Tips, Expertise, Articles and Advice from the Pro's for Your Website or Blog to Succeed
We've all heard a lot about digital transformation and how it affects the IT world. Each of these technologies, whether it's big data, the Internet of Things (IoT), or cloud computing, has made a significant contribution to a range of enterprises. Few people, however, talk about the complexity they add, especially in the context of business network infrastructures.
The fences are crumbling, and there is a hazy peripheral that is causing security concerns.
Today, most companies across industries like IT, healthcare, consumer, retail, manufacturing, etc., are making a move to the cloud. The businesses have realized its potential, and the cloud computing service market is growing exponentially, eliminating costly, time-consuming, and complex in-house cloud infrastructure management. However, among all the aspects of migrating the entire business process to the cloud, selecting a Cloud Service Provider (CSP) is the most crucial and complicated part. Choosing the right cloud provider is not a choice; it is an absolute necessity now.
There are multiple cloud service providers like AWS, Ayla, ClearBlade, Azure, Everything, etc., in the market, out of which AWS (Amazon Web Services), GCP (Google Cloud Platform), and Microsoft Azure are major players. AWS has been in the market for a long, and as per Synergy Research, AWS has a market share of 33%, Microsoft Azure has 13%, and GCP has 6% as a cloud service provider. Such providers offer three kinds of service models – Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS).
Q4 2019 earnings are in for the "big three" cloud providers and you know what that means – it’s time for an AWS vs. Azure vs. Google Cloud market share comparison. Let’s take a look at all three providers side-by-side to see where they stand.
Note: a version of this post was originally published in April 2018 and 2019. It has been updated for 2020.
The closing months of 2019 saw a slew of services by AWS and Azure in their flagship events- Reinvent and Ignite. Notable among them were services leveraging 5G networks for running workloads in the 5G edge to provide ultra low latency. With 5G services set to be mainstream in this decade, this is a first of its kind collaboration model between the two principal parties in the ecosystem - The CSP (Communication Service Provider) and the Cloud Vendor(like AWS/Microsoft Azure). CSP has been referred to as Mobile network or mobile provider's network in this article for ease of understanding.
AWS has partnered with Telco service providers- Verizon, Vodafone, SK Enterprise, KDDI to provide AWS Wavelength and is in the process of adding more partners. As announced, AWS Wavelength will enable developers to build applications that serve end-users with ultra-low latency over 5G network.
According to Gartner, “Cloud computing is projected to grow as a $300 billion business by 2021 and will account for nearly a quarter of all IT budgets.” Companies, regardless of their domain or size, are flocking towards cloud services in order to improve their operational efficiency, increase data security and generate new streams of revenue. Adopting cloud computing gives businesses a great option to access their data from anywhere anytime.
Making a transition to the cloud is an expensive and crucial decision which requires thorough research and planning. Enterprises often feel enormous pressure while choosing a cloud service provider (CSP) to meet their business needs. There are two players that have emerged as the most popular choices in the aggressive cloud platform wars — Amazon Web Services (AWS) and Microsoft Azure. Even though these two cloud service providers have much in common and offer a similar set of services, they do differ in several aspects. So, let’s explore the basic features of both the computing platforms and the key differences between them.
CoinHive is a service that was created in September 2017. It allows users to mine Monero cryptocurrency using JavaScript. CoinHive has remarkably changed the income models of content developers over the course of its 18 month-long adventure. However, due in large part to the drop in hash rate (over 50 percent) after a previous Monero hard fork, and the crash of the market with the value of XMR depreciating more than 85 percent in one year, the service ended March 8, 2019. In this blog post, we look at how crypto mining has developed and how attackers have taken advantage of these models to develop a new attack vector called cryptojacking.
In 2013, Nicolas van Saberhagen released the CryptoNote protocol. It was commonly used on the infrastructure of many coin types, including ByteCoin. The inventor of ByteCoin has been unknown since he announced the cryptocurrency anonymously on the Bitcointalk forum.
It began, as many things do, with a silly conversation. In this case, I was talking with our Front End Technology Competency Director (aka "boss man") Mundi Morgado.
It went something like this…
Mundi Morgado I want you to build a visual screen reader.
Nathan Smith Who what now?
