A first look at the SBanken Open Banking API

by Anders Austad

Due to the PSD2 directive and Open Banking initiatives, Norwegian banks have started to make their data available to external parties and customers through APIs. Several banks have now launched their first versions of APIs and developer portals. Nordea seems to be the one with the most functionality exposed (https:…

Parameter count mismatch between X-Forwarded-For and X-Forwarded-Proto

by Anders Austad

These are my fieldnotes from experimenting with the ForwardedHeaders middleware on ASP.NET Core 1.1 and 2.0 - sparked by having a production log full of Parameter count mismatch between X-Forwarded-For and X-Forwarded-Proto warnings. I've set up a github repo and a simple Postman example here. Background The…

A pile of anti-forgery cookies

by Anders Austad

Opening the Chrome console on one of our web apps I noticed this: A huge amount of anti-forgery cookies with similar names, all valid for the same domain. These will be sent over the wire for every single request to that domain, as seen here: Extra payload that won't be…

Forward Disqus comments to Slack using Azure Functions

by Anders Austad

Hello! Today we're cooking up a new recipe titled "Potion for forwarding Disqus comments to Slack". It's experimental, and sometimes smells bad, but it's fun and gets the job done. Bring your apron! (If your blog is using the Disqus commenting engine, the following solution can be used…

Three non-coding tips for Visual Studio Code

by Anders Austad

I find myself spending more and more time in Visual Studio Code. It's a light-weight, extensible and fast editor, and it can be used for just about anything. Having explored some options lately, here's a writeup of three non-coding use cases I've found helpful. New to Visual Studio Code? Download…