[B! web] hasegawayosukeã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

hasegawayosuke id:hasegawayosuke

webã«é–¢ã™ã‚‹hasegawayosukeã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (20)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

Chrome Platform Status
hasegawayosuke 2017/11/29
websharetarget

web

javascript
ãƒªãƒ³ã‚¯
Making dev.to insanely fast
It makes me smile when someone raves about how fast this website loads, because that's no accident. We put a lot of effort into making it so. It is the sort of thing that usually goes unnoticed, but when your readers are developers, there's a better chance they notice and appreciate it. I have written about this in the past, but it's worth re-examining because these ideas are always evolving. From
hasegawayosuke 2017/11/15
fastly

dev.to

web
ãƒªãƒ³ã‚¯
Cookieé–¢é€£ã®æœ€æ–°å‹•å‘ (2016å¹´) - Qiita
Deleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article? ã¯ã˜ã‚ã« åŽ»å¹´ãã‚‰ã„ã‹ã‚‰Cookieã«é–¢ã™ã‚‹è°è«–ãŒæ´»ç™ºã«è¡Œãªã‚ã‚Œã¦ã„ã‚‹ã‚ˆã†ã«æ„Ÿã˜ã¾ã™ã€‚ãã“ã§Cookieé–¢é€£ã®æœ€æ–°å‹•å‘ã«ã¤ã„ã¦ä»•æ§˜ã®è¦³ç‚¹ã‹ã‚‰å¹¾ã¤ã‹åˆ—æŒ™ã—ã¾ã™ã€‚ Deprecate modification of 'secure' cookies from non-secure origins Cookie Prefixes Same-site Cookies A Retention Priority Attribute for HTTP Cookies Content Security Policy: Cookie Controls G
hasegawayosuke 2016/04/26
cookie

http

web

security
ãƒªãƒ³ã‚¯
ãƒã‚°åˆ†æžå‹‰å¼·ä¼š vol.1 - è³‡æ–™ä¸€è¦§ - connpass
çµ‚äº† 2015/10/15ï¼ˆæœ¨ï¼‰ 19:00ã€œ ãƒã‚°åˆ†æžå‹‰å¼·ä¼š vol.1 ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®é™£ kenji kobayashi ä»– æ±äº¬éƒ½åƒä»£ç”°åŒºå¹³æ²³ç”º2-16-1 å¹³æ²³ç”ºæ£®ã‚¿ãƒ¯ãƒ¼2F
hasegawayosuke 2016/01/22
log

web
ãƒªãƒ³ã‚¯
åŒä¸€ã‚ªãƒªã‚¸ãƒ³ã«å¢ƒç•Œã‚’è¨ã‘ã‚‹ Suborigins ã¨ã¯ - ASnoKaze blog
Webã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚’è€ƒãˆã‚‹ä¸Šã§å¤§äº‹ãªä»•çµ„ã¿ã®ä¸€ã¤ã«ã€Same-Origin Policyã¨ã„ã†ä»•çµ„ã¿ãŒã‚ã‚Šã¾ã™ã€‚ Originã¯ã€Œã‚¹ã‚ãƒ¼ãƒ ãƒ»ãƒ›ã‚¹ãƒˆãƒ»ãƒãƒ¼ãƒˆã€ã®çµ„ã¿åˆã‚ã›ã§ã™ã€‚ã“ã‚Œã‚‰ãŒä¸€ç·’ã§ã‚ã‚Œã°ã€åŒä¸€Originã§ã‚ã‚Šãƒªã‚½ãƒ¼ã‚¹ã¸ã‚¢ã‚¯ã‚»ã‚¹ã™ã‚‹ã“ã¨ãŒã§ãã¾ã™ã€‚ æ´å²çš„çµŒç·¯ã‚„æ§˜ã€…ãªç†ç”±ã«ã‚ˆã‚Šè¤‡æ•°ã®ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ãŒåŒä¸€Originã§æä¾›ã•ã‚Œã¦ã„ã‚‹å ´åˆãŒã‚ã‚Šã¾ã™ã€‚ ãŸã¨ãˆã°ã€"ãƒãƒ£ãƒƒãƒˆ"ã‚„"ã‚·ãƒ§ãƒƒãƒ”ãƒ³ã‚°"ã®æ©Ÿèƒ½ãŒä»¥ä¸‹ã®æ§˜ãªURLã§æä¾›ã•ã‚Œã¦ã„ã‚‹ã‚ˆã†ãªå ´åˆã§ã™ã€‚ https://example.com/chat/ https://example.com/shopping/ å®Ÿéš›ã€Googleã®æ¤œç´¢ã‚µãƒ¼ãƒ“ã‚¹ã¨åœ°å›³ã‚µãƒ¼ãƒ“ã‚¹ã¯åŒä¸€Originã§æä¾›ã•ã‚Œã¦ã„ã¾ã™ã€‚æ˜”ã‹ã‚‰ã‚ã‚‹ãƒªãƒ³ã‚¯ã‚„ã€ãƒ‘ãƒ•ã‚©ãƒ¼ãƒžãƒ³ã‚¹ã€ãƒ–ãƒ©ãƒ³ãƒ‡ã‚£ãƒ³ã‚°ã®ãŸã‚ã®ã‚ˆã†ã§ã™ã€‚ https://www.google.com https://www.goo
hasegawayosuke 2015/11/19
suborigins