Mundi Morgado I want a CSS library that allows you to see the structure of a document. It shouldn't use class so that you're forced to focus on semantics. Also, make it theme-able.
Nathan Smith Sure, let me see what I can come up with.
Fast-forward a week, and we've got what we are now calling:
Trashy.css: The throwaway CSS library with no class
Why throwaway? Well, it's not really meant to be a fully fledged, production-ready style framework. Rather, it's like training wheels for document semantics, with some bumper lanes (think: bowling) to keep you on the right track.
It's part of our ongoing effort at TandemSeven to promote code literacy throughout our organization. As more of our UX designers are beginning to share responsibility for the accessibility and semantics of a project, it makes sense that we would build in such a way that allows UX and development to be more collaborative.
There are four main aspects to Trashy.
First is the base trashy.css file, which applies a passably basic look and feel to the majority of common HTML elements. Check out this example of a basic page.
Second, there is trashy.boxes.css. This visually distinguishes otherwise invisible semantic elements, such as: header, main, nav, etc. That way, one can see where those elements are (or aren't) as a page is being authored. Here’s a page with semantic boxes outlined.
Thirdly, theming is possible via trashy.theme.css. This is mostly just an example — inspired by PaperCSS) — of how to make UI look "hand drawn," to prevent observers from being too fixated on the look and feel, rather than the semantics of a document. Here’s the example theme in action.
Lastly, there is a trashy.debug.css file that highlights and calls out invalid and/or problematic markup. Here’s a gnarly example of "everything" going wrong on a single HTML page. This was inspired by a11y.css, though it diverges in what is considered noteworthy.
For instance, we call out "div-itis" when multiple div:only-child have been nested within one another. We're also opinionated about type="checkbox" being contained inside of a <label>. This is for maximum click-ability within an otherwise dead whitespace gap, between a checkbox (or radio) and its textual label.
Any or all of these CSS files can be applied individually or in conjunction with one another. There is also a bookmarklet (labeled "GET TRASHY!") on the Trashy home page you can use to get results for any webpage.
The bookmarklet will remotely pull in:
sanitize.csstrashy.csstrashy.boxes.csstrashy.debug.cssA quick word on Santitize.css: It was created by my coworker Jonathan Neal (author of Normalize.css), as a way to have a semi-opinionated CSS "reset." Meaning, it puts in a lot of defaults that we find ourselves writing as developers anyway, so it makes for a good starting point.
Okay, so now that we’ve covered the "why," let’s dig into the "how."
Basically, it all revolves around using (abusing?) the ::before and ::after pseudo elements. For instance, to show the name of a block level tag, we’re using this CSS.
Here is an abbreviated version of the trashy.boxes.css file, for succinctness. It causes the <section> tag to have a dashed border, and to have its tag named displayed the top left corner.
section {
border: 1px dashed #f0f;
display: block;
margin-bottom: 2rem; /* 20px. */
padding: 2rem; /* 20px. */
position: relative;
}
section > :last-child {
margin-bottom: 0;
}
section::before {
background: #fff;
color: #f0f;
content: "section";
font-family: "Courier", monospace;
font-size: 1rem; /* 10px. */
letter-spacing: 0.1rem; /* 1px. */
line-height: 1.3;
text-transform: uppercase;
position: absolute;
top: 0;
left: 0.3rem; /* 3px. */
}Likewise, here’s a snippet of code from the trashy.debug.css file that drives the markup warning messages. This particular example causes <script> tags to be displayed, which may be further optimized or need the developer’s attention: inline JavaScript and/or external src without async.
In the case of inline JS, we set the font-size and line-height to 0 because we’re making the element visible. We yank the text off the page via text-indent: -99999px just to make sure it doesn’t show up. We wouldn’t want that random JS code displayed alongside legit page content.
(Please don’t ever do this for "real" content. It’s just a hack, mkay?)
