This article explains why using JSON Web Tokens (JWT) for session handling is a flawed and risky practice, debunks common misconceptions about its benefits, outlines the security and operational drawbacks, and clarifies the scenarios where JWT can be appropriately applied.
This article explains why using JSON Web Tokens for session management is unsafe, detailing misconceptions about their benefits, highlighting security, scalability, and usability drawbacks, and finally outlining appropriate use cases such as short‑lived one‑time authorization tokens.
A full‑stack test engineer should combine solid testing fundamentals with programming, web and backend development, database, OS/network knowledge, automation tools, DevOps practices, agile collaboration, and continuous learning to effectively design, execute, and improve comprehensive software tests.
PHP remains a resilient, versatile server‑side language whose active community, regular updates, strong security, seamless database integration, and efficient server‑side scripting deliver fast, dynamic, and interactive web applications, making it a pivotal technology in modern web development.
This article explains the PHP readfile() function, covering its syntax, parameter details, return values, and practical examples for sending files to the browser, storing them in variables, and using include_path searches, while noting memory considerations for large files.
This article presents a detailed curriculum covering an opening ceremony, Python fundamentals and advanced topics, Django development (including ORM and authentication), frontend basics with HTML, CSS, JavaScript, jQuery, a Layui UI framework module, and a hands‑on K8s Dashboard web project, followed by recommended reading links.
This article explains the micro‑frontend concept, outlines when it is appropriate to adopt, compares popular frameworks, and provides a detailed tutorial—including code snippets—for creating a React‑based micro‑frontend base (host) application using the micro‑app library.
This article explains how PHP sessions and cookies work together to manage user data, improve authentication, shopping carts, and personalization, providing code examples and best practices for secure, seamless web application development.
This article details how a hidden cross‑origin resource sharing (CORS) problem with a single CSS file surfaced during a multi‑project frontend migration to Alibaba Cloud, explains the root cause involving CDN caching without an Origin header, and presents step‑by‑step solutions using Nginx, OSS bucket settings, and CDN configurations.
Next.js 13.5, the latest version of Vercel’s React‑based full‑stack framework, introduces significant performance improvements, new middleware capabilities, enhanced image handling, and expanded documentation, while supporting edge runtime, IPv6, and experimental features, positioning it as a leading tool for modern web development.
This article explains the PHP html_entity_decode() function, covering its syntax, parameters, return value, practical usage examples, and important considerations for correctly converting HTML entities back to their original characters in web applications.
This article explains how Flask's Config class works as a dictionary‑based configuration manager, demonstrates multiple ways to set and load settings—including direct assignment, update, from_object, from_pyfile, environment variables, JSON, and constructor arguments—and provides code examples for each method.
This article explains how to implement WeChat OAuth login in a PHP web application, detailing required prerequisites, the authorization flow with URL endpoints, and providing a complete PHP function that exchanges the code for an access token, refreshes it if needed, and retrieves the user's nickname and avatar for storage.
This article examines PHP's continued dominance in web back‑ends by presenting recent market‑share data, CMS adoption figures, large‑scale deployments, and expert opinions, revealing why the language remains a cost‑effective, high‑performance choice for many enterprises despite predictions of its demise.
This article reviews common Java technologies—JSP, Struts, Hibernate, Servlet, and others—evaluating their relevance for modern backend development based on practical usage, depth of understanding, and interview value, and offers clear recommendations on what to study or drop.
The article presents recent statistics showing PHP still dominates web development, powering 77% of the top 10 million sites, most major CMS platforms, and a large share of e‑commerce solutions, while highlighting its use in large‑scale services such as Slack and Wikipedia.
This guide explores essential front‑end techniques—from efficiently handling massive data sets and adopting the Svelte framework, to containerizing deployments, mastering Chrome and VSCode debugging, applying clean architecture principles, and dissecting eight classic sorting algorithms—providing practical insights for modern web developers.
This article introduces five lesser‑known but powerful JavaScript browser APIs—getBoundingClientRect, IntersectionObserver, createNodeIterator, getComputedStyle, and requestAnimationFrame—explaining their properties, typical application scenarios such as drag‑and‑drop, lazy loading, DOM traversal, style inspection, and animation timing, and providing ready‑to‑use code examples.