cors

web
ãƒªãƒ³ã‚¯
2015å¹´Webã‚µãƒ¼ãƒã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£åºè«– - ã‚†ã†ã†ããƒ–ãƒã‚°
2023å¹´03æœˆ31æ—¥è¿½è¨˜ï¼šã“ã®è¨˜äº‹ã‚’åŸºã«ã€@sadnessOjisanã•ã‚“ã‚ˆã‚Šã€ã‚³ãƒ¼ãƒ‰ãƒ¬ãƒ™ãƒ«ã«ã‚ˆã‚Šè¸ã¿è¾¼ã‚“ã ã€ã‹ã¤ã€ã‚°ãƒªãƒ¼ãƒ³ã‚¹ãƒ¬ãƒƒãƒ‰ãƒ™ãƒ¼ã‚¹ã®æ–°ã—ã„Webã‚µãƒ¼ãƒã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£ã‚‚å«ã‚ã¦æ•´ç†ã•ã‚ŒãŸè¨˜äº‹ Webã‚µãƒ¼ãƒãƒ¼ã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£é€²åŒ–è«–2023 | blog.ojisan.io ãŒå…¬é–‹ã•ã‚Œã¾ã—ãŸã€‚ ä¸»ã«æ–°å’ã®Webã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢å‘ã‘ã«ã€å¤å…¸çš„ãªWebã‚µãƒ¼ãƒã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£ã‚’å¦ã¶é“ã®ã‚Šã¨ä»£è¡¨çš„ãªå®Ÿè£…ãƒ¢ãƒ‡ãƒ«ã®æ¦‚è¦ã‚’ç´¹ä»‹ã—ã¾ã™ã€‚ ã“ã®è¾ºã‚Šã®è©±é¡ŒãŒWebç•Œéšˆã§æµè¡Œã£ã¦ã„ãŸã®ã¯æ•°å¹´ä»¥ä¸Šå‰ã¨ã„ã†ã‚¤ãƒ¡ãƒ¼ã‚¸ã§ã™ãŒã€Webã‚µãƒ¼ãƒ“ã‚¹ã¯ç›¸å¤‰ã‚ã‚‰ãšWebã‚µãƒ¼ãƒã®ä¸Šã§å‹•ã„ã¦ã„ã‚‹ã®ã§ã€æµè¡Œã‚Šå»ƒã‚Šé–¢ä¿‚ãªãå¦ã¶ã¹ãå†…å®¹ã ã¨æ€ã£ã¦ã„ã¾ã™ã€‚ ã¾ãŸã€HTTP/2ãŒã„ã‚ˆã„ã‚ˆRFCåŒ–ã—ã€æ—¢ã«h2oã‚„trusterdãªã©ã®HTTP/2ã®ã‚µãƒ¼ãƒå®Ÿè£…ãŒã‚ã‚Šã€ä»Šå¾ŒWebã‚µãƒ¼ãƒã‚¢ãƒ¼ã‚ãƒ†ã‚¯ãƒãƒ£ã‚’å†è¨ªã™ã‚‹ã“ã¨ãŒå¢—ãˆã‚‹ã‚ˆã†ãªæ°—ãŒã—ã¦ã„ã¾ã™ã€‚ ã¨ã“ã‚ãŒã€We
hasegawayosuke 2015/05/28
web