To get our error message to show up though, we have to set the font-size and line-height back to non-zero values, and remove our text-indent. Then, with a bit more absolute positioning, we ensure the message is visible. This lets us see, amidst the rest of the page content, whereabouts to check (via DOM inspector) for the <script> insertion point.
script:not([src]),
script[src]:not([async]),
script[src^="http:"] {
color: transparent;
display: block;
font-size: 0;
height: 2rem; /* 20px. */
line-height: 0;
margin-bottom: 2rem; /* 20px. */
position: relative;
text-indent: -99999px;
width: 100%;
}
script:not([src])::after,
script[src]:not([async])::after,
script[src^="http:"]::after {
background: #f00;
color: #fff;
display: inline-block;
font-family: Verdana, sans-serif;
font-size: 1.1rem; /* 11px. */
font-weight: normal;
left: 0;
line-height: 1.5;
padding-left: 0.5rem; /* 5px. */
padding-right: 0.5rem; /* 5px. */
pointer-events: none;
position: absolute;
text-decoration: none;
text-indent: 0;
top: 100%;
white-space: nowrap;
z-index: 1;
}
body script:not([src])::after,
body script[src]:not([async])::after,
body script[src^="http:"]::after {
top: 0;
}
script:not([src])::after {
content:
'Move inline <script> to external *.js file'
;
}
script[src]:not([async])::after {
content:
'Consider [async] for <script> with [src="…"]'
;
}
script[src]:not([src=""]):not([async])::after {
content:
'Consider [async] for <script> with [src="' attr(src) '"]'
;
}
script[src^="http:"]::after {
content:
'Consider "https:" for <script> with [src="' attr(src) '"]'
;
}Note: Some scripts do need to be loaded synchronously. You wouldn’t want your "app" code to load before your "framework" code. Heck, some inline JS is probably fine too, especially if you’re doing some super speed optimization for the critical rendering path. These warnings are "dumb" in the sense that they match only via CSS selectors. Take ‘em with a grain of salt, your mileage may vary, etc.
The aforementioned JS bookmarklet finds all <link rel="stylesheet"> and <style> tags in the page, and causes them to be ineffective. This allows us to add in our own CSS to take over, so that the only styles applied are those provided directly via Trashy.
The magic is accomplished by setting rel="stylesheet" to rel="". If an external stylesheet is not identified as such, even if it’s cached, the browser will not apply its styles to the page. Similarly, we destroy the contents of any inline <style> tags by setting the innerHTML to an empty string.
This leaves us with the tags themselves still intact, because we still want to validate that no <link> or <style> tags are present within <body>.
We also check that there aren’t too many <style> tags being used in the <head>. We allow for one, since it could be used for the critical rendering path. If there’s a build process to generate a page with consolidated inline styles, then it’s likely they’re being emitted through a single tag.
<a href="javascript:(
function (d) {
var f = Array.prototype.forEach;
var linkTags = d.querySelectorAll('[rel=\'stylesheet\']');
var styleTags = d.querySelectorAll('style');
f.call(linkTags, function (x) {
x.rel = '';
});
f.call(styleTags, function (x) {
x.innerHTML = '';
});
var newLink = d.createElement('link');
newLink.rel = 'stylesheet';
newLink.href =
'https://t7.github.io/trashy.css/css/bookmarklet.css';
d.head.appendChild(newLink);
}
)(document);">
GET TRASHY!
</a>That pretty much covers it. It's a simple drop-in to help you visualize your document semantics and debug possibly problematic markup.
I have also found it to be super fun to use. A quick click of the bookmarklet on any given site usually yields lots of things that could be improved upon.
For instance, here's what CNN's site looks like with Trashy applied…
If you try this with Twitter’s site, you might wonder why it doesn’t work. We were initially perplexed by this, too. It has to do with the site's Content Security Policy (CSP). This can be used to disallow CSS and/or JavaScript from being loaded externally, and can whitelist safe domains.
This can be set either at the server level, or by a <meta> tag in the <head>.
<meta http-equiv="Content-Security-Policy" content="…" />Read more about CSP here.
I know what you’re thinking...
Can’t you just destroy that
metatag with JS?
In the case of Twitter, it’s emitted from the server. Even if it were in the HTML, destroying it has no effect on the actual browser behavior. It’s locked in.
Okay, so...
Can’t you insert your own security
metatag and override it?
You’d think so. But, thankfully, no. Once a CSP been accepted by the browser for that page, it cannot be overridden. That’s probably a good thing, even though it ruins our fun.
I suppose that’d be like wishing for more wishes. It’s against the genie rules!
The post Introducing Trashy.css appeared first on CSS-Tricks.