This article introduces htmx, a lightweight library that adds Ajax, CSS transitions, WebSockets, and server‑sent events to plain HTML through simple hx‑ attributes, enabling features like lazy loading, form validation, and view transitions without writing JavaScript, and works with any back‑end.
This article explains how to manage multiple asynchronous HTTP requests in modern web development by using Promise.all, Promise.race, async/await, manual counters, and third‑party libraries, providing complete code examples and best‑practice recommendations for limiting concurrency and improving application performance.
This roundup explores cutting‑edge front‑end topics—from using Server‑Sent Events instead of WebSocket and the innovative Rome toolchain, to Git rebase strategies, the status of wangEditor, precise page‑dwell measurement, and the merits of micro‑frontends—while also debunking AI‑related programmer anxiety.
This article presents a curated list of practical web and mobile development projects—ranging from landing pages and API‑driven apps to full‑stack clones, AI‑enhanced sites, and niche mobile apps—to help developers build impressive portfolios and sharpen their skills.
This article explains cross‑domain communication in web development, outlines common methods such as JSONP, CORS, iframe + postMessage and proxy, and provides a PHP example of JSONP implementation with client‑side script to demonstrate data transfer across different domains.
This article explains the basic concepts of GET and POST, debunks common interview answers, reveals that both methods are fundamentally TCP connections, discusses browser and server limits, and highlights the practical impact of their packet‑level differences.
This article introduces a beginner‑friendly online movie website project built with Python Flask, detailing its architecture, front‑end and back‑end features, required environment, dependency installation, and deployment steps, complemented by screenshots and a QR code for free Python learning resources.
This article provides an extensive tutorial covering the Linux kernel architecture, Bash shell scripting, Vim editor usage, GCC compilation process, GDB debugging techniques, Apache HTTP server setup, MySQL/MariaDB/PostgreSQL database basics, and introductory guides to PHP, Python, and Perl programming.
The Sogou Baike mobile front‑end upgrade consolidated three fragmented projects into a single repository, introduced React‑SSR with routing and Redux, streamlined CI/CD, trimmed SSR payloads, lazy‑loaded assets and cut first‑screen requests, resulting in a 24% faster load, 35% bandwidth reduction, 11% CTR rise and a modern, cross‑stack foundation.
This article explains how to strip HTML tags from user‑generated content in PHP by using the built‑in strip_tags function and by applying regular expressions with preg_replace, including code examples, optional tag preservation, and performance considerations.
This tutorial explains how to create a PHP-based video upload feature, covering the front‑end HTML form, detailed back‑end PHP code with an upload_file function, error handling, and demonstrates the upload process with example screenshots.
This article reviews the ten most popular backend frameworks for 2023—including Spring Boot, Django, Express.js, ASP.NET Core, Laravel, Ruby on Rails, Fiber, CakePHP, Flask, and Play—explaining their key features, language ecosystems, and recommended learning resources for developers of all levels.
This roundup covers Chrome’s new Document Picture‑in‑Picture API, WhatsApp’s shift away from Electron, a deep‑dive into IndexedDB versus other web storage options, a real‑world performance analysis case, Vue’s dynamic image handling with require, and the latest ES7‑ES12 language features.
This article walks through four audit implementation strategies, provides the SQL schema and Java SpringBoot controller for an audit feature, shows how to integrate it with a Vue front‑end including file upload handling, and offers complete code snippets for both back‑end and front‑end components.
The article explains three PHP methods for file downloading: a direct link, a parameter‑based redirect that checks file existence, and a streamed download using head() and fread() with proper HTTP headers, comparing their simplicity and security implications.
This article walks through the root causes of CORS failures when a front‑end site accesses a back‑end service, explains the four essential CORS response headers, and provides detailed Nginx configurations—including handling preflight OPTIONS requests and adding missing headers—to reliably resolve cross‑origin issues.
