HTML5/JavaScript Communication APIs - DPC 2014
1 like1,403 views
Arrabiata Solutions is a digital agency founded in 2006 with offices in Munich and London. They offer full-service digital solutions from conception to realization. The document discusses various communication APIs for HTML5/JavaScript including status quo techniques like JSONP, CORS, and messaging APIs as well as newer techniques like Server-Sent Events and Web Sockets. It provides an overview of how each technique works and when to use each one based on factors like supporting cross-domain communication, returning data, using backchannels, handling long-running processes, and performance.
1 of 18
Downloaded 17 times
![Working around SOP: JSONP
• JSON with padding
• Ajax call:
– <script src="http://domain/file.ashx?jsonp=func">
</script>
• Return value:
– func([1, 2, 3]);
• „Padding“ is „func“
• Works in virtually any browser
• Still is kinda hackish](https://image.slidesharecdn.com/html5javascriptcommunicationapis-dpc2014-140627044130-phpapp02/85/HTML5-JavaScript-Communication-APIs-DPC-2014-5-320.jpg)
Ad
Recommended
ZaloPay Merchant Platform on K8S on-premise
ZaloPay Merchant Platform on K8S on-premiseChau Thanh This document summarizes an incident and lessons learned from deploying a Kubernetes cluster on-premise to run the ZaloPay Merchant Platform. Key issues encountered included nodes breaking production after being scaled, multi-interface configuration challenges, and nodes failing to join the cluster. Lessons included practicing deployments, understanding root causes of failures, and ensuring business support for new technologies. Next steps outlined upgrading components, consolidating monitoring, improving alerts, and automating the CI/CD pipeline.
PHP and Web Services
PHP and Web ServicesBruno Pedro The document discusses PHP, an open-source web scripting language, and its use in web services, emphasizing standards like SOAP, REST, and JSON. It outlines PHP's syntax, applications, and the advantages of using SOAP for web service implementations while noting that REST requires more coding and is typically used with JSON on the client side. The document concludes that PHP efficiently manages various web service standards but acknowledges that XML-RPC support is still experimental.
Html5 websockets
Html5 websocketsAbhishekMondal42 WebSockets allow for bidirectional communication over a single socket connection. Once a WebSocket connection is established between a web browser and web server, data can be transmitted both ways using send() and onmessage event handlers. The WebSocket API creates a WebSocket object that has attributes like readyState to check connection status and methods like send() to transmit data and close() to terminate the connection. A WebSocket server like mod_pywebsocket for Apache must be installed and run to test WebSocket functionality between client and server code.
Linux Hosting Training Course Level 1-2
Linux Hosting Training Course Level 1-2Ramy Allam The document provides an outline of topics covered in a Linux hosting training course, including web servers, FTP servers, mail servers, database servers, data centers, and building website requirements. It discusses the basic functions and components of each topic at a high level in 1-3 sentences per item. For example, it states that a web server stores, processes, and delivers web pages using HTTP on port 80, with software like Apache and Nginx, accessed by web browsers. It also provides brief examples and screenshots related to domain registration and WHOIS lookup services.
Linux Hosting Training Course [Level 1] - Lec 8
Linux Hosting Training Course [Level 1] - Lec 8Ramy Allam WordPress is an open source content management system written in PHP that allows users to easily create and manage websites and blogs. The document outlines the requirements and steps to install WordPress on a Linux web hosting server, including needing PHP version 5.2.4 or greater, MySQL version 5.0 or greater, and a web server like Apache or Nginx. It also describes downloading WordPress, uploading and extracting the files, creating a database, and starting the installation process.
JUG louvain websockets
JUG louvain websocketsMarc Tritschler The document discusses the limitations of HTTP for building interactive real-time web applications and introduces WebSockets as an alternative. It explains that WebSockets allow for asynchronous, bidirectional communication over a single TCP connection, unlike HTTP which is stateless and half-duplex. The document also outlines the Java API for WebSockets (JSR 356) and provides examples of how WebSockets can be used for applications like chat, games, and social networking.
Http/2
Http/2Adrian Cardenas This document discusses HTTP/2, including a brief history of HTTP 1.x, the development of SPDY which became the basis for HTTP/2, the key features of HTTP/2 like binary framing, streams, header compression and server push, considerations for transitioning from HTTP 1.x to HTTP/2, and strategies for optimizing performance with HTTP/2. It recommends benchmarking optimizations and transitioning first internal APIs, then public APIs and CDNs, followed by front-end applications and proxies.
Php & web server performace
Php & web server performaceTuyển Đoàn This document discusses optimizing PHP and web server performance. It covers using opcode caches like APC to improve PHP performance. It also discusses web performance best practices recommended by Google and Yahoo, including using CDNs, browser caching, minimizing assets, and profiling tools. The document is presented by the CTO of a mobile ad network company that sees high traffic volumes on only two servers.
IT Operations for Web Developers
IT Operations for Web DevelopersMahmoud Said The document outlines essential IT operations knowledge for web developers, including topics like the shell, SSH authentication, server anatomy, and troubleshooting techniques. It emphasizes the importance of devops practices, provides insights on services like nginx and passenger, and discusses automated deployment with webistrano. The session also covers troubleshooting metrics, logs, and network security aspects like firewalls and SSH tunneling.
Are we security yet
Are we security yetCristian Vat The document discusses improving website security by enabling HTTPS and related protocols. It outlines problems such as HTTP traffic being unencrypted and vulnerable to interception, and solutions such as enabling HTTPS, configuring it securely, using HSTS and HTTPS preloading to force encryption, and services like Let's Encrypt to easily issue certificates for free. While progress has been made, challenges remain around certificate authorities, content delivery, and dependency on third parties. Adopting standards like HTTP Public Key Pinning and Certificate Transparency can help address some challenges.
