Drifting Ruby

Interview with Frank Rietta

#183 Apr 17, 2019 free

In this interview, Frank Rietta, a security expert in web applications, talks about various recommendations for securing a Ruby on Rails application. Many areas are explored from code, staff, servers and infrastructure.

security interview

Policy Manager with GDPR Rails

#164 Dec 16, 2018 pro

Using the gdpr_rails gem, we look at adding a policy manager to require users to accept age, terms, and privacy policies before signing up for an account.

rails security

Friend Requests From Scratch

#155 Oct 14, 2018 pro

Part I - In this episode, we create our authentication for users, default view for authenticated users, friendship model, associations and scopes for our social media application.

rails model security series - social media

Safely Running Shell Commands

#151 Sep 16, 2018 pro

We may come across a need to run shell commands and Ruby has some built in methods which appear safe, but can introduce major security risks.

rails security ruby

Search Encrypted Attributes with Blind Index

#139 Jun 24, 2018 pro

Keeping client data protected is important, but once an attribute is encrypted, it becomes difficult to work with it. With Blind Index, we regain functionality on searching and validations.

rails model security

Preparing for General Data Protection Regulation (GDPR)

#129 Apr 15, 2018 pro

In this episode, we look adding in some of the requirements of the General Data Protection Regulation into our Ruby on Rails application. Disclaimer: this episode is not legal advice and you should consult a lawyer.

rails security

Restricting Access by IP Address

#92 Aug 6, 2017 free

Learn to lock down your application or parts of your application by IP Addresses.

rails security

Client Side Encryption

#63 Jan 15, 2017 free

Add an extra level of security to your application with client side encryption. Even over an SSL connection, there are attacks which could expose your users' sensitive information. Using JSEncrypt, learn how to encrypt on the client side and decrypt on the server side.

rails security javascript encryption

Security and Static Code Analyzers

#62 Jan 8, 2017 free

Whether you're preparing for a third-party security scan or already doing peer code reviews, you should always run brakeman scanner on your application to identify potential security vulnerabilities.

rails security

Rails API - Throttling with Rack::Attack

#52 Oct 30, 2016 free

Save expensive calculation time using Rack::Attack, we will learn how to limit requests coming into our application. This gem not only limits requests, but can be used to blacklist or whitelist users as well.

rails api security

View

Episodes

Sort

Tags

Interview with Frank Rietta

Policy Manager with GDPR Rails

Friend Requests From Scratch

Safely Running Shell Commands

Search Encrypted Attributes with Blind Index

Preparing for General Data Protection Regulation (GDPR)

Restricting Access by IP Address

Client Side Encryption

Security and Static Code Analyzers

Rails API - Throttling with Rack::Attack

Learning Paths

Video Logs new

Blog

Merchandise

Forums new

View

Episodes

Sort

Tags

Interview with Frank Rietta

Policy Manager with GDPR Rails

Friend Requests From Scratch

Safely Running Shell Commands

Search Encrypted Attributes with Blind Index

Preparing for General Data Protection Regulation (GDPR)

Restricting Access by IP Address

Client Side Encryption

Security and Static Code Analyzers

Rails API - Throttling with Rack::Attack