server
ãƒªãƒ³ã‚¯
WebAPIãƒªã‚¯ã‚¨ã‚¹ãƒˆä»•æ§˜æ›¸ã¨ã—ã¦curlã‚³ãƒžãƒ³ãƒ‰ã®ã”ææ¡ˆ - Qiita
WebAPIã®ä»•æ§˜ã‚’è¨˜è¿°ã™ã‚‹æ–¹æ³•ã¯ã„ãã¤ã‹ã‚ã‚‹ã¨æ€ã†ã€‚ æ™®é€šã«æ—¥æœ¬èªžã§è¨˜è¿°ã™ã‚‹ JSON Hyper-Schemaã€WADLã€RAMLã€Swaggerãªã©ã‚’ä½¿ã† ä»•æ§˜æ›¸ã®ä»£ã‚ã‚Šã«ãƒ—ãƒã‚°ãƒ©ãƒ ã‚’æ›¸ã HTTPãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ãã®ã‚‚ã®ã‚’è¨˜è¿°ã—ã¦ãŠã ã§ã‚‚ã€æ–‡æ³•ã«ã°ã‚‰ã¤ããŒã‚ã£ãŸã‚Šã€èªã¿ã«ãã‹ã£ãŸã‚Šã€ãƒ„ãƒ¼ãƒ«ã®ã‚»ãƒƒãƒˆã‚¢ãƒƒãƒ—ãŒé¢å€’ã ã£ãŸã‚Šã€ã©ã‚Œã‚‚ã‚¤ãƒžã‚¤ãƒãªæ‰€ãŒã‚ã£ã¦ã€æ‰‹è»½ãªæ–¹æ³•ãŒæ¬²ã—ã„ã¨æ€ã£ã¦ã„ãŸã€‚ ä½•æ°—ãªãcurlã‚³ãƒžãƒ³ãƒ‰ã®ã‚ªãƒ—ã‚·ãƒ§ãƒ³ã‚’èª¿ã¹ã¦ã„ãŸã‚‰ã€ã€Œã‚‚ã†ã“ã‚Œã§APIãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆæ‰±ã„ã«ã—ã¡ã‚ƒãˆã°ã„ã„ã‚“ã˜ã‚ƒãï¼Ÿã€ã¨æ€ãˆã¦ããŸã®ã§ãƒ¡ãƒ¢ã—ã¦ãŠãã€‚ curlã‚³ãƒžãƒ³ãƒ‰ã®ãŠã•ã‚‰ã„ curlã‚³ãƒžãƒ³ãƒ‰ã¯libcurlã®ä»˜å±žã‚³ãƒžãƒ³ãƒ‰ã§ã€æœ€è¿‘ã®Unixç³»OSãªã‚‰å¤§æŠµæœ€åˆã‹ã‚‰å…¥ã£ã¦ã„ã‚‹ã¨æ€ã†ã€‚ã‚³ãƒžãƒ³ãƒ‰ã®è©³ç´°ã¯manã‚’èªã‚“ã§ã„ãŸã ã‘ã‚Œã°ã€‚ cURL - How To Use ï¼ˆãƒžãƒ‹ãƒ¥ã‚¢ãƒ«ãƒšãƒ¼ã‚¸æ—¥æœ¬èªžè¨³ï¼‰ curlã‚³ãƒžãƒ³ãƒ‰ã®ã‚ªãƒ—ã‚·
hasegawayosuke 2015/05/25
web

http

webapi
ãƒªãƒ³ã‚¯
Upgrade Insecure Resource Requests (A Collection of Interesting Ideas)
This document defines a mechanism which allows authors to instruct a user agent to upgrade a priori insecure resource requests to secure transport before fetching them. This is a public copy of the editorsâ€™ draft. It is provided for discussion only and may change at any moment. Its publication here does not imply endorsement of its contents by W3C. Donâ€™t cite this document other than as work in pr
hasegawayosuke 2015/04/23
web

http

https

hsts

Upgrade Insecure Requests
ãƒªãƒ³ã‚¯
Private Presentation
Private content!This content has been marked as private by the uploader.
hasegawayosuke 2015/03/16
isomorphic

javascript

web

develop
ãƒªãƒ³ã‚¯
Extensible Web ã®å¤œæ˜Žã‘ã¨é–‹ç™ºè€…ãŒå¾—ãŸå¯èƒ½æ€§ã®è©± - Block Rockinâ€™ Codes
Web based on Standards Web ã¯èª°ã®ã‚‚ã®ã§ã‚‚ã‚ã‚Šã¾ã›ã‚“ã€‚ ã ã‚Œã‹ãƒ—ãƒãƒ€ã‚¯ãƒˆã‚ªãƒ¼ãƒŠãƒ¼ãŒã„ã¦ãã®äººãŒæ„æ€æ±ºå®šã™ã‚‹ã¨ã‹ã€ãã†ã„ã†ã®ã¨ã¯çœŸé€†ã®æˆã‚Šç«‹ã¡ã‚’ã—ã¦ã„ã¾ã™ã€‚ æ¨™æº–çš„ãªä»•æ§˜ã‚’æ±ºã‚ã¦ã€ãã®ä»•æ§˜ã«å‰‡ã£ã¦ Web ã®ä¸–ç•Œã¯æˆã‚Šç«‹ã£ã¦ã„ã‚‹ã€‚ æ”¿åºœãŒä½œã‚‹ã‚µã‚¤ãƒˆã‚‚ã€ Twitter ã‚‚ã€å¦ç”ŸãŒä½œã£ãŸãƒ–ãƒã‚°ã‚‚ã€å…¨éƒ¨åŒã˜ãƒ«ãƒ¼ãƒ«ã§ä½œã‚‰ã‚Œã¦ã„ã‚‹ã€‚ã ã‹ã‚‰ç¹‹ãŒã‚‹ã€‚ ã“ã‚Œã£ã¦çµæ§‹å‡„ã„ã“ã¨ã ã¨ã€è‡ªåˆ†ã¯æ€ã£ã¦ã„ã¾ã™ã€‚ Standarization ã“ã®ãƒ«ãƒ¼ãƒ«ã®æ±ºã‚æ–¹ã«ã‚‚ãƒ«ãƒ¼ãƒ«ãŒã‚ã£ã¦ã€ã¡ã‚‡ã£ã¨æ•·å±…ã¯é«˜ã„ã‹ã‚‚ã—ã‚Œãªã„ã‘ã©ã€èª°ã§ã‚‚è‡ªç”±ã«å‚åŠ ã—ã¦ã€è‡ªç”±ã«æ„è¦‹ã‚’è¿°ã¹ã‚‹ã“ã¨ãŒã§ãã‚‹å ´ãŒã‚ã‚Šã¾ã™ã€‚ æ¨™æº–åŒ–å›£ä½“ã£ã¦ã‚„ã¤ã§ã™ãã€‚ ãªã‚“ã‹ä¸€éƒ¨ã®äººãŸã¡ãŒå‹æ‰‹ã«ã‚„ã£ã¦ã„ã‚‹ã‚ˆã†ã«æ€ãˆã‚‹ã‹ã‚‚ã—ã‚Œãªã„ã‘ã©ã€ãã‚Œã¯é¸æŒ™ã«è¡Œã‹ãªã„äººã®ç†è«–ã¨åŒã˜ã§ã™ã€‚ ã‚ãªãŸãŒä»•æ§˜ã«ã¤ã„ã¦æ„è¦‹ã‚’æŒã£ã¦ã¦ã€ãã‚ŒãŒå¦¥å½“ã§ã‚ã‚‹ãªã‚‰ã°ã€ãã®ç™ºè¨€ã¯ä»•æ§˜ã‚’æ ¹
hasegawayosuke 2014/12/22
Webã®æœªæ¥

