ProgNet 2018
I’m currently attending ProgNet 2018 held at SkillsMatter in London. This is an annual conference that focuses on the latest trends and technologies in the .Net space. The conference runs over three days, and consists of a day of talks followed by two days of instructor-led workshops.
I’ve been several times before and it’s always a good event, with a variety of topics covered over the three days. I especially enjoy the conversations outside of the sessions during the breaks and in the evenings, and the chance to mix with some very knowledgeable people.
During the first day of the conference, I sketchnoted the talks that I attended. Videos for all of the talks are available on the ProgNet 2018 website.
Own The Future
In this talk, Udi talked about the problems that companies tend to have when trying to maintain a piece of software over time. He highlighted the traps that are easy to fall into, including attempting to rewrite the software only to be left maintaining both the original big ball of mud and the rewrite side-by-side. He then suggested some techniques that can help, such as better initial requirements (including “why” something is wanted), giving better estimates, and working in a more iterative way. Ultimately his suggestion is to compose applications using the bounded context idea from Domain Driven Design to give better decoupling, keeping unrelated behaviours separate from each other, and preventing the big ball of mud from happening in the first place.
Let’s Talk HTTP In .Net Core
Many modern applications make use of HTTP for communication for calls between microservices, to 3rd party REST APIs, or even to cloud services. HttpClient is widely used to make these calls, but can cause serious issues if not done properly.
Steve showed some example code for making a remote call using HttpClient, and highlighted the issues that can happen in the underlying TCP layer as a result of its use. He then adapted the code in several steps to show how to use the IHttpClientFactory (introduced in ASP.NET core 2.1) to do it properly, including integrating with DI containers and middleware.
He also introduced Polly, a library for introducing resilience and fault handling into an application. With Polly, it is easy to configure the behaviours that should happen when errors occur, including retries, trimeouts and fallback.
Steve finished off the talk by giving some general tips for working with HTTP calls.
Building Real Time Software With ASP.Net Core SignalR
This talk was a beginner’s introduction to SignalR, a technology that allows real-time asynchronous communication from a server to clients. SignalR has recently been rewritten to remove some of the problems of the previous versions, as well as adding some new features.
Rachel started by explaining how to add SignalR to a web application, including its core concept of hubs that allow the communication between clients and the server. She showed how to configure a hub and how to send messages via it, using both the C# and Javascript clients.
She concluded the talk by highlighting a couple of settings that need to be changed when deploying to Azure to allow SignalR to work properly.
Learning To Code By Making Games
Starting with Scratch, then Hopscotch, and ending up at Unity, Willow (who is only 12 years old) described her journey in making games. Most of the talk revolved around Unity, its ecosystem, and the things that can be achieved with it.
Willow demonstrated some of the games she has made and the tools and techniques used to make them, including the many freely available models, textures, sounds and environments that can be downloaded from the Unit assert store. She then went on to demonstrate what is possible with Unity by showing off some of the freely available game kits (available for both 2D and 3D games) that are useful for learning from. These are full games that include the code and graphics that can be inspected to see how to achieve certain game effects and behaviours.
Security In Cloud Native
Robin talked about the importance of security in modern software, especially in cloud based systems.
He started by giving an overview of cloud native applications and described the three major threats to them: vulnerable software, leaked credentials, and time. These threats can be mitigated using a security model developed by Pivotal called the 3Rs: Repair (fixing software, patching infrastructure, updating dependencies), Repave (destroy and recreate environments to destroy anything nasty that may have got inside), Rotate (change credentials, certificate, keys regularly).
Robin went on to talk about the different cloud providers (e.g. Microsoft Azure, Amazon AWS, Google Cloud), and how they will always be better than you at security - they employ more knowledgeable security people and have more visibility and exposure to the latest threats.
After introducing some of the security issues that are easy to do with cloud applications and how to mitigate them, Robin concluded by showing some tools to help to secure your cloud applications.
Turning Passion Into Experience
Shawn spoke about the importance of having passion and excitement about what you do as a developer. It is not enough however to have just these attributes - you have to be willing to take risks alongside them. He talked about his own experiences of following technologies that even though short-lived, gave him the opportunity to learn new things.
