Concepts
ARIA
Accessible Rich Internet Applications (ARIA) is a set of attributes that define ways to make web content and web applications (especially those developed with JavaScript) more accessible to people with disabilities.
RDF
Resource Description Framework (RDF) is a standard model for data interchange on the Web. RDF has features that facilitate data merging even if the underlying schemas differ, and it specifically supports the evolution of schemas over time without requiring all the data consumers to be changed.
Semantic markup
Semantic markup is the use of a markup language such as HTML to convey information about the meaning of each element in a document through proper selection of markup elements, and to maintain complete separation between the markup and the visual presentation of the elements contained in the document.
There are two different practices that must be put into place if we are going to write semantic markup.
- Semantic markup requires that HTML elements be used according to their intended purpose.
- Semantic markup requires the separation of content and presentation.
For example, lots of divs that looked like this: <div id="nav">, <div id="header">, and <div id="footer">. Findings like these helped the W3C identify and target new semantic tags to include in HTML5 such as: nav, header, footer, article, and aside. We can group the most common and important semantic elements into four categories:
- Document structure tags
- Textual meaning tags
- Media type tags
- Correlation tags
XForms
XForms is an XML format used for collecting inputs from web forms. XForms was designed to be the next generation of HTML / XHTML forms, but is generic enough that it can also be used in a standalone manner or with presentation languages other than XHTML to describe a user interface and a set of common data manipulation tasks.
Web Farm 和 Web Garden 的区别?
Overview: Build a Web Farm with IIS Servers
Web farms in .NET and IIS (part1 of 5)
Shim types
Shim types are one of two technologies that the Microsoft Fakes Framework uses to let you easily isolate components under test from the environment. Shims divert calls to specific methods to code that you write as part of your test. Many methods return different results dependent on external conditions, but a shim is under the control of your test and can return consistent results at every call. This makes your tests much easier to write.
Stub types
Stub types are one of two technologies that the Microsoft Fakes framework provides to let you easily isolate a component you are testing from other components that it calls. A stub is a small piece of code that takes the place of another component during testing. The benefit of using a stub is that it returns consistent results, making the test easier to write. And you can run tests even if the other components are not working yet.
用 Microsoft Fakes 隔离测试代码
Fakes come in two flavors:
- A stub replaces a class with a small substitute that implements the same interface. To use stubs, you have to design your application so that each component depends only on interfaces, and not on other components. (By "component" we mean a class or group of classes that are designed and updated together and typically contained in an assembly.)
- A shim modifies the compiled code of your application at run time so that instead of making a specified method call, it runs the shim code that your test provides. Shims can be used to replace calls to assemblies that you cannot modify, such as .NET assemblies.
Stub and Shim in Visual Studio 2012 Unit Test
Safe storage of app secrets in development in ASP.NET Core
Environment variables
Environment variables are used to avoid storage of app secrets in code or in local configuration files. Environment variables override configuration values for all previously specified configuration sources.
Secret Manager
The Secret Manager tool stores sensitive data during the development of an ASP.NET Core project. In this context, a piece of sensitive data is an app secret. App secrets are stored in a separate location from the project tree. The app secrets are associated with a specific project or shared across several projects. The app secrets aren't checked into source control.
The Secret Manager tool doesn't encrypt the stored secrets and shouldn't be treated as a trusted store. It's for development purposes only.
Azure Key Vault configuration provider in ASP.NET Core
Azure Key Vault is a cloud-based service that helps you safeguard cryptographic keys and secrets used by apps and services.
App startup in ASP.NET Core
WebHostBuilderExtensions.UseStartup Method
WebHost Class
What is Azure Relay?
The Azure Relay service enables you to securely expose services that run in your corporate network to the public cloud. You can do so without opening a port on your firewall, or making intrusive changes to your corporate network infrastructure.
Azure Cloud Services Definition WebRole Schema
The Azure web role is a role that is customized for web application programming as supported by IIS 7, such as ASP.NET, PHP, Windows Communication Foundation, and FastCGI.
How to use Azure Relay WCF relays with .NET
ASP.NET Core Middleware
Middleware is software that's assembled into an app pipeline to handle requests and responses. Each component:
- Chooses whether to pass the request to the next component in the pipeline.
- Can perform work before and after the next component in the pipeline.
Creating Custom Middleware In ASP.Net Core
How to: Receive First-Chance Exception Notifications
The FirstChanceException event of the AppDomain class lets you receive a notification that an exception has been thrown, before the common language runtime has begun searching for exception handlers.
The event is raised at the application domain level. A thread of execution can pass through multiple application domains, so an exception that is unhandled in one application domain could be handled in another application domain. The notification occurs in each application domain that has added a handler for the event, until an application domain handles the exception.
