Stefan Rahnev
Stefan Rahnev (@StDiR) is Product Manager for Telerik Kendo UI living in Sofia, Bulgaria. He has been working for the company since 2005, when he started out as a regular support officer. His next steps at Telerik took him through the positions of Technical Support Director, co-team leader in one of the ASP.NET AJAX teams and unit manager for UI for ASP.NET AJAX and Kendo UI. Stefan’s main interests are web development, agile processes planning and management, client services and psychology.
-
Web ASP.NET AJAX
Security: JSON Hijacking and the telerik web controls
I have been too slow to get to this! The security experts at Fortify Software have recently discovered a new Web 2.0-specific security vulnerability that may affect some sites passing JSON-encoded data to the client, and I got some nudges from both coworkers and customers to investigate this deeper. So, what is this vulnerability all about? In short, you have to be extra careful when using HTTP GET requests to stream JSON-encoded data to the client. You may be thinking that you are using ASP.NET's authentication mechanism and you are conveniently hidden behind the session and forms authentication cookie, but that may not be...April 04, 2007 -
Web ASP.NET AJAX
Debugging ASP.NET 2.0 Web Resources: Decrypting the URL and Getting the Resource Name
Today I had another trivial problem that was unbelievably hard to debug just because I could not tell that an error caused by a web resource was caused by exactly that resource. I was dealing with a forgotten [WebResource] attribute that did not have a matching resource built in the assembly and both generated a server side exception and gave browsers a 404 HTTP error. I wanted to decrypt the query string data that was being passed to WebResource.axd and extract the resource and assembly name from it. MSDN told me that what I needed was the "d" query string parameter, as it contained the encrypted assembly and resource name. The...March 27, 2007 -
Release
New online resources for the past two weeks
Below is a summary of the new online resources available for our ASP.NET controls: RadGrid Code library entries: Passing item-related data from the server to the client and vice versa: http://www.telerik.com/community/code-library/submission/b311D-tebbc.aspx Show/Edit boolean values using "Y" and "N": http://www.telerik.com/community/code-library/submission/b311D-tkagh.aspxMarch 22, 2007 -
Release
New online resources for the past two weeks
Below is a summary of the new online resources available for our ASP.NET controls:radGridCode library entries: Client-side Row Selection Persisted with Sorting and Paging:http://www.telerik.com/community/code-library/submission/b311D-khchg.aspx Saving radGrid scroll position when leaving pagehttp://www.telerik.com/community/code-library/submission/b311D-tdcmd.aspx Printing grid headers on every pagehttp://www.telerik.com/community/code-library/submission/b311D-tcect.aspxMarch 08, 2007 -
People
WebDD
Just came back from this year's webDD event at the Microsoft campus in Reading, UK and wanted to give a big thank you to Dave and Phil and all the organizers for the great experience - it was an insightful weekend with Scott Guthries' news on AJAX and WPFe, and a great chance to check back on industry developments with fellow designers and developers. With web standards and the Rails technology heavily emphasized in the sessions, it was truly refreshing to see in action Microsoft's recent dedication to industry standards and their openness to alternative frameworks. Dave Verwer's lecture on Unobtrusive...February 04, 2007
All articles
Topics
Most Popular
Latest Stories
in Your Inbox
Subscribe to be the first to get our expert-written articles and tutorials for developers!
All fields are required