goes beyond authentication. Who gets to do what, where, and when? This week on the show, we have Sam Scott, chief technology officer from Oso. Oso is an open-source policy engine for authorization that you embed in your application.
Sam talks about the typical security and authorization challenges developers face. He discusses building an engine on top of your existing Flask or Django app. We cover the concept of policies, business logic, and some common paradigms.
Course Spotlight: Exploring HTTPS and Cryptography in Python
In this course, you’ll gain a working knowledge of the various factors that combine to keep communications over the Internet safe. You’ll see concrete examples of how to keep information secure and use cryptography to build your own Python HTTPS application.
Topics:
- 00:00:00 – Introduction
- 00:01:32 – Sam’s math background
- 00:03:11 – What is Sage?
- 00:04:24 – What is post-quantum cryptography?
- 00:05:19 – Getting Oso started, authentication vs authorization.
- 00:10:01 – What is a policy engine?
- 00:12:57 – Confusing business logic with authorization
- 00:17:09 – Sponsor: Techmeme Ride Home Podcast
- 00:17:38 – Pip installing Oso, adding to Flask or Django
- 00:21:15 – What are common security concerns for developers?
- 00:25:41 – What are security concerns users have?
- 00:27:14 – What are the worst security issues you’ve found in a Python app?
- 00:30:12 – Video Course Spotlight
- 00:31:32 – What are other common authorization “gotchas”?
- 00:37:16 – Additional Oso resources
- 00:39:36 – What does writing in Polar look like?
- 00:42:00 – Are there authorization paradigms?
- 00:46:02 – What are you excited about in the world of Python?
- 00:50:05 – What do you want to learn next?
- 00:50:49 – Thanks and goodbye
Show Links:
- oso on twitter
- Sam on twitter
- oso: an open source policy engine for authorization
- oso Django Docs
- oso Flask Docs
- oso Python Library Docs
- oso Source Code
- oso Debugger Docs
- Adding authorization to your Flask app with oso: oso blog
- Building a Django app with data access controls in 30 min: oso blog
- Generating Django Queryset filters from oso policies: oso blog
- Polar Adventure: a text-based adventure game written in Polar
- Lighting talk on access controls: oso blog
- SageMath: A free open-source mathematics software system
- Post-quantum cryptography: Wikipedia article
- 327: Exploits of a Mom : XKCD Comic
- Little Bobby Tables: Explain XKCD
- Snyk: Developer-first Cloud Native Application Security
- Geekle’s python Universe WEB Edition: 19 November 2020
- WebAssembly(WASM)
Level up your Python skills with our expert-led courses:
265 פרקים
שתפו
Manage episode 277418965 series 2637014
תוכן מסופק על ידי Real Python. כל תוכן הפודקאסטים כולל פרקים, גרפיקה ותיאורי פודקאסטים מועלים ומסופקים ישירות על ידי Real Python או שותף פלטפורמת הפודקאסט שלהם. אם אתה מאמין שמישהו משתמש ביצירה שלך המוגנת בזכויות יוצרים ללא רשותך, אתה יכול לעקוב אחר התהליך המתואר כאן https://he.player.fm/legal.
So you built a web application in Python. Now how are you going to authorize users? Security goes beyond authentication. Who gets to do what, where, and when? This week on the show, we have Sam Scott, chief technology officer from Oso. Oso is an open-source policy engine for authorization that you embed in your application.
Sam talks about the typical security and authorization challenges developers face. He discusses building an engine on top of your existing Flask or Django app. We cover the concept of policies, business logic, and some common paradigms.
Course Spotlight: Exploring HTTPS and Cryptography in Python
In this course, you’ll gain a working knowledge of the various factors that combine to keep communications over the Internet safe. You’ll see concrete examples of how to keep information secure and use cryptography to build your own Python HTTPS application.
Topics:
- 00:00:00 – Introduction
- 00:01:32 – Sam’s math background
- 00:03:11 – What is Sage?
- 00:04:24 – What is post-quantum cryptography?
- 00:05:19 – Getting Oso started, authentication vs authorization.