20180714 workshop - Ethereum decentralized application with truffle framework
20180714 workshop - Ethereum decentralized application with truffle frameworkHu Kenneth This document discusses Ethereum development tools and concepts. It begins by outlining upcoming events focused on Ethereum accounts, the Truffle framework, and decentralized apps. It then describes development environments using Remix, MetaMask, Solidity, and Ganache. It explains Ethereum accounts, including externally owned accounts and contract accounts. It covers using Truffle for compiling, deploying, testing, and interacting with smart contracts. Finally, it provides an overview of building a pet shop decentralized app.
JavaScript Service Worker Design Patterns for Better User Experience
JavaScript Service Worker Design Patterns for Better User Experiencereeder29 The document discusses JavaScript Service Workers, explaining their design patterns and functionalities for enhancing user experiences in web applications. It covers aspects like network request interception, caching strategies, installation prerequisites, and the operational advantages of Service Workers, particularly in terms of sync capabilities and offline access. The document also presents examples of coding, debugging methods, and various implementation patterns that improve application performance and user engagement.
Intro to Web Sockets
Intro to Web Sockets Jim Gourgoutis This document introduces WebSockets and Server-Sent Events (SSE) as technologies for enabling real-time, two-way communication between clients and servers on the web. It describes how WebSockets allow for a full-duplex connection with low overhead, unlike traditional HTTP requests which are half-duplex. SSE provides a one-way mechanism for push notifications from server to client without polling. The document provides code examples for establishing WebSocket and SSE connections and handling events. It also reviews browser support for these technologies and includes a link to a demo chat application built with WebSockets.
Ускоряем загрузку картинок вебсокетами
Ускоряем загрузку картинок вебсокетами2ГИС Технологии This document proposes using WebSockets to load images asynchronously to speed up page loading. It outlines how browsers currently load images synchronously over HTTP, causing long wait times. The author suggests establishing a WebSocket connection, sending all image src requests at once, and retrieving the binary image data asynchronously without waiting for each response. This approach could increase image loading speeds by 20-400% according to benchmarks. Open source ITW client and server code examples are provided to implement this technique.
Html5
Html5Satish Govindappa This document discusses HTML5 and what it offers for different roles. It is divided into four sessions that cover HTML5 basics, features for developers, considerations for ethical hackers, and opportunities for security testers/code reviewers. For developers, new features discussed include drag and drop, canvas vs SVG, geolocation, web forms 2.0, local storage, web sockets, and web workers. Ethical hackers can find new attack vectors using features like XHR, DOM-based XSS, and protocol attacks by exploiting the browser SQL ports, web workers and messaging. Security testers can review APIs, use of CORS and XHR, and how sandboxes isolate untrusted code.
My adventure with WebSockets
My adventure with WebSocketsMichiel De Mey This document discusses websockets and their use for real-time communication. It begins with a definition of websockets as providing full-duplex communication channels over a single TCP connection. It then notes some key aspects of websockets like sending UTF-8 text or binary data, built-in heartbeating support, and browser support issues. The document highlights benefits of websockets like two-way communication and real-time data transfer without firewall interference but also notes compatibility concerns. It describes the websocket lifecycle and then outlines a project using websockets with Nginx, Node.js, and CoffeeScript for high-performance real-time applications across browsers.
CNIT 124: Ch 8: Exploitation
CNIT 124: Ch 8: ExploitationSam Bowne The document discusses various advanced ethical hacking techniques, including exploitation methods using Metasploit payloads, exploiting vulnerable services like WebDAV and phpMyAdmin, and downloading sensitive files through directory traversal. It also describes methods for creating and deploying malicious PHP scripts, managing SQL databases with phpMyAdmin, and using tools like Nmap and TFTP for attacks. Finally, it covers exploiting third-party software and compromised services within a penetration testing context.
HTTP/2
HTTP/2Ashish Padalkar HTTP/2 is a binary application layer protocol that allows for more efficient transmission of data, addressing the growing size of websites compared to HTTP/1.1. Key features include multiplexing, header compression, frame prioritization, and server push, which collectively enhance performance by reducing load times and optimizing resource usage. Introduced in 2015, HTTP/2 improves on its predecessor by significantly decreasing latency and enabling multiple simultaneous requests over a single connection.
Eclipse Dirigible WebIDE - Deep Dive
Eclipse Dirigible WebIDE - Deep DiveNedelcho Delchev The document discusses the Eclipse Dirigible WebIDE, highlighting its features such as a comprehensive development environment, integration with multiple editors, and support for various database tools. It emphasizes the goal of reducing development turnaround time and fostering productivity through in-system programming. Additionally, the document covers extensibility options, collaboration tools, and the ecosystem of plugins and templates available for customization.
Cloud Hosted mongodb
Cloud Hosted mongodbPrem Sanil MongoDB is a hosted database that provides scalability and high availability through cloud computing platforms. It uses authentication with a username and password configured at the database level to securely connect applications and users to cloud databases hosted with services like mLab. Connections can be made through the mongo shell using standard URI connections with the username and password or via drivers using a similar URI format.
Communicating on the web
Communicating on the webAdrian Cardenas This document provides an overview of the Hypertext Transfer Protocol (HTTP) by explaining its key components and concepts. It describes the main parts of an HTTP request, including the request line, headers, and body. It also covers HTTP responses, status codes, and common methods like GET and POST. The document discusses how HTTP enables communication on the web and APIs through its stateless request/response model and standardized methods, headers, and status codes. It concludes by mentioning newer developments like HTTP/2 and SPDY that aim to improve web performance.
