Dario Hamidi dhamidi

## example.esh
<!doctype html>
<html>
  <head>
    <meta charset="utf-8">
    <title><%= "$TITLE" %></title>
    <script type="text/javascript" src="jquery.js"></script>
  </head>
  <body>
    <p>It's alive!</p>
    <ul>

## AAAS.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                dhamidi
                / AAAS.md
            
            
              Last active
              December 31, 2015 02:59
                — forked from leehambley/AAAS.md
            
              
                Fix some typos.
              
          
    Problem

Web applications need understand what permissions are granted to a current user in two key areas.

When enforcing the permission server side (e.g returning 403 when trying to access a resource outside of one's graph)
When rendering the user interface, so as not to render misleading controls (e.g "Edit this Widget", if the user lacks the appropriate permissions.

Further, in many applications in the wild (for better, or worse, perhaps I need new friends and colleagues) I've seen ways implemented to nerf or flat-out disable authorisation controls. In addition to the regular graph-based authorisation flow, the concept of super users is prevelant, and dangerous.
Background


## .inputrc
$include /etc/inputrc

set bind-tty-special-chars off
set skip-completed-text on
set bell-style visible

"\C-x\C-e": edit-and-execute-command

"\C-xa\"": "\"\C-x\C-x\C-f\""
"\C-xa(": "(\C-x\C-x\C-f)"
	<!doctype html>
	<html>
	<head>
	<meta charset="utf-8">
	<title><%= "$TITLE" %></title>
	<script type="text/javascript" src="jquery.js"></script>
	</head>
	<body>
	<p>It's alive!</p>
	<ul>
	$include /etc/inputrc

	set bind-tty-special-chars off
	set skip-completed-text on
	set bell-style visible

	"\C-x\C-e": edit-and-execute-command

	"\C-xa\"": "\"\C-x\C-x\C-f\""
	"\C-xa(": "(\C-x\C-x\C-f)"