技术热门度曲线，流式接口

Learn 概念笔记

技术热门度曲线（待完成）

流式接口（fluent interface) Wikipedia

is a method for designing object oriented APIs based extensively on method chaining with the goal of making the readability of the source code close to that of orinary written prose, essential creating a domain-specific language within the interface.

是软件工程中面向对象API的一种实现方式，以提供更为可读的源代码。
通常采取方法瀑布调用 (具体说是方法链式调用)来转发一系列对象方法调用的上下文。

// Find translations for English words containing the letter "a",
// sorted by length and displayed in uppercase
IEnumerable<string> query = translations
    .Where   (t => t.Key.Contains("a"))
    .OrderBy (t => t.Value.Length)
    .Select  (t => t.Value.ToUpper());

Scaffold(脚手架）Wikipedia

refers to one of two technniques

Code generation(realted to database access in som model-view-controller frameworks)

• Run time vs Design time Scaffolding
• Scaffolding in Ruby onn Rails
• Server side vs Client side Scaffolding

project generation

anti-fogery Cross-Site Request Forgery(XSRF/CSRF) MSDN

CSRF attacks are possible against web apps that use cookies for authentication because:

• Browser store cookies issued by a web app
• Stored cookies include session cookies for authentedd users.
• Browsers send all of the cookies associated with a ddomain to the web app every request regardless of how the request to app was generated within the browser.

Basic and Digest authentication are also vulnerable.
CSRF vulnerabilities are fundamentally a problem with the web appp, not the end user.

Don't be concerned about CSRF vulneability if the token is stored in the browser's local storage. CSRF is a concern when the token is stored in a cookie.