web
ãƒªãƒ³ã‚¯
HTTPã§Hashã‚„Arrayã‚’é€ã‚‹æ‰‹æ³•ã«ä»•æ§˜ã¯å˜åœ¨ã—ãªã„â€¦â€¦ã®? - ãŸã ã®ã«ã£ã(2013-09-15)
â– HTTPã§Hashã‚„Arrayã‚’é€ã‚‹æ‰‹æ³•ã«ä»•æ§˜ã¯å˜åœ¨ã—ãªã„â€¦â€¦ã®? jQueryã§ã“ã‚“ãªãµã†ã«æ›¸ãã¨: $.post('/', { hash: { foo: 'hoge', bar: 'fuga'}, array: ['baz', 'piyo'] }); ã‚µãƒ¼ãƒå´ã§ã“ã‚“ãªãµã†ã«å—ã‘å–ã‚Œã¦(ã“ã‚Œã¯Sinatra): post '/' do params.each do |key, val| puts "#{key}: #{val} as #{val.class}" end end ã¡ã‚ƒã‚“ã¨Hashã‚„Arrayã¨ã—ã¦ã‚¢ã‚¯ã‚»ã‚¹ã§ãã‚‹: hash: {"foo"=>"hoge", "bar"=>"fuga"} as Hash array: ["baz", "piyo"] as Array ã‚ã‚ã“ã‚Šã‚ƒä¾¿åˆ©ã ãã€ã§æ¸ˆã¾ã—ã¦ã‚‚ã„ã„ã‚“ã ã‘ã©ã€HTTP POSTã®ä¸èº«ãªã‚“ã¦ãŸã ã®ãƒã‚¤ãƒˆåˆ—ãªã‚“ã ã‹ã‚‰åž‹ã®æƒ…
hasegawayosuke 2013/09/16
ã‚ã¨ã§èª¿ã¹ã‚ˆã†ã€‚PHPã ã¨GETã§ã‚‚å°‘ãªãã¨ã‚‚é…åˆ—ã¯å—ã‘å–ã‚ŒãŸã‚Šã™ã‚‹ã€‚ãƒãƒƒã‚·ãƒ¥å—ã‘å–ã‚Œã‚‹ã®ã‹ã©ã†ã‹ã¯çŸ¥ã‚‰ãªã„ã‘ã©ã€‚ãªã®ã§ã€Content-Typeã‚ã‚“ã¾ã‚Šé–¢ä¿‚ãªã„ã‚“ã˜ã‚ƒãªã„ã‹ã¨äºˆæƒ³ã—ã¦ã‚‹ã€‚

