Submissions
JSFoo 2018

JSFoo 2018

On JavaScript and Security

Make a submission

Submissions are closed for this project

NIMHANS Convention Centre, Bengaluru

Submission guidelines

None

Make a submission

Submissions are closed for this project

Submissions

MA

Md. Shahbaz Alam

APIs Strike back : The rise of the JSON Web Tokens

Most APIs today use an API Key to authenticate legitimate clients. API Keys are very simple to use from the consumer perspective: You get an API key from the service (in essence a shared secret). Add the key to an Authorization header. Call the API. However, life isn’t as easy from the API producer part. In this talk, I’ll show how using JWTs as API Keys has greatly improved our architecture by g… more
  • 1 comments
  • Under evaluation
  • 21 Oct 2017
Technical level: Intermediate
PK

Patrick Kettner

JavaScript without JavaScript

With the help of a handful of amazing open source programs, we can now transpile nearly any programming language to JS, making it a sort of modern assembly language. In a fun and code heavy talk, I’ll show how you can leverage pre existing libraries today in order to get amazing performance and features in your current web apps, creating possibilities you never dreamt possible in the web browser.… more
  • 0 comments
  • Submitted
  • 01 Nov 2017
Section: Full Talk Technical level: Intermediate
PK

Patrick Kettner

Creating magic with Houdini

Since the dawn of (internet) time, web developers have been at the mercy of browsers when it comes to features. But what if the black magic they use to create new HTML and CSS properties were given to you? Thats exactly what the Houdini working group is working to provide web developers today! In a futuristic, code heavy session I will show how in the not too distant future, you will be able to c… more
  • 0 comments
  • Submitted
  • 01 Nov 2017
Section: Crisp Talk Technical level: Intermediate
H

Hemanth.HM

Rethink Async

Callback hell? Promises? Hmm, they are old, let us talk about async-await?! more
  • 2 comments
  • Confirmed & scheduled
  • 29 Dec 2017
Technical level: Advanced
RK

Ritesh Kumar

Web Workers : A graphical intro

Thanks to the introduction of PWAs, the web is getting faster. But they can be improved further. This talk will focus on how we can use the power of web workers and improve the performance of our websites. more
  • 2 comments
  • Confirmed & scheduled
  • 22 Jan 2018
Section: Full Talk Technical level: Intermediate
AG

Arnav Gupta

Authentication done right: Consuming (and Serving) Oauth2.0

Your brand has multiple products on the web. They all need authentication. But obviously, you’d maintain a common authentication and user database. Also, in this age, you cannot make a login system without Login with [Facebook|Google|Twitter|...] For the second thing, you need to consume Oauth2.0 (the industry standard now), for the first thing, you need to make your own Oauth server. And you wan… more
  • 0 comments
  • Confirmed & scheduled
  • 02 Feb 2018
Technical level: Advanced
AV

Aparna Vaikuntam

Just make sure you don't have a form

Thats right. Forms, where you enter some data and submit. No one knows the magic formula for making users happy but one generally accepted way to fail is to have a registration form. To be avoided at any cost. But hang on. What if form input is the primary way the user interacts with your application? Say, you have a loan processing system for capturing financial data of people running micro ente… more
  • 5 comments
  • Submitted
  • 05 Feb 2018
Section: Full Talk Technical level: Intermediate
SC

Sachin Chopra

New kids in the Browserland.

In this talk, I propose to talk about some of the recent wonderful API’s that have been added in the browser. more
  • 2 comments
  • Under evaluation
  • 18 Feb 2018
Section: Crisp Talk Technical level: Intermediate
JP

Jay Phelps

WEBASSEMBLY DEMYSTIFIED

A revolution is about to begin. WebAssembly (aka wasm) is shipping in all modern browsers, but since it’s (intentionally) a very low level compilation target, it can be difficult to understand how it will be critical to future web applications–and definitely not just games and C++! more
  • 2 comments
  • Waitlisted
  • 26 Feb 2018
Technical level: Intermediate
PS

Prasenjit Sharan

The State of Functional Programming Languages for Web Development

The most popular web programming ecosystems revolve around JavaScript. JavaScript was invented as a programming language for web browsers with basic aims — to enable simple interactions within a web page. It has evolved to become the standard programming language to write web applications of all complexities. more
  • 2 comments
  • Under evaluation
  • 26 Feb 2018
Section: Full Talk Technical level: Intermediate
BL

Ben Lesh

Complex Features Made Easy With RxJS

In this talk we will add a set of complex features to an existing angular application. these features will have to coordinate animations, user events, and HTTP to improve the UX of the application. more
  • 0 comments
  • Confirmed & scheduled
  • 29 Mar 2018
Section: Full Talk Technical level: Intermediate
DP

Deepak Pathania

The art of writing mature tests

As developers, we are all well aware of the importance of writing tests. Whether it is the safeguard against letting silly bugs slide in production code or enforcing certain styles and practices for everyone involved in contributing to the code base, we can all agree that writing tests is an important part of the development lifecycle. But there is something else also we can all agree on. more
  • 2 comments
  • Confirmed & scheduled
  • 30 Mar 2018
Section: Full Talk Technical level: Intermediate
VD