Remote Debug ASP.NET on a Remote IIS Computer
Azure Acs plus asp.net MVC memberships
Windows Identity Foundation 4.5 Overview
Windows Identity Foundation 4.5 is a set of .NET Framework classes for implementing claims-based identity in your applications. By using it, you’ll more easily reap the benefits of claims-aware applications and services. WIF 4.5 can be used in any Web application or Web service that uses the .NET Framework version 4.5 or later. WIF is just one part of Microsoft’s Federated Identity software family that implements the shared industry vision based on open standards.
Peer to Peer ASP.NET State Server
Session and app state in ASP.NET Core
Using Startup Task in Windows Azure detailed summary
Tutorial: Real-time chat with SignalR 2 and MVC 5
ASP.NET SignalR Hubs API Guide - JavaScript Client
var connection = $.hubConnection();
var contosoChatHubProxy = connection.createHubProxy('contosoChatHub');
contosoChatHubProxy.on('addContosoChatMessageToPage', function(userName, message) {
console.log(userName + ' ' + message);
});
connection.start()
.done(function(){ console.log('Now connected, connection ID=' + connection.id); })
.fail(function(){ console.log('Could not connect'); });
ASP.NET MVC Preview 5 and Form Posting Scenarios
Use UI automation to test your code
Coded UI Test for automated UI-driven functional testing is deprecated. We recommend using Selenium for testing web apps and Appium with WinAppDriver for testing desktop and UWP apps.
The OAuth 2.0 Authorization Framework
快速入门:将 Azure Redis 缓存与 .NET Core 应用配合使用
What is Azure Cache for Redis
.NET 4.0 中的契约式编程
Cross-Site Request Forgery (CSRF)
Preventing Cross-Site Request Forgery (CSRF) Attacks in ASP.NET MVC Application
The Right Way to Handle Azure OnStop Events
Customize the Lifecycle of a Web or Worker role in .NET
If an exception occurs within one of the lifecycle methods, Azure will raise the UnhandledException event, and then the process is terminated. After your role has been taken offline, it will be restarted by Azure. When an unhandled exception occurs, the Stopping event is not raised, and the OnStop method is not called.
Understanding Action Filters (C#)
Configure IntelliTrace to collect debugging information
Best Practices for Error Handling in ASP.NET MVC
List of HTTP status codes
Understanding ViewData, ViewBag and TempData
Understanding Routing Precedence in ASP.NET MVC and Web API
Setting up Windows Azure Active Directory ACS to provide identities to Windows Azure Pack
Using the IIS Search Engine Optimization Toolkit
Techniques for Mobile-friendly ASP.NET MVC 4.0 web sites
What is a Meta Title, and what is its role in SEO?
What is the meaning of “vnd” in MIME types?
vnd indicates vendor-specific MIME types, which means they are MIME types that were introduced by corporate bodies rather than e.g. an Internet consortium.
Export Data In Excel File With ASP.NET MVC
Custom Model Binding in ASP.NET Core
Understanding and Extending Controller Factory in MVC
Windows Azure Remote Desktop
Regular Expression Language - Quick Reference
Extending Identity Accounts and Implementing Role-Based Authentication in ASP.NET MVC 5
Role-based authorization in ASP.NET Core
An Overview of Project Katana
How to: Access Claims in an ASP.NET Page
Using Application Domains
Using Browser Link in Visual Studio 2013
HTTP Handlers and HTTP Modules Overview
Bundling and Minification
Parameterized Query and SQL Injection Attacks
How and Why to Use Parameterized Queries
CSS Sprites: What They Are, Why They’re Cool, and How To Use Them
Content-Encoding
Quality values
Enabling Azure Diagnostics in Azure Cloud Services
Introduction to Azure Blob storage
Media Queries
Implement jQuery UI slider with ASP.NET
ASP.NET MVC Client Side Validation
Trusted Subsystem
Html submission by ValidateInput and AllowHtml attribute in MVC4
Authorize developer accounts by using Azure Active Directory in Azure API Management
Policies in Azure API Management
How to capture an ASP.NET Core memory dump on Azure App Service
How to Use Web.Config customErrors for ASP.NET
Session-State Session-State Modes
Routing in MVC
Consuming an ASP.NET Web Service (ASMX)
What exactly is the Windows AppFabric?
Tools
Aspnet_regiis.exe
When multiple versions of the .NET Framework are executing side-by-side on a single computer, the ASP.NET ISAPI version mapped to an ASP.NET application determines which version of the common language runtime (CLR) is used for the application. The ASP.NET IIS Registration Tool (Aspnet_regiis.exe) allows an administrator or installation program to easily update the script maps for an ASP.NET application to point to the ASP.NET ISAPI version that is associated with the tool. The tool can also be used to display the status of all installed versions of ASP. NET, register the ASP.NET version that is coupled with the tool, create client-script directories, and perform other configuration operations.