web

http
ãƒªãƒ³ã‚¯
ãªãœã‚ãªãŸãŒã‚¦ã‚§ãƒ–ã‚µã‚¤ãƒˆã‚’HTTPSåŒ–ã™ã‚‹ã¨ã‚µã‚¤ãƒˆãŒé…ããªã£ã¦ãƒ¦ãƒ¼ã‚¶ãƒ¼ãŒé€ƒã’ã¦ã„ãã®ã‹ - å°„æ’ƒã—ã¤ã¤å‰è»¢ æ”¹
å®Œå…¨ã«é‡£ã‚Šã‚¿ã‚¤ãƒˆãƒ«ã§ã™ã‘ã©ä¸èº«ã¯çœŸé¢ç›®ã«æ›¸ãã‚ˆã€‚ è¿‘å¹´ã€ã‚¦ã‚§ãƒ–ã‚µã‚¤ãƒˆã®HTTPSåŒ–ãŒæµè¡Œã®ã‚ˆã†ã«ãªã£ã¦ã„ã‚‹ã€‚ç§ã®çŸ¥ã‚‹é™ã‚Šã€Googleã®å„ç¨®ã‚µãƒ¼ãƒ“ã‚¹ã‚„Twitterã€Facebookãªã©ãŒå®Œå…¨ã«HTTPSã§é€šä¿¡ã‚’è¡Œã†ã‚ˆã†ã«ãªã£ã¦ã„ã‚‹ã€‚HTTPSã€ã¤ã¾ã‚ŠSSLã«ã‚ˆã‚‹é€šä¿¡ã®æš—å·åŒ–ã«ã‚ˆã£ã¦ã€ãƒ¦ãƒ¼ã‚¶ã«ã“ã‚Œã¾ã§ã‚ˆã‚Šã‚‚å®‰å…¨ãªã‚¦ã‚§ãƒ–ã‚µã‚¤ãƒˆã‚’æä¾›ã§ãã‚‹ã€‚ ã—ã‹ã—ã€ã‚ãªãŸãŒä½œã£ã¦ã„ã‚‹ã‚µã‚¤ãƒˆã‚’ãµã¨æ€ã„ã¤ãã§HTTPSåŒ–ã—ã¦ã—ã¾ã†ã¨ã€ãŸã¶ã‚“ã€ã“ã‚Œã¾ã§ã‚ˆã‚Šã‚‚ã‚µã‚¤ãƒˆãŒé…ããªã‚‹ã€‚ã“ã“ã§ã¯ã€HTTPSã§é€šä¿¡ã™ã‚‹å ´åˆã®å•é¡Œã‚’è§£èª¬ã™ã‚‹ã€‚ ãªãœé…ããªã‚‹ã®ã‹ HTTPã§é€šä¿¡ã™ã‚‹å ´åˆã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆãŒã‚µãƒ¼ãƒã¸ã¨æŽ¥ç¶šã™ã‚‹ãŸã‚ã«ã¯TCP/IPã®3ã‚¦ã‚§ã‚¤ãƒãƒ³ãƒ‰ã‚·ã‚§ã‚¤ã‚¯ã¨ã„ã†æ‰‹é †ãŒå¿…è¦ã«ãªã‚‹ã€‚ã‚ã‚“ã©ãã•ã„ã®ã§ã“ã“ã§ã¯è©³ã—ãã¯èª¬æ˜Žã—ãªã„ãŒã€è¦ã™ã‚‹ã«ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆãŒãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’æŠ•ã’ã‚‹å‰ã«ãƒ‘ã‚±ãƒƒãƒˆã‚’ï¼‘å¾€å¾©ã•ã›ãªã„ã¨ã„ã‘ãªã„ã®ã§ã‚ã‚‹ã€‚ãƒ‘ã‚±ãƒƒãƒˆã®å¾€å¾©
hasegawayosuke 2013/01/08
http

https

web
ãƒªãƒ³ã‚¯
Identifying Application State
TAG Finding 01 December 2011This version: http://www.w3.org/2001/tag/doc/IdentifyingApplicationState-20111201 Latest version: http://www.w3.org/2001/tag/doc/IdentifyingApplicationState Previous versions: http://www.w3.org/2001/tag/doc/IdentifyingApplicationState-20111130 http://www.w3.org/2001/tag/doc/IdentifyingApplicationState-20110930 http://www.w3.org/2001/tag/doc/IdentifyingApplicationState-2
hasegawayosuke 2012/01/17
web
ãƒªãƒ³ã‚¯
HTTPã‚¨ãƒ©ãƒ¼ãƒšãƒ¼ã‚¸ã«æ„å‘³ã‚’æŒãŸã›ã‚ˆã†
Translation of: Adding meaning to your HTTP error pages! by Stuart Colville This article is licensed under a Creative Commons Attribution, Non Commercial - Share Alike 2.5 license ã¯ã˜ã‚ã« ã‚¦ã‚§ãƒ–ä¸Šã§ä½•ã‹ã‚’æ¤œç´¢ã—ã‚ˆã†ã¨ã™ã‚‹ã¨ã€æ—¢ã«å˜åœ¨ã—ãªã„ãƒšãƒ¼ã‚¸ã—ã‹æ¤œç´¢çµæžœã«ãªãã€ãã‚Œã‚‰ã¸ã®ãƒªãƒ³ã‚¯ã‚’ã‚¯ãƒªãƒƒã‚¯ã™ã‚‹ã“ã¨ã¯ã‚ˆãã‚ã‚‹ã ã‚ã†ã€‚ãã®é–‹ã„ãŸãƒšãƒ¼ã‚¸ã«ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®ã‚¨ãƒ©ãƒ¼ãƒ»ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ã®ä»–ã«ä½•ã‚‚æƒ…å ±ãŒè¼‰ã£ã¦ã„ãªã‹ã£ãŸå ´åˆã€å¤šãã®äººã€…ã¯æˆ»ã‚‹ãƒœã‚¿ãƒ³ã‚’æŠ¼ã—æ¬¡ã®æ¤œç´¢çµæžœã‚’é–‹ã“ã†ã¨ã™ã‚‹ã ã‚ã†ã€‚ ã‚µã‚¤ãƒˆè£½ä½œè€…ã§ã‚ã‚‹æˆ‘ã€…ã¯ã‚‚ã£ã¨è¨ªå•è€…ã«æ„å‘³ã®ã‚ã‚‹ã‚¨ãƒ©ãƒ¼ãƒšãƒ¼ã‚¸ã‚’ä½œæˆã™ã‚‹ã“ã¨ãŒã§ãã‚‹ã€‚ãã†ã™ã‚Œã°ãŸã¨ãˆã‚¨ãƒ©ãƒ¼ãƒšãƒ¼ã‚¸ã§ã‚ã£ã¦ã‚‚è¨ªå•è€…ã‚’ã‚µã‚¤ãƒˆã«ç•™ã¾ã‚‰ã›ã€å½¼ã‚‰
hasegawayosuke 2009/10/01
web

