briefcase - topics of these days

Umbraco CMS

Umbraco is a free open source Content Management System built on the ASP.NET platform.

For the first time on the Microsoft platform, there is a free user and developer friendly CMS that makes it quick and easy to create websites - or a breeze to build complex web applications. Umbraco has award-winning integration capabilities and supports ASP.NET MVC or Web Forms, including User and Custom Controls, out of the box. It’s a developer’s dream and your users will love it too.

Used by more than 350,000 active websites including,,, and The Official ASP.NET and IIS.NET website from Microsoft ( /, you can be sure that the technology is proven, stable and scales.

Wasabi HTTP framework

An HTTP Framework built with Kotlin for the JVM.

Wasabi combines the conciseness and expressiveness of Kotlin, the power of Netty and the simplicity of Express.js (and other Sinatra-inspired web frameworks) to provide an easy to use HTTP framework.

start script


buildscript {
    project.ext.kotlin_version = '1.0.1-2'
    project.ext.wasabi_version = '0.1.182'
    repositories {
        maven {
            url ""
    dependencies {
        classpath "org.jetbrains.kotlin:kotlin-gradle-plugin:$kotlin_version"

apply plugin: 'kotlin'
apply plugin: 'application'

mainClassName = ''

repositories {
    maven {
        url ""
    maven {
        url ""

dependencies {
    compile "org.wasabi:wasabi:$wasabi_version"
    compile "org.jetbrains.kotlin:kotlin-stdlib:$kotlin_version"

sourceSets {
    src {
        main {
    test {
        main {
    } += 'src/main/kotlin'

task wrapper(type: Wrapper) {
    gradleVersion = '2.8'

Each Wasabi application is composed of a single AppServer on which you define route handlers. A route handler can respond to any of the HTTP verbs: GET, POST, PUT, DELETE, OPTIONS, HEAD. A normal application consists of a section where you define a series of parameters for the application, followed by your handlers (i.e. your routing table).




Web backend framework for Kotlin.




Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients.

Netty is a NIO client server framework which enables quick and easy development of network applications such as protocol servers and clients. It greatly simplifies and streamlines network programming such as TCP and UDP socket server.

‘Quick and easy’ doesn’t mean that a resulting application will suffer from a maintainability or a performance issue. Netty has been designed carefully with the experiences earned from the implementation of a lot of protocols such as FTP, SMTP, HTTP, and various binary and text-based legacy protocols. As a result, Netty has succeeded to find a way to achieve ease of development, performance, stability, and flexibility without a compromise.

  • discard-client discard-server
  • echo-client echo-server
  • factorial-client factorial-server
  • file-server http-cors-server
  • http-file-server http-helloworld-server
  • http-snoop-client http-snoop-server
  • http-upload-client http-upload-server
  • websocket-client websocket-server
  • http2-client http2-server
  • http2-tiles http2-multiplex-server
  • spdy-client spdy-server
  • worldclock-client worldclock-server
  • objectecho-client objectecho-server
  • quote-client quote-server
  • securechat-client securechat-server
  • telnet-client telnet-server
  • proxy-server socksproxy-server
  • memcache-binary-client stomp-client
  • uptime-client sctpecho-client
  • sctpecho-server localecho

reference is a web framework for Python that is as simple as it is powerful. is in the public domain; you can use it for whatever purpose with absolutely no restrictions. was originally published while Aaron Swartz worked at, where the site used it as it grew to become one of the top 1000 sites according to Alexa and served millions of daily page views. “It’s the anti-framework framework. doesn’t get in your way,” explained founder Steve Huffman.

The Philosophy

The slogan is: “Think about the ideal way to write a web app. Write the code to make it happen.”

This is literally how I developed I wrote a web application in Python just imagining how I wanted the API to be. It started with import web, of course, and then had a place to define URLs, simple functions for GET and POST, a thing to deal with input variables and so on. Once the code looked right to me, I did whatever it took to make it execute without changing the application code – the result was

In response to someone complaining about having “yet another template language”, I wrote a bit more about my philosophy:

  • You don’t have to use it – each part of is completely separate from the others. But you’re right, it is “yet another template language”. And I’m not going to apologize for it.

  • The goal of is to build the ideal way to make web apps. If reinventing old things with only small differences were necessary to achieve this goal, I would defend reinventing them. The difference between the ideal way and the almost-ideal way is, as Mark Twain suggested, the difference between the lightning and the lightning bug.

  • But these aren’t just small differences. Instead of exposing Python objects, allows you to build HTTP responses. Instead of trying to make the database look like an object, makes the database easier to use. And instead of coming up with yet another way to write HTML, the template system tries to bring Python into HTML. Not many other people are really trying to do that.

  • You can disagree that these ways are better and say why. But simply criticizing them for being different is a waste of time. Yes, they are different. That’s the whole point.

Web2py web framework

Free open source full-stack framework for rapid development of fast, scalable, secure and portable database-driven web-based applications. Written and programmable in Python.