Http/2 lightning
Http/2 lightningAdrian Cardenas HTTP/2 is a binary protocol designed for low latency, featuring binary framing, multiplexing, stream prioritization, and server push. Key specifications include RFC 7540 and RFC 7541, which detail the protocol's internals and header compression. Implementations exist across various servers and browsers, with considerations for transition strategies and optimizations for application performance.
O'Reilly Fluent Conference: HTTP/1.1 vs. HTTP/2
O'Reilly Fluent Conference: HTTP/1.1 vs. HTTP/2Load Impact HTTP/2 is a new version of the HTTP network protocol that can improve page load performance over HTTP/1.1. The document discusses the history and limitations of HTTP/1.1, how HTTP/2 addresses these through features like multiplexing and header compression, and the results of an experiment that found HTTP/2 reduced page load times by 50-70% compared to HTTP/1.1. Real-world performance benefits may be less since HTTP/2 and site optimizations for it are still maturing, but initial experiments show promise of HTTP/2 significantly improving load times.
Excellent rest using asp.net web api
Excellent rest using asp.net web apiMaurice De Beijer [MVP] This document discusses REST and ASP.NET WebAPI. It begins with introductions to REST, the Richardson Maturity Model, and ASP.NET WebAPI. It then covers key WebAPI concepts like controllers, routes, content negotiation, and HTTP methods. A large portion discusses hypermedia and the OData protocol for building hypermedia-driven REST services with WebAPI and Entity Framework. It provides examples of OData queries, metadata support, and routing. The document concludes with recommendations for further reading and questions.
Build RPC for PHP
Build RPC for PHPHuqiu Liao This document discusses building an RPC service for PHP. It covers designing the RPC service including choosing a network protocol like TCP, serialization protocol like JSON, and defining message types like Query, Answer, and exceptions. It also discusses implementing the service in different languages like Java, Python, and PHP and providing examples of real world uses including for Android Gems and Alibaba. Performance and open sourcing the PHP implementation are also mentioned.
ASP.NET WEB API
ASP.NET WEB APIThang Chung This document provides an overview of ASP.NET Web API including:
- A model of REST maturity with 4 levels from plain XML to hypermedia controls.
- The purpose of Web APIs as RESTful HTTP services compared to SOAP.
- Mapping from WCF to the Web API model using controllers, actions, and routing instead of endpoints.
- Features like content negotiation, model binding, and dependency injection supported in the Web API stack.
What HTTP/2.0 Will Do For You
What HTTP/2.0 Will Do For YouMark Nottingham The document discusses the development and features of HTTP/2.0, which aims to enhance web performance without altering the core HTTP semantics. Key improvements include multiplexing, header compression, and potential server push capabilities, streamlining how requests are handled. Although designed to address performance and efficiency issues inherent in previous versions, challenges remain, particularly in security and TCP protocol limitations.
Using Communication and Messaging API in the HTML5 World
Using Communication and Messaging API in the HTML5 WorldGil Fink This document discusses HTML5 communication and messaging APIs, including cross-document messaging, CORS, server-sent events, and web sockets. Cross-document messaging allows sending messages between windows using postMessage. CORS enables cross-domain requests if responses include access control headers. Server-sent events allow push data from servers to clients. Web sockets provide bidirectional communications over a single TCP connection. The session explored examples of these APIs and their browser support.
Web-Socket
Web-SocketPankaj Kumar Sharma WebSocket is a protocol that provides full-duplex communication channels over a single TCP connection. It was standardized in 2011 and allows for real-time data exchange between a client and server. The document discusses how WebSocket works, compares it to previous techniques like polling which had limitations, and outlines how to implement WebSocket in Java using JSR 356 and in Spring using the WebSocket API and STOMP protocol.
Using communication and messaging API in the HTML5 world - GIl Fink, sparXsys
Using communication and messaging API in the HTML5 world - GIl Fink, sparXsysCodemotion Tel Aviv This document discusses HTML5 communication and messaging APIs, including cross-document messaging, CORS, server-sent events, and web sockets. Cross-document messaging allows sending messages between windows using postMessage. CORS enables cross-domain requests if responses include access control headers. Server-sent events is used for push protocols with EventSource API. Web sockets allow bidirectional communications over a single TCP socket, replacing techniques like long-polling. Examples and support in browsers are provided for each API.
More Related Content
What's hot (19)
IT Operations for Web Developers
IT Operations for Web DevelopersMahmoud Said The document outlines essential IT operations knowledge for web developers, including topics like the shell, SSH authentication, server anatomy, and troubleshooting techniques. It emphasizes the importance of devops practices, provides insights on services like nginx and passenger, and discusses automated deployment with webistrano. The session also covers troubleshooting metrics, logs, and network security aspects like firewalls and SSH tunneling.
Are we security yet
Are we security yetCristian Vat The document discusses improving website security by enabling HTTPS and related protocols. It outlines problems such as HTTP traffic being unencrypted and vulnerable to interception, and solutions such as enabling HTTPS, configuring it securely, using HSTS and HTTPS preloading to force encryption, and services like Let's Encrypt to easily issue certificates for free. While progress has been made, challenges remain around certificate authorities, content delivery, and dependency on third parties. Adopting standards like HTTP Public Key Pinning and Certificate Transparency can help address some challenges.
20180714 workshop - Ethereum decentralized application with truffle framework
20180714 workshop - Ethereum decentralized application with truffle frameworkHu Kenneth This document discusses Ethereum development tools and concepts. It begins by outlining upcoming events focused on Ethereum accounts, the Truffle framework, and decentralized apps. It then describes development environments using Remix, MetaMask, Solidity, and Ganache. It explains Ethereum accounts, including externally owned accounts and contract accounts. It covers using Truffle for compiling, deploying, testing, and interacting with smart contracts. Finally, it provides an overview of building a pet shop decentralized app.