http
ãƒªãƒ³ã‚¯
Cookie ä»Šæ˜”ç‰©èªž - ã¯ã¦ãªã‚‹ã›ã ã„ã‚ã‚Š
æ¦‚è¦ Cookie ã®ä¸å¹¸ãªæ´å²ã¨ç¾çŠ¶ã€ãã—ã¦å°†æ¥ã«ã¤ã„ã¦ã¾ã¨ã‚ãŸã€‚ ä»•æ§˜ã¯ã©ã“ã«ã‚ã‚‹ã‹ Web ä¸Šã®æ§˜ã€…ãªè¦æ ¼ã¯ã€èª°ã‹ãŒå®šã‚ã€ãã‚Œã«çš†ãŒåˆã‚ã›ã‚‹ã¨ã„ã†å½¢ã§å‹•ã„ã¦ã„ã‚‹ã€‚ã—ã‹ã—ã€Cookie ã®ä»•æ§˜ã¯èª°ãŒæ±ºã‚ã€ã©ã“ã§è¦å®šã•ã‚Œã¦ã„ã‚‹ã‹çŸ¥ã£ã¦ã„ã‚‹äººã¯ã€æ„å¤–ã¨å°‘ãªã„ã®ã§ã¯ãªã„ã‹ã¨æ€ã†ã€‚W3C ã‚„ IETF ã ã¨æ€ã£ã¦ã„ã‚‹äººãŒå¤šã„ã®ã§ã¯ãªã‹ã‚ã†ã‹ã€‚ æ£è§£ã‚’è¨€ã£ã¦ã—ã¾ã†ã¨ã€å®šã‚ãŸã®ã¯ 1994 å¹´ã€Netscape Communications ç¤¾ã§ã‚ã‚Šã€æ–‡æ›¸ã¯ http://wp.netscape.com/newsref/std/cookie_spec.html ã§å…¬é–‹ã•ã‚Œã¦ã„ãŸã€‚ã‚¢ã‚¯ã‚»ã‚¹ã—ã¦ã¿ã‚Œã°ã‚ã‹ã‚‹é€šã‚Šã€ã“ã®ãƒšãƒ¼ã‚¸ã¯ã‚‚ã†å˜åœ¨ã—ãªã„ã—ã€Netscape ç¤¾è‡ªä½“ãŒ AOL ã«è²·åŽã•ã‚Œã¦ãŠã‚Šã€ä»Šã¯ Mozilla ã«ãªã£ãŸã¨ã„ã†ã‹ã€æ¶ˆãˆã¦ãªããªã£ã¦ã„ã‚‹ã“ã¨ã‚’çŸ¥ã£ã¦ã„ã‚‹äººã¯å¤šã„ã ã‚ã†ã€‚å½“æ™‚ã®æ–‡æ›¸ã¯ä¾‹ã«
hasegawayosuke 2009/10/01
cookie

web
ãƒªãƒ³ã‚¯
Astalanumerator
Astalanumerator window
hasegawayosuke 2009/06/05
web

javascript

tool
ãƒªãƒ³ã‚¯
https://jp.techcrunch.com/2009/06/05/20090604google-opens-up-internal-speed-tool-to-the-public/
hasegawayosuke 2009/06/05
web

