CS-443 Introductory Post

 This is the introductory post for CS 443 for the Spring 2025 Token Assignment. This is where I will make blog posts for assignments this semester.

Comments

Post a Comment

Popular posts from this blog

CS-443 Tasks 4 and 5

This post is for tasks 4 and 5 for CS-443 for Spring 2025. Since there is no #blogs-and-podcasts channel in the Discord, I am just posting them here. Task 4 The blog I found relating to the content for this course is https://blog.qasource.com/. This blog talks about a lot of quality assurance methodologies and best practices. I chose this blog because one of my colleagues actually recommended this close to the beginning of my career, and I have seen different posts on it over the years. Task 5 The podcast I found relating to the content for this course is https://www.garymcgraw.com/technology/silver-bullet-podcast/. This podcast talks specifically about penetration testing and different security practices. I chose a podcast with this focus because pentesting is one of my areas of expertise, and I listen to this podcast whenever a new episode comes out.
Read more

Sprint 2 Retrospective

In this post, I’ll be reflecting on our second sprint towards developing and implementing an Identity and Access Management system for Thea’s Pantry. Coming out of Sprint 1, we had a better idea of Keycloak in general, and we had some basic frameworks for a fake frontend and fake backend. Our sprint goal for Sprint 2 was to fully integrate these components, so that we could provide a proof of concept for the entire workflow, as opposed to just one component. We wanted to be able to force authentication on a frontend page via a Keycloak login page, and then we wanted to be able to store the resultant access token from that interaction so that we can perform authenticated actions without ever talking to Keycloak again. Some of my personal work towards that goal was as follows: GitLab Documenting our low-level issues in GitLab and assigning them accordingly. I put additional focus/effort this sprint into properly linking related issues, blockers, and tracking various key information in co...
Read more

Sprint 1 Retrospective

In this post, I’ll be reflecting on my group’s first sprint towards developing an Identity Access Management System for Thea’s Pantry. Our focus in Sprint 1 was really to get a base understanding of Keycloak and to implement a basic framework that would allow us to integrate Keycloak with the pre-existing systems. Some of my personal work towards that goal was as follows: GitLab Documenting our low-level issues in GitLab and assigning them accordingly. Epic Backend Create API endpoint specification and schemas for role checking functionality. Endpoint , Schemas Create test calls with mock JWTs to test the endpoint. Test Call Implement backend JWT processing/decoding logic. CheckRole.js Implementation Frontend Containerize the fake frontend in a way that allows it to interact with the backend for testing purposes. Containerization Create a dummy frontend with buttons that send mock JWTs to the new backend endpoint for testing purposes. This frontend sends encoded JWTs that contain user...
Read more