Vijay Dharap

Curious Case of Ionic4

Why should we even care about Ionic? All those JS developers out there - who always wanted to build Mobile apps but did not know/have time for investing in Android and iOS ecosystems… Ionic is your dream-come-true. Ionic has been a darling for such web developers for at least 4-5 years now. Ionic has always placed maximum emphasis on User Experience than on anything else! more
  • 0 comments
  • Submitted
  • 07 May 2018
Section: Full Talk Technical level: Beginner
SS

Subash SN

Learn secure web development using Damn Vulnerable NodeJS Application

Damn Vulnerable NodeJS Application (DVNA) is a simple NodeJS application to demonstrate OWASP Top 10 Vulnerabilities and guide on fixing and avoiding these vulnerabilities. In this hands-on workshop we will understand, exploit and learn how to fix/avoid OWASP Top 10 vulnerabilities. more
  • 1 comments
  • Under evaluation
  • 17 May 2018
Section: Workshop Technical level: Intermediate
SS

Shyam Seshadri

One Code to Rule Them All - Developing Native Android / iOS app + Web App with one common codebase

This talk covers an approach of how it might be possible to develop a native android, native iOS and a web app, while using the same codebase for the most part, and just writing specific views. In particular, the talk will go into details on how we accomplished this at our startup and pushed a production Android and Web app using NativeScript + Angular. more
  • 0 comments
  • Confirmed & scheduled
  • 30 May 2018
Section: Crisp Talk Technical level: Advanced
PJ

Pulkit Juneja

Markerless Augmented Reality using three.js

Three.ar.js is an extension for three.js that allows developers to create pure markerless AR apps using javascript. It does so by leveraging the power of ARkit on IOS and ARcore on android. We will first g through the basics of markerless AR and how it works, followed by a hands-on session in which the participants will create their very own AR application more
  • 0 comments
  • Waitlisted
  • 31 May 2018
Section: Workshop Technical level: Intermediate
s

sanjay_manwani

MySQL 8 loves JavaScript

MySQL 8.0 which has recently gone GA is now a fully functioning NoSQL and SQL database. The newly introduced X-Shell allows users to create interactive JavaScript programs for DevOps, Database Management and applications. The new Node.JS connector is also aware that it is interacting with a cluster of MySQL Servers e.g. it is also capable of performing an auto failover. This session will also int… more
  • 0 comments
  • Confirmed & scheduled
  • 31 May 2018
Section: Full Talk Technical level: Intermediate
LK

Lavakumar Kuppan

Everything you need to know about Client-side Malicious Code Execution

Malicious Code Execution is considered to be one of the most serious security issues across any technology. This has plagued client-side JavaScript in the form of Cross-site Scripting. Though this issue has been around since the early days of the web, its variations, prevention techniques and detection mechanisms have evolved over time. This talk will cover everything a modern developer absolutel… more
  • 1 comments
  • Confirmed & scheduled
  • 31 May 2018
Section: Full Talk Technical level: Intermediate
DG

Domenico Gemoli

End-to-end testing: from rookie to pro

You can gain a lot from a stable suite of end-to-end tests, but not a lot of developers know how easy it is to setup these tests. Dive into this crash course on end-to-end testing, you’ll first learn the basics and then some advanced techniques that will have you testing like a pro in no time. more
  • 1 comments
  • Waitlisted
  • 21 Jul 2018
Section: Full Talk Technical level: Beginner
TD

Tejas Dinkar

Quick Fixes To Improve Pageload Time

this talk will be a beginner-mid level talk about quick wins you can do to improve your js performance more
  • 1 comments
  • Confirmed & scheduled
  • 10 Aug 2018
Technical level: Beginner
KA

Kiran Abburi

Building scalable backends with GraphQL

GraphQL is a powerful technology for building modern apps and API servers. Traditionally, we have to either implement client (desktop or mobile) specific API endpoints or build generic API endpoints by compromising on performance. GraphQL enable clients to query data they require. This lets us build a generic graphql schema that works for all the clients without compromising on performance. Graph… more
  • 0 comments
  • Waitlisted
  • 23 Aug 2018
Technical level: Advanced
AK

Ashrith Kulai

VueJS at Olacabs

How we chose a framework for entire org of Olacabs.com. What frameworks did we consider? Why Did we chose VueJs? One Web - The wrapper around VueJS that helps us use it at scale. more
  • 1 comments
  • Confirmed & scheduled
  • 23 Aug 2018
Technical level: Beginner
SS

Shyam Seshadri

Demystifying Web Application Security

Web Application security has generally been focused aroud OWASP, and terms like XSS, CSRF and the like are generally thrown around. In this talk, the aim is to change the mind-map of how we think about and approach security, and outline a methodology that allows you to think about security in a holistic, comprehensive manner. This talk will not specifically talk about security hole A or B, but ra… more
  • 0 comments
  • Confirmed & scheduled
  • 30 Aug 2018
Section: Full Talk Technical level: Intermediate
AA

Ashish Anand

Developing responsive UIs with no coding

SAP Fiori elements provide designs for UI patterns and predefined templates for commonly used application patterns. You can use SAP Fiori elements to create SAP Fiori applications based on OData services and annotations requiring no JavaScript UI coding. The resulting app uses predefined views and controllers that are provided centrally, so no application-specific view instances are required. The… more
  • 0 comments
  • Rejected
  • 29 Aug 2018
Technical level: Intermediate
SS

Saptak Sengupta

Why Should I Use a Linter?