tool

firefox

firebug
ãƒªãƒ³ã‚¯
URIã«ä½¿ã£ã¦ã‚ˆã„æ–‡å—ã®è©± - RFC2396 ã¨ RFC3986 - æœ¬å½“ã¯æ€–ã„HPC
POSTã™ã‚‹ãƒ‡ãƒ¼ã‚¿ã‚’ã€ï¼ˆãƒ—ãƒ¬ãƒ“ãƒ¥ãƒ¼ã®ãŸã‚ã«ï¼‰javascriptã§GETã‚¢ã‚¯ã‚»ã‚¹ã™ã‚‹ã‚ˆã†ãªå‡¦ç†ã‚’æ›¸ã„ã¦ã„ã¦ãƒãƒžã£ãŸè©±ã€‚ ç™ºç«¯ã¯ã€textareaã«'ï¼ˆã‚·ãƒ³ã‚°ãƒ«ã‚¯ã‚ªãƒ¼ãƒˆã¾ãŸã¯ã‚¢ãƒã‚¹ãƒˆãƒãƒ•ã‚£ãƒ¼ï¼‰ãŒå…¥ã‚‹ã¨ã€RailsãŒãã“ã‹ã‚‰å…ˆã®ãƒ‘ãƒ©ãƒ¡ãƒ¼ã‚¿ãƒ¼ã‚’ç„¡è¦–ã—ã¡ã‚ƒã†ã£ã¦ã„ã†ã“ã¨ã€‚ã„ã‚ã„ã‚èª¿ã¹ãŸçµæžœã€ä»¥ä¸‹ã®ã“ã¨ãŒã‚ã‹ã£ãŸï¼ˆRailsã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã¯2.0.2ï¼‰ã€‚ URIã‚’å®šç¾©ã™ã‚‹ï¼’ã¤ã®RFC URIã®æ§‹æ–‡ã¯RFCã§å®šç¾©ã•ã‚Œã¦ã„ã‚‹ã€‚ã“ã‚Œã«ã¯2ã¤ã‚ã£ã¦ã€å¾“æ¥ã®RFC2396ï¼ˆ1998å¹´ç™ºè¡Œï¼‰ã¨ã€RFC3986ï¼ˆ2005å¹´ç™ºè¡Œï¼‰ã ã€‚ RFC3986ã«ã‚ˆã‚Œã°ã€ This document obsoletes [RFC2396], which merged "Uniform Resource Locators" [RFC1738] and "Relative Uniform Resource Locators" [RF
hasegawayosuke 2009/04/15
javascript

RFC

Web
ãƒªãƒ³ã‚¯
ã‚ã¾ã‚ŠçŸ¥ã‚‰ã‚Œã¦ã„ãªã„è„†å¼±æ€§ï¼šDOM Based XSSã«ã”ç”¨å¿ƒï½œã‚¢ãƒ¼ã‚¯ã‚¦ã‚§ãƒ–ã®ãƒ–ãƒã‚°
ã“ã‚“ã«ã¡ã¯ã€SEã®é€²åœ°ã§ã™ã€‚ XSSï¼ˆCross Site Scriptingï¼‰è„†å¼±æ€§ã®ä¸ã§ã‚ã¾ã‚Šæ³¨æ„ã‚’æ‰•ã‚ã‚Œã¦ã„ãªã„ã‚¿ã‚¤ãƒ—ã«DOM Based XSSã¨ã„ã†ã‚‚ã®ãŒã‚ã‚Šã¾ã™ã€‚ã‚¢ãƒŠã‚¦ãƒ³ã‚¹è‡ªä½“ã¯éšåˆ†ã¨æ˜”ã‹ã‚‰è¡Œã‚ã‚Œã¦ãŠã‚Šã€webappsec.orgã§ã‚‚2005/7/4ã«Amit Kleinæ°ãŒ"DOM Based Cross Site Scripting or XSS of the Third Kind"ã‚’ç™ºè¡¨ã—ã¦ã„ã¾ã™ã€‚ Web 2.0çš„ã‚¢ãƒ—ãƒªãªã©ã§ã®Ajaxã®æ™®åŠã§JavaScriptãŒå¤šç”¨ã•ã‚Œã‚‹ç¾åœ¨ã®Webé–‹ç™ºã§ã¯ã€DOM Based XSSãŒå…¥ã‚Šè¾¼ã‚€å¯èƒ½æ€§ã¯å¾“æ¥ã‚ˆã‚Šã‚‚é«˜ã¾ã£ã¦ã„ã¾ã™ã€‚ãã“ã§ã€ä»Šå›žã¯ã“ã®DOM Based XSSã«ã¤ã„ã¦èª¬æ˜Žã—ã‚ˆã†ã¨æ€ã„ã¾ã™ã€‚ DOM Based XSSã¨ã¯ä½•ã‹ï¼Ÿ ä¸€èˆ¬çš„ã«XSSè„†å¼±æ€§ã¨èžã„ã¦æ€ã„æµ®ã‹ã¹ã‚‹ã®ã¯ã€æ”»æ’ƒè€…ã®æ‚ªæ„ã‚ã‚‹å…¥åŠ›ãƒ‡ãƒ¼ã‚¿ï¼ˆJavaScript
hasegawayosuke 2007/03/01
JavaScriptã‹ã‚‰ã‚‚createTextNodeç‰ã€ã€ŒDOM Basedã€ã§ã‚¢ã‚¯ã‚»ã‚¹ã™ã‚Œã°ã„ã„ã®ã§ã¯?

