The last day of the conference already...
The day started with a presentation on Datamodelling using JDev. The presenter showed how JDev could replace Designer for modelling. Imho JDev doesn't support logical modelling at all (he misused Java class models to represent a logical model), there is no repository and no relation between a logical and physical model. For just physical modelling JDev is fine, because all 11g database options are included. This modelling option will become available in SQL Dev also....
After that I went to see my esteemed colleague Peter Lorentzen's talk on How to make your APEX Application Secure. He stated that APEX is secure, but developers make it unsecure. Nice statement Peter! One of his (many) good advices was not to use XE for an APEX (open) production environment as XE is not patched and you will be vulnerable to all kinds of attacks. He also showed a script attack by adding a small "Hello World" script as a value for a database varchar2 column - if you don't check the input and escape the output more dangerous scripts can be executed than just a small pop up box saying Hello. Even with Pete Finnigan on the front row making him kinda nervous, Peter did a good job!
My last session of the day - and the conference - was a two hour Masterclass on ADF by Duncan Mills. He showed us how all the XML files in JDev are created, what the connection was between all these XML files and how to tweak it. For instance how to change (as an example : change the backgroud color) the drag and drop feature in the faces_creator_configuration file. Great session, although he couldn't get through all his 72 (!) slides and tons of examples - have to buy the book (as I didn't win the signed copy).
After that the trip home. Doug Burns made the waiting at the airport more pleasant (and/or the Guinness) , but it still was a long trip. Thanks for the organisation for this great event, I hope to get back next year!
The day started with a presentation on Datamodelling using JDev. The presenter showed how JDev could replace Designer for modelling. Imho JDev doesn't support logical modelling at all (he misused Java class models to represent a logical model), there is no repository and no relation between a logical and physical model. For just physical modelling JDev is fine, because all 11g database options are included. This modelling option will become available in SQL Dev also....
After that I went to see my esteemed colleague Peter Lorentzen's talk on How to make your APEX Application Secure. He stated that APEX is secure, but developers make it unsecure. Nice statement Peter! One of his (many) good advices was not to use XE for an APEX (open) production environment as XE is not patched and you will be vulnerable to all kinds of attacks. He also showed a script attack by adding a small "Hello World" script as a value for a database varchar2 column - if you don't check the input and escape the output more dangerous scripts can be executed than just a small pop up box saying Hello. Even with Pete Finnigan on the front row making him kinda nervous, Peter did a good job!My last session of the day - and the conference - was a two hour Masterclass on ADF by Duncan Mills. He showed us how all the XML files in JDev are created, what the connection was between all these XML files and how to tweak it. For instance how to change (as an example : change the backgroud color) the drag and drop feature in the faces_creator_configuration file. Great session, although he couldn't get through all his 72 (!) slides and tons of examples - have to buy the book (as I didn't win the signed copy).
After that the trip home. Doug Burns made the waiting at the airport more pleasant (and/or the Guinness) , but it still was a long trip. Thanks for the organisation for this great event, I hope to get back next year!
Comments