  • Created by a community of professionals and University professors in Computer Science and Software Engineering.
  • Always backward compatible. We have not broken backward compatibility since version 1.0 in 2007, and we pledge not to break it in the future.
  • Easy to run. It requires no installation and no configuration.
  • Runs on Windows, Mac, Unix/Linux, Google App Engine, Amazon EC2, and almost any web hosting via Python 2.5/2.6/2.7/pypy, or Java with Jython.
  • Runs with Apache, Lighttpd, Cherokee and almost any other web server via CGI, FastCGI, WSGI, mod_proxy, and/or mod_python. It can embed third party WSGI apps and middleware.
  • Talks to SQLite, PostgreSQL, MySQL, MSSQL, FireBird, Oracle, IBM DB2, Informix, Ingres, and Google App Engine.
  • Secure It prevents the most common types of vulnerabilities including Cross Site Scripting, Injection Flaws, and Malicious File Execution.
  • Enforces good Software Engineering practices (Model-View-Controller design, Server-side form validation, postbacks) that make the code more readable, scalable, and maintainable.
  • Speaks multiple protocols HTML/XML, RSS/ATOM, RTF, PDF, JSON, AJAX, XML-RPC, CSV, REST, WIKI, Flash/AMF, and Linked Data (RDF).
  • Includes an SSL-enabled and streaming-capable web server, a relational database, a web-based integrated development environment and web-based management interface, a Database Abstraction Layer that writes SQL for you in real time, internationalization support, multiple authentication methods, role based access control, an error logging and ticketing system, multiple caching methods for scalability, the jQuery library for AJAX and effects, and a scaffolding application to jumpstart development.

Stream Framework

Stream Framework is a python library which allows you to build activity streams & newsfeeds using Cassandra and/or Redis. If you’re not using python have a look at Stream, which supports Node, Ruby, PHP, Python, Go, Scala, Java and REST.

Examples of what you can build are:

  • Activity streams such as seen on Github
  • A Twitter style newsfeed
  • A feed like Instagram/ Pinterest
  • Facebook style newsfeeds
  • A notification system


Stream allows you to build scalable newsfeed and activity streams in hours instead of weeks. The documentation will get you up and running quickly. At the moment we have official clients for Ruby, JS/Node, Python, PHP and Java. There are framework integrations available for Rails, Django, Laravel and NodeJS. These framework integrations hook straight into your ORM which makes integration a breeze.


Extensible Messaging and Presence Protocol (XMPP) is an open XML technology for real-time communication, which powers a wide range of applications including instant messaging, presence and collaboration.

Key XMPP technologies:

  • Core — information about the core XMPP technologies for XML streaming
  • Jingle — SIP-compatible multimedia signalling for voice, video, file transfer, and other applications
  • Multi-User Chat — flexible, multi-party communication
  • PubSub — alerts and notifications for data syndication, rich presence, and more
  • BOSH — an HTTP binding for XMPP (and other) traffic


MongooseIM is Erlang Solutions’ robust and efficient XMPP server aimed at large installations. Specifically designed for enterprise purposes, it is fault-tolerant, can utilize resources of multiple clustered machines and easily scale in need of more capacity (by just adding a box/VM).

MongooseIM can accept client sessions over vanilla XMPP, Websockets, and HTTP long-polling (a.k.a. BOSH).


Satellizer is a simple to use, end-to-end, token-based authentication module for AngularJS with built-in support for Google, Facebook, LinkedIn, Twitter, Instagram, GitHub, Bitbucket, Yahoo, Twitch, Microsoft (Windows Live) OAuth providers, as well as Email and Password sign-in. However, you are not limited to the sign-in options above, in fact you can add any OAuth 1.0 or OAuth 2.0 provider by passing provider-specific information in the app config block.


Devise is a flexible authentication solution for Rails based on Warden. It:

  • Is Rack based;
  • Is a complete MVC solution based on Rails engines;
  • Allows you to have multiple models signed in at the same time;
  • Is based on a modularity concept: use only what you really need.

It’s composed of 10 modules:

  • Database Authenticatable: hashes and stores a password in the database to validate the authenticity of a user while signing in. The authentication can be done both through POST requests or HTTP Basic Authentication.
  • Omniauthable: adds OmniAuth ( support.
  • Confirmable: sends emails with confirmation instructions and verifies whether an account is already confirmed during sign in.
  • Recoverable: resets the user password and sends reset instructions.
  • Registerable: handles signing up users through a registration process, also allowing them to edit and destroy their account.
  • Rememberable: manages generating and clearing a token for remembering the user from a saved cookie.
  • Trackable: tracks sign in count, timestamps and IP address.
  • Timeoutable: expires sessions that have not been active in a specified period of time.
  • Validatable: provides validations of email and password. It’s optional and can be customized, so you’re able to define your own validations.
  • Lockable: locks an account after a specified number of failed sign-in attempts. Can unlock via email or after a specified time period.


Android library build on top of retrofit, for simple handling of authenticated requests.

Sequence Diagrams

1.When you execute your first authenticated request on a device, this is going to happen inside of retroauth: image

2.After you have an account and a valid token: image

3.When there’s no current active account but several accounts exist on the device: image

4.When you have at least on account, an active one is set but your token is not vaild (anymore) image


Passport is Express-compatible authentication middleware for Node.js.

Passport’s sole purpose is to authenticate requests, which it does through an extensible set of plugins known as strategies. Passport does not mount routes or assume any particular database schema, which maximizes flexibility and allows application-level decisions to be made by the developer. The API is simple: you provide Passport a request to authenticate, and Passport provides hooks for controlling what occurs when authentication succeeds or fails.

Written on April 1, 2016