security

Web

XSS
ãƒªãƒ³ã‚¯
æ¥µæ¥½ã›ãã‚…ã‚ãƒ–ãƒã‚°
è‡ªåˆ†ãŒä»Šä½•å†Šã®æœ¬ã‚’æŒã£ã¦ã„ã‚‹ã®ã‹ã‚ã‹ã‚‰ãªããªã£ã¦ä¹…ã—ã„ï¼ˆç¬‘ï¼‰ã€‚æœ¬ã¨ã„ã†ãƒ¢ãƒŽã¯ã‚ã£ã—ã«ã¨ã£ã¦ã¯ä¸€æœŸä¸€ä¼šæ„ŸãŒå¼·ãã€æ€ã„ç«‹ã£ãŸã¨ãã«è²·ã‚ãªã„ã¨è²·ã„é€ƒã—ã¦ã—ã¾ã†ã€ã¨ã„ã†ç„¦ã‚Šã®ã‚ˆã†ãªã‚‚ã®ãŒã‚ã‚‹ã€‚å¥½ããªã‚¸ãƒ£ãƒ³ãƒ«ãŒSFã€ãƒŸã‚¹ãƒ†ãƒªãƒ¼ã€ã‚µãƒƒã‚«ãƒ¼ã€æ˜ ç”»ã¨ã„ã†ã“ã¨ã‚‚ã‚ã‚Šã€ç‰¹ã«SFã¯å…¥æ‰‹å›°é›£ã«ãªã‚‹çŽ‡ãŒé«˜ã„ã‚ˆã†ã«æ€ã†ã€‚é›»åæ›¸ç±ã«ãªã£ã¦ã„ã‚Œã°ã‹ãªã‚Šå»¶å‘½ã§ãã‚‹ãŒã€å¥½ããªã‚¸ãƒ£ãƒ³ãƒ«ã«ã¤ã„ã¦ã¯ã‚„ã¯ã‚Šç´™ã®æœ¬ãŒè‰¯ã„ã€‚ ã¾ãŸè¿‘å¹´ã€æ€ã†ã¨ã“ã‚ãŒã‚ã‚Šé–¢å¿ƒã®å¹…ã‚’æ‹¡ã’ã¦ã„ã‚‹ã®ã§ã€å¿…ç„¶çš„ã«è²·ã†æœ¬ã®é‡ã¯å¢—ãˆã¦ã„ã‚‹ã€‚ã‚‚ã¨ã‹ã‚‰ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£é ˜åŸŸã¯å°‚é–€ã ã£ãŸã®ã§ä½™ã•ãšè²·ã†ã“ã¨ã«ã—ã¦ã„ãŸãŒã€ãã‚Œã«åŠ ãˆã¦åºƒãITã«é–¢ã‚ã‚‹æŠ€è¡“æ›¸ã‚‚å‘¨è¾ºã«æ‹¡ã’ã‚‹ã‚ˆã†ãªå½¢ã§è²·ã£ã¦ã„ã‚‹ã€‚æ•°ç†ãƒ¢ãƒ‡ãƒ«é–¢é€£ã‚„æ–°æŠ€è¡“ã«é–¢ã™ã‚‹æœ¬ã‚‚å¢—ãˆã¦ã„ã‚‹ã—ã€è‹¥æ‰‹äººæè‚²æˆã«çµ¡ã‚ã¦ã„ã‚ã‚†ã‚‹ã‚³ãƒ³ãƒ†ãƒ³ãƒ„åˆ¶ä½œã®ãŸã‚ã«ãƒ©ã‚¤ãƒˆãƒŽãƒ™ãƒ«ã«ã¾ã§æ‰‹ã‚’å‡ºã—ã¦ã„ã¦ä¸€æ™‚ã¯ã¨ã‚“ã§ã‚‚ãªã„ã“ã¨ã«ãªã£ã¦ã„ãŸã€‚ã•ã‚‰ãªã‚‹æ–°é–¢å¿ƒé ˜åŸŸã¨ã—
hasegawayosuke 2007/01/31
è‘‰ã£ã±æ—¥è¨˜ãŒãŠã„ã¦ã‘ã¼ã‚Šãªã®ã¯ã€ãŸã¾ãŸã¾404ã‚’è¿”ã—ãŸã‹ã‚‰ã‹ã€‚â†’ http://www.st.ryukoku.ac.jp/~kjm/security/antenna/hina.di

Web
ãƒªãƒ³ã‚¯
1