There are several different ways to design an application to log in to an OAuth2 server: authorization code, resource owner, device grant, and client credentials. This talk will cover each method, how to use it, and when to use it. This talk assumes some basic programming knowledge, and will use Python for examples.
The YouTube live stream button is a go.wisc redirect that will go live no later than 8:30am on June 2nd.
Keynote Description
We, as IT professionals, play a critical role in designing, developing, and supporting the digital campus. We have created and evolved the digital campus over the last forty years, and in 2020 it became the primary mode of interaction for our communities. What can we learn from the rapid pivot to online, and more importantly, how can we evolve our thinking and approaches?
Let’s discuss how we can use our expertise and our voice to create digital spaces where people can thrive. Using ideas from fields such as critical design practices, conflict management, and polarities, we will explore the most effective approaches for providing spaces where multiple voices are empowered, and diverse communities can thrive.
The session will be interactive.
Opening Remarks for the conference will take place from 8:45-9:15am
WordPress’ ReactJS based editor has a lot of power but also isn’t clearly defined on how you can implement it. This talk demonstrates a couple of ways you can implement the gutenberg editor, how it helps developers maintain large numbers of content modules, how it helps designers apply design patterns, and how it helps users make better content.
Attendees will learn that gutenberg has a lot of concern behind it but the potential benefits are enormous.
*Captions have been auto-generated via YouTube. We are actively working to edit these. Please check back if you need captions.
Description
A walk-through of a tested, GitHub-Action workflow for publishing Python code to PyPI. Topics covered include: setup.cfg vs setup.py, using a published open source setup.cfg-builder, rethinking the requirements.txt file, and automated semantic versioning.
PyPI-publishing doesn’t have to be tedious. Semantic versioning is your friend. Pip-installing packages by GitHub-commit URLs will cause errors.
My audience needs to know how to use GitHub and a basic understanding of Python packaging and PyPI (pip).
Low-friction integration with AWS DynamoDB via Clojure is possible! This session will provide observations on the way these technologies fit well together. I’ll talk about why this is low friction- specifically the tradeoffs in data qua data vs object-oriented models, and that faced with a similar problem a similar technical solution might be a good fit.
The intended audience is one with basic programming familiarity; the point is to appreciate the shape and fit of the technologies, to appreciate that a working solution works, and why it works, and what features make more or less friction in the integration.
Get an update on the Interop Initiative including new infrastructure services and capabilities, and plans for the coming year. Learn about the new tools and approaches that are coming online, and how they impact data access and integration.
Description
There are lots of things to consider for estimating a true cost of a website or webapp. We will be reviewing some considerations that impact the long-term cost and maintainability of your website or webapp. We give you a checklist to review so you understand if you’re heading down a path to an expensive future with that new website/webapp that you want to create, and some tips on how to reduce the total cost of ownership (TCO). Learn evaluation tools that will help you get a website/webapp with a lower cost of long-term ownership.
Azure Devops provides a platform for executing IaC pipelines. We will explore using GitOps to automatically trigger terraform build pipelines in dev, staging, and production environments. We will also explore the automation of Azure Image creation and the automation of vm patching. Learn how to automatically take infrastructure as code from a development environment to staging and production environments through Azure DevOps Pipelines and GitOps. This session is perfect for people in DevOps who are interested in automating their IaC development and deployment cycles.
This presentation discusses the Qualys Container Security scanner GitLab integration. DevOps is quickly changing the way that organizations build and deploy web applications such as Docker containers. With container technology, build workflow needs rapid release cycles and continuous deployment. By integrating automated security testing into the development tool chain workflows, developers can identify security issues associated with containers early in their build process. We will discuss the scripts and source code for tools to provide access to the Qualys container vulnerability scanning system through GitLab CI/CD jobs. This integration into a GitLab project allows developers to trigger a Docker container image scan pipeline on the image of their choosing. Any vulnerabilities found will be posted as a GitLab issue in the project from which it is executed. This integration uses a pre-configured VM for the GitLab runner that obtains access to what it needs via AWS IAM roles. This allows any developer with a project on the same GitLab instance to incorporate the Qualys scanner job by including a GitLab CI/CD template in their own gitlab-ci.yml file without having to set up access to the Qualys API for themselves. At the end of the presentation, participants will be able to learn about the architecture, scripts and source code, sample reports as well as setup instruction documentation and on-going improvements.
The architecture, scripts and source code, sample reports as well as benefit of container scanning, setup instruction documentation, and on-going improvements.
Are you interested in connecting with like-minded colleagues who are working in similar domains around campus? IT Connects supports many existing, new, and potential Communities of Practice across campus covering several domains of interest. Learn about new and existing CoPs, best practices, building community, and how you can start your own CoP! Representatives from several IT communities of practice will be on hand to answer any questions you may have about their groups including the new DevSecOps CoP, the Carpentries CoP, WordPress CoP, Distributed Developers CoP, Agile CoP, DataWonks, CLAC, UW Design Community, and more!
Want to present your CoP in this session? Contact Amanda Thornton.