This article surveys recent frontend developments, explaining why ChatGPT uses EventSource instead of WebSocket, promoting IndexedDB as the new storage favorite, celebrating Chakra UI’s growth, detailing async‑validator’s role in form validation across major UI libraries, and summarizing the new features introduced in ECMAScript 2023.
Although PHP has long suffered a poor reputation, modern practices, frameworks, and security measures have largely eliminated its historic pitfalls, making it a performant, scalable, and secure choice for web applications, while acknowledging its relative speed compared to compiled languages and its suitability for specific use cases.
This article introduces how to build a Chrome extension using Python to convert JSON data to FormData format and vice versa, improving development efficiency through browser-based data format conversion.
This tutorial explains how to develop a Chrome extension that assists developers in locating web page elements and generating XPath expressions by outlining the plugin's structure, providing complete configuration files, JavaScript code, HTML/CSS UI, and step‑by‑step instructions for loading and testing the extension.
The article explains why PHP programmers should learn Go, highlighting its faster execution, superior concurrency support, and built‑in web server capabilities, while providing simple code examples and mentioning a related training course.
This tutorial explains how to create a web‑based tool that generates batch mock data of various types—including names, ages, genders, ID numbers, phone numbers, emails, and bank cards—by implementing a Flask backend API and a Vue.js frontend interface, complete with setup, code examples, and deployment steps.
This article introduces Spring WebFlux as a reactive, non‑blocking web framework for Java, explains the concepts of reactive programming, compares it with Spring MVC, and provides practical code examples—including Mono/Flux usage, routing, and handlers—to help developers build and run a WebFlux application with Spring Boot.
Over the past ten years, front‑end development has transformed from basic HTML, CSS, and JavaScript into a sophisticated ecosystem featuring libraries like jQuery, frameworks such as Angular, React, and Vue, modern tooling, security practices, progressive web apps, and emerging AI integrations, reshaping how developers build web experiences.
This guide demonstrates how to create a powerful web-based Redis CRUD interface by integrating Django for the backend API, MySQL for metadata storage, and Vue for a responsive frontend, covering environment setup, project scaffolding, model and view implementation, routing, and deployment steps.
This article shares practical frontend insights, from cultivating a problem‑solving mindset and three expert coding tips to using the new CSS Popover API and effective Node.js debugging, plus experiences with ChatGPT pair programming, the launch of WebContainer 1.0, and essential login‑form UX best practices.
This article provides a step‑by‑step guide to creating a mock service tool using Django, MySQL, and Vue, covering backend environment setup, model and view implementation, API routing, frontend Vue project configuration, component development, and how to run both servers for efficient front‑end development and testing.
This article walks through the root causes of CORS errors when a front‑end site on port 8080 calls a back‑end service on port 59200, explains the four essential CORS response headers, demonstrates common error scenarios, and provides complete Nginx configuration snippets—including handling pre‑flight OPTIONS requests, custom headers, and method allowances—to reliably eliminate cross‑origin problems.
This article explains how to add multilingual support to PHP web applications by creating language files, loading them based on user preferences, using a translation function, and providing a language selector, complete with sample code for each step.
TypeScript 5.1 introduces smarter checks for undefined‑returning functions, removes getter/setter type restrictions, adds support for JSX tags with namespace attributes, provides @param JSDoc snippet completion, decouples JSX element and tag type checking, and includes several other enhancements and breaking changes.
This article introduces ten essential Python libraries and frameworks, providing practical examples and code implementations for each to help readers understand and master their applications in various domains.
CSS cascade layers, introduced via the @layer rule, let developers organize style origins into named, ordered groups—such as resets, libraries, and custom overrides—so they can control precedence without increasing specificity, improve readability, and avoid conflicts, with full support in modern browsers.
This tutorial walks through building a Spring MVC environment from scratch with Spring 5.3.26, covering traditional XML configuration, servlet registration via web.xml, annotations, and SPI, and shows how to configure a REST controller and required message converters.
This guide explains multiple practical methods—including CSS tricks, saving the page, using the print view, and disabling JavaScript—to overcome copy‑and‑paste restrictions on web pages, complete with code examples and step‑by‑step instructions.