- 00:10:01 – What is a policy engine?
- 00:12:57 – Confusing business logic with authorization
- 00:17:09 – Sponsor: Techmeme Ride Home Podcast
- 00:17:38 – Pip installing Oso, adding to Flask or Django
- 00:21:15 – What are common security concerns for developers?
- 00:25:41 – What are security concerns users have?
- 00:27:14 – What are the worst security issues you’ve found in a Python app?
- 00:30:12 – Video Course Spotlight
- 00:31:32 – What are other common authorization “gotchas”?
- 00:37:16 – Additional Oso resources
- 00:39:36 – What does writing in Polar look like?
- 00:42:00 – Are there authorization paradigms?
- 00:46:02 – What are you excited about in the world of Python?
- 00:50:05 – What do you want to learn next?
- 00:50:49 – Thanks and goodbye
Show Links:
- oso on twitter
- Sam on twitter
- oso: an open source policy engine for authorization
- oso Django Docs
- oso Flask Docs
- oso Python Library Docs
- oso Source Code
- oso Debugger Docs
- Adding authorization to your Flask app with oso: oso blog
- Building a Django app with data access controls in 30 min: oso blog
- Generating Django Queryset filters from oso policies: oso blog
- Polar Adventure: a text-based adventure game written in Polar
- Lighting talk on access controls: oso blog
- SageMath: A free open-source mathematics software system
- Post-quantum cryptography: Wikipedia article
- 327: Exploits of a Mom : XKCD Comic
- Little Bobby Tables: Explain XKCD
- Snyk: Developer-first Cloud Native Application Security
- Geekle’s python Universe WEB Edition: 19 November 2020
- WebAssembly(WASM)
Level up your Python skills with our expert-led courses:
265 פרקים
すべてのエピソード
×
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.
דומה לThe Real Python Podcast
A podcast for developers interested in building great software products. Every episode, Adam Wathan is joined by a guest to talk about everything from product design and user experience to unit testing and system administration.
…
continue reading
Talk Python to Me is a weekly podcast hosted by developer and entrepreneur Michael Kennedy. We dive deep into the popular packages and software developers, data scientists, and incredible hobbyists doing amazing things with Python. If you're new to Python, you'll quickly learn the ins and outs of the community by hearing from the leaders. And if you've been Pythoning for years, you'll learn about your favorite packages and the hot new ones coming out of open source.
…
continue reading
Python Bytes is a weekly podcast hosted by Michael Kennedy and Brian Okken. The show is a short discussion on the headlines and noteworthy news in the Python, developer, and data science space.
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
1
The Ticket: Discover the Future of Customer Service, Support, and Experience, with Intercom
Intercom
1k473
On The Ticket, you'll hear Intercom's Customer Support team in conversation with the customer service leaders, renowned customer experience thinkers, and influential authors who are shaping the field of customer support. Follow The Ticket to get the weekly episodes and sign up for our twice-monthly newsletter bursting with all the insights, trends, tips, and assets your team needs to embrace the future of customer service. https://www.intercom.com/blog/newsletter 🏠 www.intercom.com
…
continue reading
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
Developer Tea exists to help driven developers connect to their ultimate purpose and excel at their work so that they can positively impact the people they influence. With over 17 million downloads to date, Developer Tea is a short podcast hosted by Jonathan Cutrell, engineering leader with over 15 years of industry experience. We hope you'll take the topics from this podcast and continue the conversation, either online or in person with your peers. Email: [email protected]
…
continue reading
Thanks for visiting The Cell Phone Junkie! I will be taking the time each week to discuss my favorite topic, cell phones. Any feedback is appreciated and welcome. You can email me at: questions (AT) thecellphonejunkie (DOT) com or call: 206-203-3734 Thanks and welcome!
…
continue reading
Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
A weekly talk show taking a pragmatic look at the art and business of Software Development and the world of technology.
…
continue reading
Player FM - אפליקציית פודקאסט
התחל במצב לא מקוון עם האפליקציה Player FM !
התחל במצב לא מקוון עם האפליקציה Player FM !