JavaScript Service Worker Design Patterns for Better User Experience
JavaScript Service Worker Design Patterns for Better User Experiencereeder29 The document discusses JavaScript Service Workers, explaining their design patterns and functionalities for enhancing user experiences in web applications. It covers aspects like network request interception, caching strategies, installation prerequisites, and the operational advantages of Service Workers, particularly in terms of sync capabilities and offline access. The document also presents examples of coding, debugging methods, and various implementation patterns that improve application performance and user engagement.
Intro to Web Sockets
Intro to Web Sockets Jim Gourgoutis This document introduces WebSockets and Server-Sent Events (SSE) as technologies for enabling real-time, two-way communication between clients and servers on the web. It describes how WebSockets allow for a full-duplex connection with low overhead, unlike traditional HTTP requests which are half-duplex. SSE provides a one-way mechanism for push notifications from server to client without polling. The document provides code examples for establishing WebSocket and SSE connections and handling events. It also reviews browser support for these technologies and includes a link to a demo chat application built with WebSockets.
Ускоряем загрузку картинок вебсокетами
Ускоряем загрузку картинок вебсокетами2ГИС Технологии This document proposes using WebSockets to load images asynchronously to speed up page loading. It outlines how browsers currently load images synchronously over HTTP, causing long wait times. The author suggests establishing a WebSocket connection, sending all image src requests at once, and retrieving the binary image data asynchronously without waiting for each response. This approach could increase image loading speeds by 20-400% according to benchmarks. Open source ITW client and server code examples are provided to implement this technique.
Html5
Html5Satish Govindappa This document discusses HTML5 and what it offers for different roles. It is divided into four sessions that cover HTML5 basics, features for developers, considerations for ethical hackers, and opportunities for security testers/code reviewers. For developers, new features discussed include drag and drop, canvas vs SVG, geolocation, web forms 2.0, local storage, web sockets, and web workers. Ethical hackers can find new attack vectors using features like XHR, DOM-based XSS, and protocol attacks by exploiting the browser SQL ports, web workers and messaging. Security testers can review APIs, use of CORS and XHR, and how sandboxes isolate untrusted code.
My adventure with WebSockets
My adventure with WebSocketsMichiel De Mey This document discusses websockets and their use for real-time communication. It begins with a definition of websockets as providing full-duplex communication channels over a single TCP connection. It then notes some key aspects of websockets like sending UTF-8 text or binary data, built-in heartbeating support, and browser support issues. The document highlights benefits of websockets like two-way communication and real-time data transfer without firewall interference but also notes compatibility concerns. It describes the websocket lifecycle and then outlines a project using websockets with Nginx, Node.js, and CoffeeScript for high-performance real-time applications across browsers.
CNIT 124: Ch 8: Exploitation
CNIT 124: Ch 8: ExploitationSam Bowne The document discusses various advanced ethical hacking techniques, including exploitation methods using Metasploit payloads, exploiting vulnerable services like WebDAV and phpMyAdmin, and downloading sensitive files through directory traversal. It also describes methods for creating and deploying malicious PHP scripts, managing SQL databases with phpMyAdmin, and using tools like Nmap and TFTP for attacks. Finally, it covers exploiting third-party software and compromised services within a penetration testing context.
HTTP/2
HTTP/2Ashish Padalkar HTTP/2 is a binary application layer protocol that allows for more efficient transmission of data, addressing the growing size of websites compared to HTTP/1.1. Key features include multiplexing, header compression, frame prioritization, and server push, which collectively enhance performance by reducing load times and optimizing resource usage. Introduced in 2015, HTTP/2 improves on its predecessor by significantly decreasing latency and enabling multiple simultaneous requests over a single connection.
Eclipse Dirigible WebIDE - Deep Dive
Eclipse Dirigible WebIDE - Deep DiveNedelcho Delchev The document discusses the Eclipse Dirigible WebIDE, highlighting its features such as a comprehensive development environment, integration with multiple editors, and support for various database tools. It emphasizes the goal of reducing development turnaround time and fostering productivity through in-system programming. Additionally, the document covers extensibility options, collaboration tools, and the ecosystem of plugins and templates available for customization.
Cloud Hosted mongodb
Cloud Hosted mongodbPrem Sanil MongoDB is a hosted database that provides scalability and high availability through cloud computing platforms. It uses authentication with a username and password configured at the database level to securely connect applications and users to cloud databases hosted with services like mLab. Connections can be made through the mongo shell using standard URI connections with the username and password or via drivers using a similar URI format.
Communicating on the web
Communicating on the webAdrian Cardenas This document provides an overview of the Hypertext Transfer Protocol (HTTP) by explaining its key components and concepts. It describes the main parts of an HTTP request, including the request line, headers, and body. It also covers HTTP responses, status codes, and common methods like GET and POST. The document discusses how HTTP enables communication on the web and APIs through its stateless request/response model and standardized methods, headers, and status codes. It concludes by mentioning newer developments like HTTP/2 and SPDY that aim to improve web performance.
Http/2 lightning
Http/2 lightningAdrian Cardenas HTTP/2 is a binary protocol designed for low latency, featuring binary framing, multiplexing, stream prioritization, and server push. Key specifications include RFC 7540 and RFC 7541, which detail the protocol's internals and header compression. Implementations exist across various servers and browsers, with considerations for transition strategies and optimizations for application performance.
O'Reilly Fluent Conference: HTTP/1.1 vs. HTTP/2
O'Reilly Fluent Conference: HTTP/1.1 vs. HTTP/2Load Impact HTTP/2 is a new version of the HTTP network protocol that can improve page load performance over HTTP/1.1. The document discusses the history and limitations of HTTP/1.1, how HTTP/2 addresses these through features like multiplexing and header compression, and the results of an experiment that found HTTP/2 reduced page load times by 50-70% compared to HTTP/1.1. Real-world performance benefits may be less since HTTP/2 and site optimizations for it are still maturing, but initial experiments show promise of HTTP/2 significantly improving load times.