This tutorial demonstrates how to build a decoupled web application by creating RESTful APIs with PHP using ThinkPHP6 and a Vue.js frontend that consumes those APIs, covering code examples for controllers, components, routing, and integration.
Fair-Online is a cloud‑based development platform for Flutter that combines an online code editor, visual project/component creation, real‑time compilation preview, hot‑reload style updates, and a custom syntax‑analysis service, enabling developers to build, test, and deploy Flutter applications without local environment setup.
This article critically examines the common misconceptions about JWT advantages, explains the security and practical drawbacks of using JWT for session management, and outlines the scenarios where JWT is appropriate, such as short‑lived, one‑time authorization tokens.
This article compares the three leading static site generators—Gatsby, Hugo, and Jekyll—detailing their advantages, disadvantages, and ideal use cases, helping readers decide which tool best fits their static website projects in terms of performance, flexibility, and community support.
This article chronicles ten years of frontend development, covering the rise of HTML5, CSS3, JavaScript frameworks, build tools, PWA performance, web components, security challenges, essential developer skills, and the emerging fusion of AI with modern web technologies.
This article curates recent front‑end topics—including HTTP Range resumable downloads, H5 app invocation, automation testing adoption, new JavaScript/TypeScript features, Chrome 112 updates, the history of Signals, and industry viewpoints—providing concise insights for developers seeking to stay current.
This article analyzes the popularity, download trends, developer preferences, and strengths and weaknesses of Angular, React, and Vue using StackOverflow surveys, NPM download statistics, and State‑of‑JavaScript reports, concluding that React leads in 2021 with Vue and Angular following behind.
This article explains the differences between servlet filters and Spring MVC interceptors, demonstrates how to wrap requests with HttpServletRequestWrapper, use OncePerRequestFilter, configure filters and interceptors in Spring Boot, handle login interception with AJAX redirects, set up listeners, manage static resources, and provides step‑by‑step testing procedures with code examples.
IntelliJ IDEA 2023.1 introduces a revamped UI with new split options, compact mode, and redesigned widgets, boosts performance through faster Maven imports and smarter indexing, adds background commit checks, enhances Java, Scala, and web development support, and improves overall user experience with scaling and AI‑powered search.
This tutorial walks through creating a simple test device management platform using Python, Flask, and PostgreSQL, covering framework selection, database operations, API definition, and front‑end rendering with HTML and jQuery for a complete end‑to‑end web solution.
This article explains the fundamentals of OAuth2.0, distinguishes it from SSO, describes the roles of resource owner, client, authorization server and resource server, outlines the step‑by‑step authorization flow, and clarifies related terminology such as authentication, federated identity, and delegated authorization.
This article introduces the FACE-UI project, a web‑based face‑login system built with a Spring Boot backend, MySQL database, JWT authentication, and a Vue 2.x frontend, detailing setup steps, code snippets, and configuration of Tencent Cloud facial comparison API.
The 2022 State of CSS and State of JS surveys, which collected 14,310 CSS and 39,472 JavaScript responses, reveal demographic details, highlight rapidly adopted CSS features like flex gap, aspect‑ratio, and :has, showcase popular JavaScript language enhancements such as nullish coalescing and top‑level await, and expose developers' satisfaction, usage, and pain points across frameworks, tools, and browsers.
jQuery 3.6.4 arrives just two months after its predecessor, adding support for the new :has() selector, refining how native CSS.supports determines whether selectors are handled by querySelectorAll or jQuery's engine, and includes various other bug fixes and improvements.
The article reviews 2022 front‑end breakthroughs—React 18, Astro, SvelteKit, Qwik, SolidStart, TypeScript‑driven tooling, server‑side rendering, hydration challenges, fine‑grained reactivity, edge computing, and predicts how these trends will influence web development in 2023.
Learn how to create a web-based facial recognition login system by setting up a Spring Boot backend with MySQL and JWT, integrating Tencent Cloud's face comparison API, and building a Vue 2.x frontend that captures webcam images, manages face data, and displays comprehensive CRUD interfaces.