Ngen.exe
本机映像生成器 (Ngen.exe) 是一种提高托管应用程序性能的工具。 Ngen.exe 创建本机映像(包含经编译的特定于处理器的机器代码的文件),并将它们安装到本地计算机上的本机映像缓存中。 运行时可从缓存中使用本机映像,而不必使用实时 (JIT) 编译器编译原始程序集。
Aspnet_merge.exe
The ASP.NET Merge tool (Aspnet_merge.exe) enables you to combine and manage assemblies that are created by the ASP.NET Compilation (Aspnet_compiler.exe) tool.
EdmGen.exe
EdmGen.exe 是用于处理Entity Framework模型和映射文件的命令行工具。
Resgen.exe
The Resource File Generator (Resgen.exe) converts text (.txt or .restext) files and XML-based resource format (.resx) files to common language runtime binary (.resources) files that can be embedded in a runtime binary executable or satellite assembly.
Mage.exe (Manifest Generation and Editing Tool)
The Manifest Generation and Editing Tool (Mage.exe) is a command-line tool that supports the creation and editing of application and deployment manifests.
NT LAN Manager NTLM
In a Windows network, NT LAN Manager (NTLM) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users. NTLM is the successor to the authentication protocol in Microsoft LAN Manager (LANMAN), an older Microsoft product. The NTLM protocol suite is implemented in a Security Support Provider, which combines the LAN Manager authentication protocol, NTLMv1, NTLMv2 and NTLM2 Session protocols in a single package.
Application Insights for Azure cloud services
Application Insights can monitor Azure cloud service apps for availability, performance, failures, and usage by combining data from Application Insights SDKs with Azure Diagnostics data from your cloud services. With the feedback you get about the performance and effectiveness of your app in the wild, you can make informed choices about the direction of the design in each development lifecycle.
What is role-based access control (RBAC)?
Access management for cloud resources is a critical function for any organization that is using the cloud. Role-based access control (RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.
RBAC is an authorization system built on Azure Resource Manager that provides fine-grained access management of resources in Azure.
Service Control Manager
The service control manager (SCM) is started at system boot. It is a remote procedure call (RPC) server, so that service configuration and service control programs can manipulate services on remote machines.
ClosedXML
ClosedXML is a .NET library for reading, manipulating and writing Excel 2007+ (.xlsx, .xlsm) files. It aims to provide an intuitive and user-friendly interface to dealing with the underlying OpenXML API.
Class & Method & Property
ValidateInputAttribute Class
Represents an attribute that is used to mark action methods whose input must be validated.
HttpRequest.Unvalidated Property
Gets the HTTP request values without triggering request validation.
Request validation checks for HTML markup and script that might indicate a potential cross-site scripting attack. By default, all values are checked using request validation and if any values contain markup or script, ASP.NET throws an HttpRequestValidationException exception. Use this method if you anticipate that the request will contain markup (for example, you are allowing users to post content that contains markup) and you want to get the raw value of a request.
ResourceManager Class
表示资源管理器,其可在运行时提供对于特定文化资源的便利访问。
ConfigurationBuilder Class
Used to build key/value based configuration settings for use in an application.
WebPermission Class
控制访问 HTTP Internet 资源的权限。
SocketPermission Class
控制在传输地址上建立或接受连接的权利。
WebRequest Class
对统一资源标识符 (URI) 发出请求。 这是一个 abstract 类。
WebResponse Class
提供来自统一资源标识符 (URI) 的响应。 这是一个 abstract 类。
SqlMembershipProvider Class
Manages storage of membership information for an ASP.NET application in a SQL Server database.
RazorPage.RenderSection Method
LinkExtensions.ActionLink Method
ValidateAntiForgeryTokenAttribute Class
You need to decorate method with ValidateAntiForgeryToken attribute as below:
[HttpPost]
[ValidateAntiForgeryToken]
public ActionResult CreateProduct(Product product)
{
if (ModelState.IsValid)
{
//your logic
}
return View(ModelName);
}
And in your view, add this code to add the token so it is used to validate the form upon submission: @Html.AntiForgeryToken()
WebEventCodes Class
OWIN Startup Class Detection
CSS Media Queries
CrashDumps.EnableCollection Method (Boolean)
DataAdapter Class
Represents a set of SQL commands and a database connection that are used to fill the DataSet and update the data source. The DataAdapter serves as a bridge between a DataSet and a data source for retrieving and saving data. The DataAdapter provides this bridge by mapping Fill, which changes the data in the DataSet to match the data in the data source, and Update, which changes the data in the data source to match the data in the DataSet.