Excellent rest using asp.net web api
Excellent rest using asp.net web apiMaurice De Beijer [MVP] This document discusses REST and ASP.NET WebAPI. It begins with introductions to REST, the Richardson Maturity Model, and ASP.NET WebAPI. It then covers key WebAPI concepts like controllers, routes, content negotiation, and HTTP methods. A large portion discusses hypermedia and the OData protocol for building hypermedia-driven REST services with WebAPI and Entity Framework. It provides examples of OData queries, metadata support, and routing. The document concludes with recommendations for further reading and questions.
Build RPC for PHP
Build RPC for PHPHuqiu Liao This document discusses building an RPC service for PHP. It covers designing the RPC service including choosing a network protocol like TCP, serialization protocol like JSON, and defining message types like Query, Answer, and exceptions. It also discusses implementing the service in different languages like Java, Python, and PHP and providing examples of real world uses including for Android Gems and Alibaba. Performance and open sourcing the PHP implementation are also mentioned.
ASP.NET WEB API
ASP.NET WEB APIThang Chung This document provides an overview of ASP.NET Web API including:
- A model of REST maturity with 4 levels from plain XML to hypermedia controls.
- The purpose of Web APIs as RESTful HTTP services compared to SOAP.
- Mapping from WCF to the Web API model using controllers, actions, and routing instead of endpoints.
- Features like content negotiation, model binding, and dependency injection supported in the Web API stack.
What HTTP/2.0 Will Do For You
What HTTP/2.0 Will Do For YouMark Nottingham The document discusses the development and features of HTTP/2.0, which aims to enhance web performance without altering the core HTTP semantics. Key improvements include multiplexing, header compression, and potential server push capabilities, streamlining how requests are handled. Although designed to address performance and efficiency issues inherent in previous versions, challenges remain, particularly in security and TCP protocol limitations.
Similar to HTML5/JavaScript Communication APIs - DPC 2014 (20)
Using Communication and Messaging API in the HTML5 World
Using Communication and Messaging API in the HTML5 WorldGil Fink This document discusses HTML5 communication and messaging APIs, including cross-document messaging, CORS, server-sent events, and web sockets. Cross-document messaging allows sending messages between windows using postMessage. CORS enables cross-domain requests if responses include access control headers. Server-sent events allow push data from servers to clients. Web sockets provide bidirectional communications over a single TCP connection. The session explored examples of these APIs and their browser support.
Web-Socket
Web-SocketPankaj Kumar Sharma WebSocket is a protocol that provides full-duplex communication channels over a single TCP connection. It was standardized in 2011 and allows for real-time data exchange between a client and server. The document discusses how WebSocket works, compares it to previous techniques like polling which had limitations, and outlines how to implement WebSocket in Java using JSR 356 and in Spring using the WebSocket API and STOMP protocol.
Using communication and messaging API in the HTML5 world - GIl Fink, sparXsys
Using communication and messaging API in the HTML5 world - GIl Fink, sparXsysCodemotion Tel Aviv This document discusses HTML5 communication and messaging APIs, including cross-document messaging, CORS, server-sent events, and web sockets. Cross-document messaging allows sending messages between windows using postMessage. CORS enables cross-domain requests if responses include access control headers. Server-sent events is used for push protocols with EventSource API. Web sockets allow bidirectional communications over a single TCP socket, replacing techniques like long-polling. Examples and support in browsers are provided for each API.
Socket.io
Socket.ioTimothy Fitz The cross-browser, cross-device WebSocket API Socket.IO solves differences between browsers to provide a consistent API for real-time applications. It supports bi-directional communication over WebSocket, Flash, AJAX long-polling and other transports. Socket.IO is simple to use, supports older browsers, and adds features like disconnection handling that standard WebSocket does not provide. It has been used successfully in several production applications to handle thousands of simultaneous connections.
WebSocket
WebSocketnjamnjam The document discusses websocket technology for real-time two-way communication on websites, detailing requirements for client-server messaging and connection detection. It compares traditional long-polling techniques with websockets, which provide a persistent TCP connection and improved performance. Additionally, it covers compatibility and emulation options for websocket-like functionality across various programming languages and frameworks.
Polling Techniques, Ajax, protocol Switching from Http to Websocket standard ...
Polling Techniques, Ajax, protocol Switching from Http to Websocket standard ...Srikanth Reddy Pallerla This document discusses WebSockets and how they provide a full-duplex communication channel over a single TCP connection that avoids some of the issues with traditional HTTP requests. WebSockets allow for real-time data transfer from server to client without polling. They utilize an initial HTTP request for handshake that upgrades the connection and then transmits message-based data similar to UDP with reliability of TCP. This reduces resource usage compared to techniques like long polling and streaming.
Web Real-time Communications
Web Real-time CommunicationsAlexei Skachykhin The document discusses various real-time communication techniques for client-server interactions, such as polling, comet, server-sent events, and web sockets. It outlines the advantages and challenges of each method, highlighting issues like latency, server workload, and browser compatibility. The author emphasizes the importance of selecting the appropriate model based on application needs and technical constraints.
Real-Time with Flowdock
Real-Time with FlowdockFlowdock The document discusses the importance of real-time communication in a chat application and explores various transport channels such as websocket, server-sent events, and long-polling, each having its own trade-offs. It highlights the implementation of these transports in Flowdock and touches on issues like browser compatibility and error handling. The document concludes with performance benchmarks indicating that websockets are superior in terms of latency compared to other methods.