This guide walks you through registering for an OpenAI account, creating an API key, understanding the completion endpoint parameters, and implementing a ChatGPT‑driven chatbot using plain JavaScript/HTML as well as a Spring Boot backend, complete with code samples and configuration steps.
The article reviews 2022 frontend trends—including performance, runtime, bundle size, and Rust's emerging role—examines the rise of low‑code full‑stack solutions, analyzes the 2023 job market, and offers practical advice for developers navigating a maturing yet evolving frontend landscape.
This guide explains how to design a fluid, responsive experience for the DingTalk PC client by defining screen‑size breakpoints, setting default and minimum window dimensions, choosing content‑area scaling rules, and handling fixed elements, card layouts, text and image scaling across devices.
This article introduces the browser‑native CSS Custom Highlight API, explains its pseudo‑element ::highlight, shows how to create ranges and Highlight objects with JavaScript, and demonstrates practical examples such as custom text styling, rainbow text, live search highlighting, performance comparisons, and a lightweight code‑highlight editor.
This weekly digest curates five essential reads—including Vue.js 2023 roadmap insights, a deep dive into React Hooks, standout ChatGPT open‑source projects, practical front‑end quality measures, and a critical look at React's evolution—offering developers fresh perspectives and actionable knowledge.
This article revisits CSS specificity, explaining inheritance, cascade rules, the new @layer feature, and best practices for using !important, providing clear examples and guidelines to help developers manage style priority more effectively.
This article introduces Vue.js, highlights its advantages such as small size, component‑based architecture, excellent documentation, and easy integration, and then surveys a curated collection of widely used Vue ecosystem projects—including UI component libraries, toolkits, and developer utilities—providing URLs, licenses, and key features for each.
This article introduces XNote, a lightweight personal note system with rich data management, cross‑platform support, and extensible plugins, detailing its key features, system architecture, directory layout, required dependencies, and step‑by‑step installation and configuration instructions for Python environments.
The article introduces the TC39 Async Context proposal, explains why asynchronous context is needed, shows a library implementation using run and log functions, describes the AsyncContext API with run, get, and wrap methods, and explores use cases such as trace propagation, task‑priority handling, and comparisons with thread‑local storage and Node.js AsyncLocalStorage.
This article compiles twelve practical JavaScript functions—from generating random colors and shuffling arrays to detecting dark mode, scrolling, clipboard copying, device detection, element visibility, URL parameters, deep cloning, and async waiting—each explained with concise code examples for everyday front‑end development.
The article surveys the latest web development trends—rising meta‑frameworks like Next.js, the shift toward server‑side rendering and edge‑computing, the resurgence of databases with serverless, the evolution of JavaScript runtimes, monorepos, utility‑first CSS, end‑to‑end type safety, modern build tools, and AI‑driven coding—highlighting why 2023 feels like a renaissance for front‑end engineers.
This article explores the design motivations behind HTTP, tracing its evolution from the early TCP‑based request‑response model through HTTP/0.9, 1.0, 1.1, to modern HTTP/2 and HTTP/3, highlighting key features like headers, caching, connection reuse, and protocol optimizations.
This free Cantonese-language course introduces PHP7 fundamentals, MySQL database connection, and simple website development using professional tools, empowering learners to build their own web projects, with all materials available online via the provided link.
Discover ten essential, free front‑end development tools—from gradient generators and responsive testing apps to API libraries, image sources, SVG illustration collections, documentation browsers, regex debuggers, template sites, code formatters, and icon repositories—that can streamline your workflow and enhance productivity.
This article explains why people with disabilities heavily use the internet, defines information accessibility, outlines various disability groups, describes focus handling, showcases inclusive design innovations, and provides practical guidance on semantic HTML, ARIA attributes, tabindex, and testing tools for creating accessible web applications.
A curated collection of recent frontend articles covering a code‑submission script, the Remesh DDD framework, CSRF security basics, GraphQL BFF implementation for cloud music, build‑time reduction tricks, and the Intl.Enumeration proposal reaching Stage 4, offering valuable insights for web developers.
