Just like everyone should learn to program, everyone should learn to sell.
I started my career as a software developer but through some odd twists and turns I one day found myself in enterprise sales, wearing a suit, and carrying quota. It was a big transition and I freaking loved it. Soon I built a strong reputation as a top salesperson and closed over $100M in revenue while at IBM. Sales is awesome but unfortunately it has a bad reputation: bad sales people come across slimy, obnoxious, pushy, and selfish. And for n00bs, it’s daunting because they assume sales success is an intrinsic personality trait – you’ve either “got it” or you don’t. Well, it turns out sales is learnable and most people can get good at it with practice. Even hackers.Read more »
This is the second post in a two-part series on Flask authentication. You should read the previous article, The Flask Authentication Problem, before continuing.
Since I started working at Stormpath, I’ve been thinking about ways to help Flask developers build simpler, more secure web applications. Partially because it’s now my job, but more importantly because this is something I’ve often needed for my own projects.
In my opinion, Flask developers really need a library that can handle the following, securely:Read more »
Over the past few years I’ve found myself spending an awful lot of time building Flask websites and API services. As someone who came to Flask from Django, I loved Flask for its simplicity, flexibility, and elegance. Since it doesn’t come coupled with many required components, Flask can be a strategic tool for writing to-the-point code, working with new technologies (NoSQL data stores, etc.), and maximizing code base maintainability over time.
End-to-End Application Security for Spring Developers
Not so long ago, securing a Java app meant weeks of work and plenty of custom code. Today, tools like Spring Security make secure development far less painful. We’re thrilled to simplify security for Java apps even more with the new Spring Security plugin for Stormpath, available now.Read more »
Since the release of some much needed Python SDK improvements back in October of 2013, we’ve been hard at work rolling our V1, production-ready Python SDK release. I’m extremely happy to announce that as of today, our brand new Python SDK is finally live! You can check it out on PyPI: https://pypi.python.org/pypi/stormpath
So what’s new in stormpath-1.0.0? Several big things.Read more »
I’m Randall, and I’m extremely excited to announce that, as of today, I have joined Stormpath as a Developer Evangelist!
For as long as I can remember, I’ve been writing code. Programming has been my life ever since I first got into software development while trying to write hacks for Wolfenstein 3D. There’s nothing more exciting to me than coming up with a fun idea and being able to bring it to life!
What I’ve Been DoingRead more »
Last year, Stormpath made the big shift from Scrum to Kanban. While we love Agile principles, the Scrum process wasn’t working for us. Kanban made our team more efficient, happier, and increased our focus on quality software. More importantly, it has become a core part of our company culture, and is now used by non-technical teams like Marketing and HR.
Kanban software development focuses on continuous delivery and drives high efficiency by limiting how much work can be done at once. Invented by Toyota and modified by David J. Anderson for software development, Kanban can have a huge impact on modern teams delivering cloud software in continuous environments.Read more »
Fine-grained permissions are a powerful tool for managing authorization for users and groups/roles. They’re also painful to model yourself and a potential security hazard. With Stormpath’s
customData resource, Apache Shiro developers can now securely manage user permissions.
Shiro is our tool of choice for enforcing permissions in Java apps – including the Stormpath API. We use it extensively in-house and our CTO, Les Hazlewood, is the PMC Chair.
This post will demonstrate how to add permission data to your user accounts in Stormpath and perform checks on that data with Shiro. We’ll use the Apache Shiro plugin for Stormpath, and you can check out this Beginner’s Webapp Tutorial for a quick intro to the framework.Read more »
This article originally appeared on the Mulesoft blog. A huge ‘Thank You’ to @ddossot for not only building the Stormpath connector, but also for providing us with invaluable feedback along the way. You rock!
The dreaded user table. Think about it: whenever you start working on a new end-user application, you’ll have to create a table to store emails, user information and passwords. And then you’ll need to add support for the password reset workflow. And so on and so forth. The wheel gets re-invented time and again. Of course, you may go sophisticated and decide to manage users in LDAP or even – gasp – ActiveDirectory. Now you would have a whole different range of problems to deal with, starting with interacting with this external directory in a graceful manner.Read more »
Apache Shiro is a Java security framework that performs authentication, authorization, cryptography, and session management with a focus on ease-of-use and flexibility. At Stormpath, we use Shiro to secure our own applications, and we also offer a Shiro plugin that adds Stormpath User Management functionality to Shiro-secured applications. Pairing Apache Shiro with Stormpath gives you a full application security and user management system, with little to no coding.Read more »