this is a short story about a little trick that can help us to separate constraints, optimize performance and have a cool way to insert styles to our pages.

Anyone who made a website knows that there are many ways of include CSS lets talk about the main ones

Inline-style

This kind of insertions of CSS is very popular because of the new trends of js frameworks that use “CSS in js” this can be archived inside of the style attribute, this is great if you have preprocessors to optimize the CSS used or something that can help us to…


CSP is here

Hi welcome to another mini-post, this is about CSP let's start defining CSP content security policy this is a security layer based on mitigation of XSS attacks and data injection.

To activate CSP you must make a setup in your server configuration to add this header

Content-Security-Policy

in some older versions, this header was:

X-Content-Security-Policy
or
X-WebKit-CSP

or alternatively, you can set a meta tag defining it as this but not recommended:

<meta http-equiv="Content-Security-Policy" content="">

But more important what can we delimit with a CSP?

We can set policies based on this directives:

  • default-src: This directive sets a default source…


when we talk about client-side applications, advantages of microservices and micro-frontend, integrations from the client-side, and make our apps more independent we are talking about these common issues lets describe them briefly.

CORS(cross-origin resource sharing) for security communicational reasons browsers restrict cross-domain requests, but what is a cross-domain request? imagine a web served from an URL

https://my.web.com

That ask resources via XMLHttpRequest from another like this can be made via GET, POST, PUT, or PATCH methods.

https://other.web.net/some-resource.json

This is a cross-domain request because those are separated domains this could be owned by different developers/organizations and because of that, the browser…

Giorgiosaud

passionated web developer everything that you do with passion will make you a better person

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store