{R}R Dev Notes
Found total of 7 articles.
The Engineering of Intent, Chapter 29: Vibe Coding in the Backend
Chapter 29 of The Engineering of Intent blog series. Backends are unusually well suited to agentic development — but each subdomain has characteristic failure modes. A teaser on API design, migrations, job idempotency, caching, auth, and the billing-service rewrite that shipped in four months via extraction rather than vibes.
2026-05-15
Chapter 15: FAPI and High-Stakes Security — When the Defaults Aren't Enough
Chapter 15 of the OpenID: Modern Identity series — FAPI for high-stakes scenarios: what FAPI 1.0 Advanced and 2.0 require, Pushed Authorization Requests (PAR), JWT-Secured Authorization Requests (JAR), and migrating from FAPI 1.0 Advanced to FAPI 2.0.
2026-03-21
Chapter 8: Securing Backend APIs — Bearer Tokens, Scopes, and Service-to-Service
Chapter 8 of the OpenID: Modern Identity series — securing backend APIs with bearer tokens, scope design for least privilege, token introspection versus local JWT validation, and the three mechanisms for service-to-service authentication.
2026-03-14
Chapter 5: Tokens in Depth — What's Actually in That JWT
Chapter 5 of the OpenID: Modern Identity series — what's really inside an ID Token, Access Token, and Refresh Token, how JWTs are structured, how to validate signatures correctly, and how DPoP and mTLS bind tokens to their legitimate holders.
2026-03-11
Chapter 3: Core Concepts — The Vocabulary of OpenID Connect
Chapter 3 of the OpenID: Modern Identity series — the IdP/RP/user triangle, claims and JWTs, the three OIDC token types, consent and scopes, sessions vs tokens, and the boundary between authentication and authorization.
2026-03-09
Chapter 2: From OpenID to OpenID Connect — How the Industry Got This One Right
Chapter 2 of the OpenID: Modern Identity series — tracing how the industry moved from the original OpenID and SAML through OAuth 2.0 to OpenID Connect, and when to reach for each standard.
2026-03-08
OpenID: Modern Identity for Developers and Architects — A 22-Part Blog Series
Introduction and index for the 22-part blog series based on OpenID: Modern Identity for Developers and Architects by Sho Shimoda — with links to every chapter from Why Identity Is Hard through Identity in AI Systems.
2026-03-06
Categories
Tags
Search Logs
Hello World bot 1185
IT assistant bot 1140
Deploy Teams bot to Azure 1137
Microsoft Bot Framework 1052
Teams bot development 1025
Teams production bot 1004
bot for sprint updates 994
Microsoft Teams Task Modules 979
Zendesk Teams integration 979
Teams app zip 977
Bot Framework Adaptive Card 973
Bot Framework example 963
Task Modules 961
Teams chatbot 955
Azure CLI webapp deploy 952
C 952
Teams bot packaging 947
Teams bot tutorial 946
Bot Framework proactive messaging 941
Graph API token 937
Bot Framework CLI 932
Adaptive Card Action.Submit 930
Bot Framework prompts 913
Azure App Service bot 908
Microsoft Graph 907
Azure Bot Services 883
Adaptive Cards 881
Azure bot registration 880
ServiceNow bot 866
proactive messages 814
Development & Technical Consulting
Working on a new product or exploring a technical idea? We help teams with system design, architecture reviews, requirements definition, proof-of-concept development, and full implementation. Whether you need a quick technical assessment or end-to-end support, feel free to reach out.
Contact Us