IRJET- An Overview of Web Sockets: The Future of Real-Time Communication
IRJET- An Overview of Web Sockets: The Future of Real-Time CommunicationIRJET Journal This document provides an overview of web sockets and how they enable real-time communication between clients and servers. It discusses how earlier methods like HTTP polling and long polling were inefficient for real-time updates. Web sockets allow for full-duplex communication over a single socket connection. The document analyzes network traffic from a cryptocurrency price tracking website to demonstrate how web sockets reduce overhead compared to earlier techniques and enable real-time updates with minimal bandwidth.
Fight empire-html5
Fight empire-html5Bhakti Mehta The document discusses various techniques for real-time communication in web applications, including polling, long polling, server-sent events (SSE), and WebSockets. It contrasts their strengths, weaknesses, and best practices, highlighting the efficiency of SSE and WebSockets over traditional polling methods. The text also covers RESTful web services and Java APIs for JSON processing, providing guidelines and code examples for implementation.
DevCon 5 (July 2013) - WebSockets
DevCon 5 (July 2013) - WebSocketsCrocodile WebRTC SDK and Cloud Signalling Network WebSockets and browser-based real-time communications allow for two-way communication between client-side code and remote servers. This enables web applications to maintain bidirectional communications using a simple API. While other options like AJAX exist, WebSockets provide more efficient bidirectional communications by keeping the connection open. The technology has evolved from static web pages to enable rich applications through standards like WebSockets and WebRTC.
Websockets at tossug
Websockets at tossugclkao WebSockets allow for bidirectional communication between a client and server over a single TCP connection. They improve on older "Comet" techniques which used polling and long-polling to simulate real-time updates. With WebSockets, the client can open a WebSocket connection to the server which sends messages at any time without needing an explicit request. This enables real-time applications with constantly updating information. The document outlines the WebSocket protocol, provides examples of the API in browsers, and discusses frameworks for building WebSocket applications.
Introduction to WebSockets
Introduction to WebSocketsGunnar Hillert WebSocket is a protocol that provides bidirectional communication over a single TCP connection. It uses an HTTP handshake to establish a connection and then transmits messages as frames that can contain text or binary data. The frames include a header with metadata like opcode and payload length. WebSocket aims to provide a standard for browser-based applications that require real-time data updates from a server.
Building Next Generation Real-Time Web Applications using Websockets
Building Next Generation Real-Time Web Applications using WebsocketsNaresh Chintalcheru This document discusses real-time web applications and the technologies needed to enable them. It describes how HTTP is half-duplex and led to hacks like long polling to simulate real-time behavior. The WebSocket protocol provides full-duplex communications by upgrading the HTTP handshake. This allows real-time messaging over a single connection. The document also covers asynchronous programming, event-driven architectures, and frameworks like Spring that support WebSockets and asynchronous APIs.
Decoding real time web communication
Decoding real time web communicationAMiT JAiN This document provides an overview of real-time web technologies including Comet, long polling, HTTP streaming, forever frames, Server-Sent Events, and WebSockets. Comet is an umbrella term for techniques used to push data from a server to a browser in real-time. Long polling, HTTP streaming, and forever frames are different Comet programming models. Server-Sent Events and WebSockets are HTML5 solutions for real-time connections, with Server-Sent Events using HTTP streaming and WebSockets using a bidirectional TCP connection. Both approaches have advantages and disadvantages in terms of features, reliability, and proxy/firewall support.
What is a WebSocket? Real-Time Communication in Applications
What is a WebSocket? Real-Time Communication in ApplicationsInexture Solutions Websockets are a bidirectional communication protocol that enables real-time data exchange between clients and servers over a persistent connection, ideal for applications requiring instant updates like chat and trading. Unlike traditional HTTP, which opens new connections for each request-response cycle, websockets maintain a single open connection, significantly reducing overhead and latency. They are efficient for continuous two-way communication but are not suitable for scenarios where data retrieval is infrequent or not time-sensitive.
Codecamp iasi-26 nov 2011-web sockets
Codecamp iasi-26 nov 2011-web socketsCodecamp Romania This document discusses real-time web technologies including server-sent events (SSE), websockets, and polling. It provides an overview of each technology, including how they work, advantages, and disadvantages. The document also describes a demo of using websockets in Windows 8, ASP.NET, and WCF 4.5 and includes references for further information.
Codecamp Iasi-26 nov 2011 - Html 5 WebSockets
Codecamp Iasi-26 nov 2011 - Html 5 WebSocketsFlorin Cardasim This document discusses real-time web technologies including server-sent events (SSE), websockets, and polling. It provides an overview of each technology, including how they work, browser support, and server-side support. The document concludes with a demo of websockets in Windows 8 using ASP.NET and WCF and a request for questions and answers.
vlavrynovych - WebSockets Presentation
vlavrynovych - WebSockets PresentationVolodymyr Lavrynovych 1) WebSockets allow for bidirectional communication between a client and server that overcomes limitations of HTTP such as polling. It uses a single TCP connection for sending messages back and forth.
2) The WebSocket handshake establishes a connection via HTTP that is then switched to the WebSocket protocol. Messages can then be sent simultaneously in both directions.
3) Compared to polling, WebSockets have much lower overhead since it uses a single connection rather than multiple HTTP requests, resulting in significantly lower bandwidth usage even with many connected clients.
Polling Techniques, Ajax, protocol Switching from Http to Websocket standard ...
Polling Techniques, Ajax, protocol Switching from Http to Websocket standard ...Srikanth Reddy Pallerla
Ad
Recently uploaded (20)
Agentic AI for Developers and Data Scientists Build an AI Agent in 10 Lines o...
