I harp on this a lot: You can never trust the client (as in “the browser”). In this case, Joomla was not sanitizing User Agent strings before storing them in the database, opening a garage door-sized security hole.
The Best of the Internets
There are lots of places the progressive enhancement mindset can be put into practice. Of course you do often control the server, so a particular feature being unavailable isn’t usually an issue, but good open source software looks for alternative tools—ImageMagick vs. GD, for example—and adjusts it’s program accordingly.
An excellent overview of progressively enhancing image uploads in what many would call a “web app”. See also this great writeup they did on their progressively enhanced maps.
Léonie Watson investigates and says… yes.
An excellent piece from Laura Patti, pondering the value of design in the age of so many “good enough” templates and frameworks.
A tool for automated testing of a list of URLs for accessibility compliance.
Touchscreen without audio cues are a big problem, especially on airplanes.
I walked you through my journey to HTTPS a few weeks back, but I’m intrigued by Let’s Encrypt. Honestly, I would have preferred taking that approach as it looks much easier to me.
Ever wonder how HTML should map to Accessibility APIs? Look no further.