Golang Warsaw #56 Jakub Wołynko Secure access to EC2 (for developers) Agenda – introduction – EC2 in native environment – 3-tier architecture intro – alternative methods of resource connection: equivalent 3-tier architecture3-tier architecture - props and cons – full control over resource access – possibilities of disconnection resources from the internet – in general, more secure unfortunately – architecture getting more complex – additional costs like VPN, NatGateway – regular resource access become more annoying solution one - bastion host Host Instance ProxyJump Bastion PreferredAuthentications

Data Access Version 5.3.36-SNAPSHOT Table of Contents 1. Transaction Management. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . or Repository Classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66 3. Data Access with JDBC. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 3.1. Choosing an Approach for JDBC Database Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 3.2. Package Hierarchy

Ov Over erview view Casdoor is a UI-first Identity Access Management (IAM) / Single-Sign-On (SSO) platform based on OAuth 2.0, OIDC, SAML, and CAS. Casdoor serves both the web UI and the login requests Casdoor supports authorization management based on Casbin. It supports ACL, RBAC, ABAC, and RESTful access control models. 4. Casdoor provides phone verification code, email verification code, and password The Application will prompt the user: "Hey, I need some resources and I need your permission to access these resources. Can you go to this URL and enter your username and password for me?" With the

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 786 34.3 Using SQLDB to access databases . . . . . . . . . . . . . . . . . . . . . . . . . . . 787 34.4 Using the universal TSQLConnector Read Read data from stream 92 Seek Set stream position 1.4.3 Property overview Page Properties Access Description 92 BExpectBoundary rw Expect ˜character 1.4.4 TASCII85DecoderStream.Create Synopsis: Synopsis: Expect ˜character Declaration: Property BExpectBoundary : Boolean Visibility: published Access: Read,Write Description: BExpectBoundary is True if a encoded data boundary is to be expected ("˜>")

+ oranges) pieces of fruit." 4 """ Create arrays and dictionaries using brackets ([]), and access their elements by writing the index or key in brackets. A comma is allowed after the last element "120" 20 print(statistics.2) 21 // Prints "120" Functions can be nested. Nested functions have access to variables that were declared in the outer function. You can use nested functions to organize the actually a special case of closures: blocks of code that can be called later. The code in a closure has access to things like variables and functions that were available in the scope where the closure was created

simply converting between file formats. TResources.Items (??) property provides a simple way to access all resources contained in the TRe- sources (??) object. In the following example we read a resource types have a specific format, and the operating system sup- ports them at runtime making it easy to access that kind of data: e.g. icons and bitmaps are stored in resources in a format that is slightly different following the other. Last accelerator 27 CONTENTS must have $80 in its flags. To provide easy access to the elements it contains, our accelerator resource class exposes these meth- ods and properties

vectorized code The talk: ▪ share experience with vectorization using std::simd ▪ introduce the SIMD_ACCESS library 3 Olaf Krzikalla, DLR SP, 2024-09-17Background: Vectorization Nowadays, all your CPUs can loop body No vector type information in x, y, z or i →Explicit load and store operations Explicit access provided by std::simd ▪ Requires rearranging and rewriting the loop body ▪ Different scalar version rearrangement) necessary ▪ Same code for scalar and vector versions SIMD_ACCESS(z, i) = SIMD_ACCESS(x, i) + SIMD_ACCESS(y, i);SIMD_ACCESS Library https://github.com/dlr-sp/simdize Supplements std::experimental::simd

authorization will likely need changes. You should review the Authentication, Authorization and Access Control Howto, especially the section Beyond just authorization which explains the new mechanisms port your configuration to use Require dbm-group ... in place of Require group .... Access control In 2.2, access control based on client hostname, IP address, and other characteristics of client requests Allow, Deny, and Satisfy. In 2.4, such access control is done in the same way as other authorization checks, using the new module mod_authz_host. The old access control idioms should be replaced by the

authorization will likely need changes. You should review the Authentication, Authorization and Access Control Howto, especially the section Beyond just authorization which explains the new mechanisms port your configuration to use Require dbm-group ... in place of Require group .... Access control In 2.2, access control based on client hostname, IP address, and other characteristics of client requests Allow, Deny, and Satisfy. In 2.4, such access control is done in the same way as other authorization checks, using the new module mod_authz_host. The old access control idioms should be replaced by the

Reference Guide BPF Architecture Toolchain Program Types Further Reading API Reference Introduc�on How to access the API Compa�bility Guarantees API Reference Reference Command Cheatsheet Command u�li�es: Command these approaches to struggle to scale side by side with the applica�on as load balancing tables and access control lists carrying hundreds of thousands of rules that need to be updated with a con�nuously using a key-value store. Secure access to and from external services Label based security is the tool of choice for cluster internal access control. In order to secure access to and from external services