Agentic AI for Developers and Data Scientists Build an AI Agent in 10 Lines o...All Things Open Presented at All Things Open RTP Meetup
Presented by William Hill - Developer Advocate, NVIDIA
Title: Agentic AI for Developers and Data Scientists
Build an AI Agent in 10 Lines of Code and the Concepts Behind the Code
Abstract: In this talk we will demonstrate building a working data science AI agent in 10 lines of basic Python code in a Colab notebook. Our AI Agent will perform LLM prompt-driven visual analysis using open-source libraries. In this session we will show how to develop an AI Agent using GPUs through NVIDIA’s developer program and Google Colab notebooks. After coding our AI Agent, we will break down the 10 lines of code. We will show the key components and open source library integrations that enable the agent's functionality, focusing on practical implementation details and then the theoretical concepts. The presentation concludes with a survey of current LLM technologies and the latest trends in developing AI applications for enthusiasts and enterprises
" How to survive with 1 billion vectors and not sell a kidney: our low-cost c...
" How to survive with 1 billion vectors and not sell a kidney: our low-cost c...Fwdays Let's talk about our history. How we started the project with a small vector database of less than 2 million records. Later, we received a request for +100 million records, then another +100... And so gradually we reached almost 1 billion. Standard tools were quickly running out of steam - we were running into performance, index size, and very limited resources. After a long series of trials and errors, we built our own low-cost cluster, which today stably processes thousands of queries to more than 1B vectors.
Quantum AI Discoveries: Fractal Patterns Consciousness and Cyclical Universes
Quantum AI Discoveries: Fractal Patterns Consciousness and Cyclical UniversesSaikat Basu Embark on a cosmic journey exploring the intersection of quantum
computing, consciousness, and ancient wisdom. Together we'll uncover the
recursive patterns that bind our reality.
Lessons Learned from Developing Secure AI Workflows.pdf
Lessons Learned from Developing Secure AI Workflows.pdfPriyanka Aash Lessons Learned from Developing Secure AI Workflows
GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now.pdf
GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now.pdfPriyanka Aash GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now
Raman Bhaumik - Passionate Tech Enthusiast
Raman Bhaumik - Passionate Tech EnthusiastRaman Bhaumik A Junior Software Developer with a flair for innovation, Raman Bhaumik excels in delivering scalable web solutions. With three years of experience and a solid foundation in Java, Python, JavaScript, and SQL, she has streamlined task tracking by 20% and improved application stability.
WebdriverIO & JavaScript: The Perfect Duo for Web Automation
WebdriverIO & JavaScript: The Perfect Duo for Web Automationdigitaljignect In today’s dynamic digital landscape, ensuring the quality and dependability of web applications is essential. While Selenium has been a longstanding solution for automating browser tasks, the integration of WebdriverIO (WDIO) with Selenium and JavaScript marks a significant advancement in automation testing. WDIO enhances the testing process by offering a robust interface that improves test creation, execution, and management. This amalgamation capitalizes on the strengths of both tools, leveraging Selenium’s broad browser support and WDIO’s modern, efficient approach to test automation. As automation testing becomes increasingly vital for faster development cycles and superior software releases, WDIO emerges as a versatile framework, particularly potent when paired with JavaScript, making it a preferred choice for contemporary testing teams.
Tech-ASan: Two-stage check for Address Sanitizer - Yixuan Cao.pdf
Tech-ASan: Two-stage check for Address Sanitizer - Yixuan Cao.pdfcaoyixuan2019 A presentation at Internetware 2025.
Coordinated Disclosure for ML - What's Different and What's the Same.pdf
Coordinated Disclosure for ML - What's Different and What's the Same.pdfPriyanka Aash Coordinated Disclosure for ML - What's Different and What's the Same
Securing Account Lifecycles in the Age of Deepfakes.pptx
Securing Account Lifecycles in the Age of Deepfakes.pptxFIDO Alliance Securing Account Lifecycles in the Age of Deepfakes
Connecting Data and Intelligence: The Role of FME in Machine Learning
Connecting Data and Intelligence: The Role of FME in Machine LearningSafe Software In this presentation, we want to explore powerful data integration and preparation for Machine Learning. FME is known for its ability to manipulate and transform geospatial data, connecting diverse data sources into efficient and automated workflows. By integrating FME with Machine Learning techniques, it is possible to transform raw data into valuable insights faster and more accurately, enabling intelligent analysis and data-driven decision making.
9-1-1 Addressing: End-to-End Automation Using FME
9-1-1 Addressing: End-to-End Automation Using FMESafe Software This session will cover a common use case for local and state/provincial governments who create and/or maintain their 9-1-1 addressing data, particularly address points and road centerlines. In this session, you'll learn how FME has helped Shelby County 9-1-1 (TN) automate the 9-1-1 addressing process; including automatically assigning attributes from disparate sources, on-the-fly QAQC of said data, and reporting. The FME logic that this presentation will cover includes: Table joins using attributes and geometry, Looping in custom transformers, Working with lists and Change detection.
Oh, the Possibilities - Balancing Innovation and Risk with Generative AI.pdf
Oh, the Possibilities - Balancing Innovation and Risk with Generative AI.pdfPriyanka Aash Oh, the Possibilities - Balancing Innovation and Risk with Generative AI
The Growing Value and Application of FME & GenAI
The Growing Value and Application of FME & GenAISafe Software With the cost of using Generative AI services dropping exponentially and the array of available models continually expanding, integrating AI into FME workflows has become inexpensive, accessible and effective. This presentation explores how GenAI within FME can cost-effectively transform data workflows by automating data extraction, validation, classification and augmentation tasks. We’ll discuss how FME’s no-code flexibility enables users to combine Generative AI and Computer Vision tools that create efficient workflows tailored to specific challenges. Using recent practical examples, we’ll demonstrate how these integrations can simplify complex tasks, save time and enhance data quality.