He gave examples from his own career of having imposter syndrome, and weighed it up against the arrogance that some developers use as camouflage to hide their insecurities. He also stressed the importance of saying “I don’t know” and that it is ok to do so, even as an experienced developer.
Shawn talked again about some of his failures, and highlighted how failures are useful because they are a learning opportunity and a moment of growth that you will be better for after experiencing. This has to be balanced against risk however, and you should understand what level of risk you are willing to take.
Career Advice For Programmers
Trisha talked about how she now has the job she really wants (she is a developer advocate at Jetbrains and works remotely from Spain) after steering her career in that direction over a number of years.
She talked about the recruitment of developers and how the software industry is not very good at measuring programming ability, meaning that figuring out who to hire and reward is hard. As a result, being good at a job is not the same as looking good at a job. She then gave some tips on how to “hack the system” so that you can look like you are good at your job.
She concluded the talk by giving some advice on how to iterate on your career to move it forward.
DDD Reading 13
At the weekend, I went down to Reading to attend DDD 13. Hosted at Microsoft’s offices the DDD Reading event is the mother of all of the DDD events, with the first one held back in 2005.
Here are the sketchnotes I took of the talks I attended.
Quantum Computing: Don’t Panic
by Anita Ramanan and Frances Tibble
Web Assembly, Blazor, And The Future Of Web Development
From Monolithic Monster To Majestic Microservice App
Automate Your Test Infrastructure With Kubernetes
DDD South West 8
I attended DDD South West at the weekend in Bristol. As usual, it was a great event.
Here are the sketchnotes I took of the talks I attended.
Outside-In TDD
Give It A REST - Tips For Designing And Consuming Public APIs
Kubernetes For .Net Developers
Teaching An Old Dog New Tricks
Patterns And Practices For Building A Better Web API Architecture
Cambridge Alexa Devs Meetup
I recently attended the inaugural meetup of the Cambridge Alexa Developers Group held at Amazon’s Cambridge office. The group was set up by Bob Harris and Rich Merrett, who both gave talks on building Alexa skills and SSML.
David Low, Amazon’s Head of Solutions Architects, also gave a talk about how to best create a skill by working out its user value:
One particlarly interesting thing covered was a formula for working out whether a skill will be a “killer skill”:
| Cusomter value | × | Contexts | × | Frequency | × | Multipliers |
| Complexity | × | Friction |
The higher the output of this formula, the higher the likelihood that a skill will be succesful.
While this talk wasn’t recorded, he has given a similar talk before that was.
NDC London 2018
Last week I attended NDC London. It’s not the first time that I’ve been, but it is the first time I’ve done the workshops that run alongside the main conference.
I attended the “Identity & Access Control for modern Applications and APIs using ASP.NET Core 2” workshop hosted by Dominick Baier and Brock Allen. This was a two day workshop consisting of a mixture of presentation, discussion, and hands-on labs. It dived deep into the security aspects of modern ASP.Net applications, specifically the application itself and its APIs. The first day focused on how external authentication (via OAuth 2.0 and OpenID Connect) could be used to save having to implement authentication yourself in your application. The second day took this further and focused on how to secure an API that you may have in an application so that you can call it server-to-server, from mobile applications, or from JavaScript applications.
The remaining three days of the conference was in the form of talks. Like I’ve done before, I sketchnoted many of the sessions that I attended.
What Is Programming Anyway?
The Power Of Technical Decisions
You Build It, You Run It
An Introduction To Kotlin
Composite UIs: The Microservices Last Mile
Designing For Speech
Jewelbots: How To Get More Girls Coding
Who Needs Dashboards?
Pilot Decision Management
A Developer’s Guide To Machine Learning
CSP XXP STS PKP CAA ETC…
Web Apps Can’t Do That, Can They?
These are the other talks I attended but didn’t sketchnote:
C# 7.0
C# 7.1 and 7.2: The Releases You Didn’t Know You Had
The Psychology Of Social Engineering
The Modern Cloud
The Hello World Show Live
hosted by Heather Downing and Spencer Schneidenbach