This talk is going to be about the importance of linting in an open source javascript codebase or any codebase with lot of contributors. A well-readable codebase, even when decentralized should feel like it was written by an individual following the same standards throughout. Linting helps us do that. This talk will include the use of linting, why it is important and real world examples with bunc… more
  • 0 comments
  • Under evaluation
  • 28 Aug 2018
Section: Full Talk Technical level: Beginner
AM

Ankit Muchhala

Building a secure BFF at Postman

Introduce audience to security implications while writing application code for public facing gateway services. The talk will not be a tutorial on security best practices. Instead, it will focus on building an understanding for developing secure applications and outline ways to do so. more
  • 3 comments
  • Confirmed & scheduled
  • 30 Aug 2018
Section: Full Talk Technical level: Intermediate
SK

Siddharth Kshetrapal

What makes JSON Web Tokens (JWT) secure?

There’s a lot you have to think about when building frontend applications - routing, performance, animations, etc. Security often takes the back seat (not cool!) more
  • 1 comments
  • Confirmed & scheduled
  • 03 Sep 2018
Section: Full Talk Technical level: Intermediate
RN

Rahul Nanwani

Using Service Workers to improve dynamic image delivery in the browser

As mobile data and mobile devices become more and more accessible in India, we need to build experiences not just for the high-end users but also vary our content dynamically to cater to users with slower devices or poor network connectivity. Images being the single largest contributor to page size provide a great, yet simple, opportunity to optimize for a faster experience to all the users. more
  • 2 comments
  • Confirmed & scheduled
  • 03 Sep 2018
Technical level: Intermediate
SM

Shahidh K Muhammed

Architecture of scalable and resilient NodeJS apps with GraphQL & event-driven serverless

The true power of GraphQL lies not just in its syntax but the fact that it makes it possible to reason about applications in ways we have never thought of before. The realtime bits of the GraphQL spec is one such horizons-widening abstraction when we use it as a tool to think about architecting an asynchronous, event-driven backend. more
  • 1 comments
  • Confirmed & scheduled
  • 06 Sep 2018
Section: Full Talk Technical level: Intermediate
HG

Hari Gopal

ReasonML: Strict, powerful, and forgiving.

As a developer, I’ve worked for over 9 years with dynamically typed languages, and for the past year, I’ve been learning and working with a new language called ReasonML - a statically typed functional “language” which, in reality, is a brand new syntax for OCaml. And it compiles to Javascript! I’ve been using ReasonML to build a password manager for teams, and I’d like to share a few insights tha… more
  • 0 comments
  • Confirmed & scheduled
  • 07 Sep 2018
Section: Full Talk Technical level: Beginner
SG

Sagar Ganatra

Application Architecture Essentials; from zero to one

The first step to build a front-end application is to architect it keeping in mind a plethora of requirements. Every application that you build has a different front-end architecture - server-side rendered application, client-side SPA, isomorphic application, static site etc. This talk not only presents a checklist but also mentions various design patterns that can be applied to the front-end arc… more
  • 1 comments
  • Awaiting details
  • 07 Sep 2018
Technical level: Intermediate
R

Ritesh

Building robust applications using Elm

At BigBinary, we are in the process of building AceHelp with the aim to provide contexutal help docs for websites and webapps. Contextual help takes into account which page the user is on and what help doc might be most relevant for the user. more
  • 0 comments
  • Confirmed & scheduled
  • 10 Sep 2018
Section: Full Talk Technical level: Beginner
DS

Divyendu Singh

End to end type safety with GraphQL

GraphQL brings strong typing on top of data exchange capacities. One of the biggest advantages of GraphQL over REST is that it is strongly typed. In this talk, we will go through the tools that introspect a GraphQL schema and generate code in various parts of the stack to provide type-safety across stack. more
  • 0 comments
  • Waitlisted
  • 11 Sep 2018
Technical level: Beginner
DT

Dominic Tarr

The Audit Driven Approach to Security Design

Secure Software is more important than ever, yet there is very little guidance available on how to go about producing secure software. “Audit Driven Security” is a software engineering methodology, inspired by Test Driven Development, that you can learn to use to produce secure software. more
  • 0 comments
  • Confirmed & scheduled
  • 12 Sep 2018
Technical level: Intermediate
SA

Swapnil Agarwal

New Kids in Browserland

I will talk about some of the recent wonderful APIs that have been added to the browser. more
  • 0 comments
  • Confirmed & scheduled
  • 09 Oct 2018
Technical level: Intermediate
Make a submission

Submissions are closed for this project

NIMHANS Convention Centre, Bengaluru

Hosted by

JSFoo is a forum for discussing UI engineering; fullstack development; web applications engineering, performance, security and design; accessibility; and latest developments in #JavaScript. Follow JSFoo on Twittermore