AI vs Human Writing: Can You Tell the Difference?
AI vs Human Writing: Can You Tell the Difference?Shashi Sathyanarayana, Ph.D This slide illustrates a side-by-side comparison between human-written, AI-written, and ambiguous content. It highlights subtle cues that help readers assess authenticity, raising essential questions about the future of communication, trust, and thought leadership in the age of generative AI.
Wenn alles versagt - IBM Tape schützt, was zählt! Und besonders mit dem neust...
Wenn alles versagt - IBM Tape schützt, was zählt! Und besonders mit dem neust...Josef Weingand IBM LTO10
"How to survive Black Friday: preparing e-commerce for a peak season", Yurii ...
"How to survive Black Friday: preparing e-commerce for a peak season", Yurii ...Fwdays We will explore how e-commerce projects prepare for the busiest time of the year, which key aspects to focus on, and what to expect. We’ll share our experience in setting up auto-scaling, load balancing, and discuss the loads that Silpo handles, as well as the solutions that help us navigate this season without failures.
Ad
HTML5/JavaScript Communication APIs - DPC 2014
- 1. www.arrabiata.co.uk HTML5/JavaScript Communication APIs Dutch PHP Conference, 27.06.2014 Christian Wenz [email protected]
- 2. Arrabiata Solutions :: As a specialist for digital solutions we offer our clients all services from conception to realization, support and optimization. Our focus is international with offices in Munich and London. Arrabiata Solutions was founded in 2006 and has more than 30 employees with a combined experience of over 100 successful projects. :: Arrabiata is a full-service digital agency.
- 3. AGENDA STATUS QUO WORKING AROND SOP MESSAGING API SSE & WEB SOCKETS CONCLUSION
- 4. Status Quo • GET requests via anything with an src attribute – No restrictions – Only possible to provide URL • Any (browser-supported) HTTP verb via XMLHttpRequest – Can set headers and HTTP body – Restricted by SOP (same-origin policy) • Protocol, domain, port • Still using HTTP
- 5. Working around SOP: JSONP • JSON with padding • Ajax call: – <script src="http://domain/file.ashx?jsonp=func"> </script> • Return value: – func([1, 2, 3]); • „Padding“ is „func“ • Works in virtually any browser • Still is kinda hackish
- 6. CORS • Cross-Origin Resource Sharing • Works around the Same Origin Policy • Restrictions must be met, though – Specific Content-type header – Origin header – Server uses Access-Control-Allow-Origin header (value must be * or Origin header for the browser to proceed) • Advanced approach: preflighted requests (e.g. for POST requests to avoid CSRF)
- 7. Messaging API • Simple cross-domain mechanism to send/receive data • Works everywhere except IE7-, and limited in IE8+ • Sending: – Access other window (e.g. contentWindow property of an iframe) – Use postMessage() method to send data (1st argument) – For security reasons, use origin of target site as 2nd argument
- 8. Messaging API (2) • Receiving: – Wait for window‘s message event. – Event arguments contain the data sent (data property) and the origin of the sender (origin property) – Use postMessage() to send data back to the origin – Sender may use the message event as well to process the data from the receiver.
- 9. Server-Sent Events • JavaScript API for long polling requests • Server continously sends data, the client just receives and processes them • Step 1: subscribe to source – var es = new EventSource("polling.ext"); • Step 2: listen to message event – es.onmessage = function(ev) { console.log(ev.data); }; • Works almost everywhere except IE
- 10. Stream Format • Content-type: text/event-stream • Fields: id, data, event, retry (all optional!) • Format: <field>: <value> • Blank lines between fields • id: 123 data: abc id: 456 event: def
- 11. Reconnecting to the Server • Browser reconnects the connection every few seconds (unless changed by retry stream value) • Browser sends Last-Event-ID HTTP header if server sent ID before • Allows server to only send new events
- 12. Web Sockets • Full duplex communication • Circumvents a few of the disadvantages of HTTP (metadata sent with each request, re- establishment of the connection, etc.) • Works in all recent browsers except IE9-
- 13. HTTP Handshake • Request: GET /chat HTTP/1.1 Host: server.example.com Upgrade: websocket Connection: Upgrade Sec-WebSocket-Key: x3JJHMbDL1EzLkh9GBhXDw== Sec-WebSocket-Protocol: chat, superchat Sec-WebSocket-Version: 13 Origin: http://example.com • Response: HTTP/1.1 101 Switching Protocols Upgrade: websocket Connection: Upgrade Sec-WebSocket-Accept: HSmrc0sMlYUkAGmm5OPpG2HaGWk= Sec-WebSocket-Protocol: chat
- 14. API for Web Sockets • Server: depends on the technology used; node.js is the poster child of the month • Client: – var w = new WebSocket("ws://server:1234"); – w.onopen = function(ev) { w.send("Hi!"); } w.onmessage = function(ev) { console.log(ev.data); }
- 15. Websocket Server with node.js var server = require('http'); var webSocketServer = require("websocket").server; server.listen(1234); var wsServer = new webSocketServer({ httpServer: server }); wsServer.on('request', function(request) { … });
- 16. Socket.IO • There are countless protocol versions for Web Sockets • Better use an abstraction layer that also provides polyfills for browsers that use an older API version, e.g. Socket.IO (http://socket.io/). • Server: – var io = require("socket.io").listen(1234); • Client: – var ws = io.connect("http://127.0.0.1:1234");
- 17. Decision Chart Technique X-Domain Return data Backchannel Long running High Performance src XHR JSONP CORS Messaging Workers Server-Sent Events Web Sockets
- 18. Thank You! • [email protected] • http://www.arrabiata.co.uk/ • @chwenz • Rate this session: http://joind.in/talk/view/10857