This article explains how ICBU measures and improves global front‑end performance using Core Web Vitals and FCP, outlines the rationale behind metric selection, details threshold logic for LCP, CLS and FID, describes multi‑channel data collection and aggregation, and showcases dashboards that help developers identify and resolve performance issues.
Next.js 13.1 has been officially released, introducing improvements to the app directory, built‑in module transpilation, a stable Edge runtime, Turbopack enhancements, middleware capabilities, a new SWC transform called modularizeImports, and various memory and template optimizations.
It introduces a series of front‑end engineering articles covering comprehensive monitoring architecture, CSS‑based click throttling, drag‑and‑drop implementation, 30 essential JavaScript concepts, and a simple responsive data‑dashboard solution, aiming to deepen developers’ skills and showcase resume‑worthy expertise.
This article introduces HTML5 Canvas, explains its advantages over SVG, and provides comprehensive guidance on using the Canvas API—including context acquisition, drawing shapes, paths, arcs, gradients, pixel manipulation, state management, transformations, and a complete clock example—illustrated with code snippets and visual demos.
Google released its list of the 2022 most popular Chrome extensions, highlighting twelve standout tools across productivity, focus, gaming & video, and learning categories, each offering unique features that enhance browsing, workflow, and online experiences for users worldwide.
This article explains how browsers handle TCP connections and SSL sessions when loading pages with many images, covering connection persistence, request multiplexing, HTTP pipelining limitations, per‑host connection limits, and the advantages of HTTP/2 multiplexing for efficient resource fetching.
This guide explains Spring 5.3’s built‑in servlet filters—including FormContentFilter for handling form data in PUT/PATCH/DELETE, ForwardedHeaderFilter for adjusting request URLs behind proxies, ShallowEtagHeaderFilter for lightweight caching, the CORS filter for cross‑origin requests, and CharacterEncodingFilter for enforcing request/response encoding—along with configuration tips and security considerations.
React 18 introduces Streaming SSR and Selective Hydration, enabling faster initial page rendering and more efficient hydration by only rendering necessary components.
The article presents a full‑featured H5 image viewer built on the native canvas API that supports touch gestures such as swipe, drag, pinch‑zoom and double‑tap, handles slide switching, boundary control, initial centering, mouse‑wheel emulation, and high‑resolution rendering via devicePixelRatio, eliminating the need for native bridges.
This article presents a comprehensive investigation of Svelte, detailing its dramatic bundle size reduction, performance improvements, compilation-based architecture, core implementation, advantages, drawbacks, and practical usage guidelines, supported by real project data, npm and GitHub statistics, and code examples to help developers confidently adopt Svelte.
In a fast‑paced environment with strict deadlines, this guide presents fourteen essential developer tools—ranging from screen dimmers and PDF utilities to AI upscalers and coding activity trackers—to help improve workflow efficiency and streamline everyday tasks.
This article explains how front‑end engineers can transition from traditional static‑site deployment to fully cloud‑native web applications by leveraging Alibaba Cloud’s Serverless services—OSS, CDN, and Function Compute—to achieve automatic scaling, zero‑ops maintenance, cost efficiency, and enhanced security for dynamic APIs, tasks, and media processing.
This article explains how to design, implement, and evaluate a mouse gesture recognition system using machine learning and geometric analysis, covering data preprocessing, model training with TensorFlow.js, cosine‑similarity matching, performance optimizations, and extensions to three‑dimensional VR/AR environments.
This article explains how a single mask image and the CSS mask-image property can be used to prevent subtitles from overlapping on‑screen characters in Bilibili videos, providing a lightweight demo with HTML/CSS code, visual results, and practical cautions about browser support.
This article explains why using JSON Web Tokens (JWT) for session management is problematic, detailing the misleading claimed benefits, the concrete disadvantages such as increased size, inability to revoke, security risks, and finally outlines the scenarios where JWT can be appropriately used as short‑lived authorization tokens.
This article provides a comprehensive overview of JavaScript Promises, covering their definition, states, basic usage, error handling, chaining, common APIs, best practices, advanced scenarios such as preloading and cancellation, as well as manual implementation techniques, to help front‑end developers deepen their asynchronous programming skills.
