Here’s the list of the cool things that happened at TupiLabs since last Sunday.

• Added more expressions to Speak Like A Brazilian
• Started coding apps to Speak Like A Brazilian
• Confirmed a meeting for project Paskuale
• Sent our first trivial contribution to Apache UIMA - UIMA-2829

We are working for you

Have a great week! :-)

Here’s the list of the cool things that happened at TupiLabs since last Sunday.

• Released testlink-java-api 1.9.6-1
• Released Jenkins TestLink Plug-in 3.3
• Sent a request of merge for TestLink gitorious
• testlink-java-api #6
• testlink-java-api #5
• Updated testlink-java-api SourceForge.net website
• Added more expressions to Speak Like A Brazilian
• Meeting with prospect for a Jenkins project
• Fixed bug in TupiLabs website with paginations (big thanks to José for that!, see this post for details)

Have a great week!

Here’s the list of the cool things that happened at TupiLabs since last Sunday.

• Fixed minor issues at Speak Like A Brazilian, and started code review to prepare an Open Source version.
• Started creating our Puppet and Graphite+LogStash set up to control some of our Linux boxes
• Over 140 users at r/functionalprogramming, awesome!
• Got the response of our first comic strip registry in Brazil! Stay tuned :-)
• Lots of contacts for the promotion of Speak Like A Brazilian
• Rebooted our Linode servers in order to use the 8 CPU’s (thanks Linode!)
• First conversations about Jenkins User Meetup 2013 in Brazil
• 75% of the work on Paskuale‘s backend has been completed.

We are working for you

Have a great week!

Here’s the list of the cool things that happened at TupiLabs since last Sunday.

• Fixed an issue in Speak Like A Brazilian that prevented users to vote when accessing via speaklikeabrazilian.com (no www.).
• Removed JS error messages in Speak Like A Brazilian and fixed a bug in JS that was sending the wrong HTTP status to the users.
• TupiLabs may help a local Hostel with the initial site configuration and backend code. Yay! Stay tuned for more!
• We are confirmed at DMC-Latam 2013, the greatest national conference about data management! Super yay!
• Fixed a bug in Garagem Vaga caused due to Google Maps V2 deprecation.
• Finished a web app using PHP + Code Igniter + Backbone.js and Bootstrap for a marketing agency. Two bugs fixed in Open Source tools. We’ll work to send patches to the tools and report it here :-)
• We had a presentation at a potential customer with a Big Data + NLP + Web Crawling prototype. Final prototype after a series of meetings.
• New expressions and Facebook likes for Speak Like A Brazilian, Garagem Vaga and TupiLabs!
• Added BioUno to the list of bioinformatics open source tools
• Pull request merged in Jenkins TAP Plug-in. GitHub rocks!
• Started working on a Banco de Talentos instance that will be assessed by a HR professional. Soon you might see TupiLabs contributions at Portal do Software Público (Brazilian Government Open Source portal)!
• Blog entry about a bug in CI + PHP and different domain request that was happening in Speak Like A Brazilian
• JENKINS-15322
• JENKINS-17135
• JENKINS-17136
• JENKINS-16325
• JENKINS-17245
• JENKINS-17215

We are working for you

Have a great week and Happy St. Patrick’s Day!! :D

Since it has been released, Speak Like A Brazilian had a bug when users voted, but had accessed the site via speaklikeabrazilian.com, and not www.speaklikeabrazilian.com (the latter is the base_url in application/config/config.php).

Looking at the developer console in Chrome, you could see that XMLHttpRequest was having trouble by, what looked in principle, like a security bug. Maybe a cross-domain issue.

After searching the Internet, we’ve found what was causing this issue. Unfortunately I lost the link, but in a StackOverFlow discussion, one user said it had something to do with the CSRF check.

A quick test, where we disabled the CSRF token verification, showed that he was right. But we couldn’t simply disable CSRF everywhere. So if you are facing similar issue, here’s the trick: Create a hook that disables CSRF verification only for a certain URL.

It’s not a very nice approach, but as in Speak Like A Brazilian the votes are linked by IP, there’s no need to keep the CSRF token. Here’s the solution that worked for us.

<?php if (!defined('BASEPATH')) exit('No direct script access allowed');
 
/**
 * Security Class
 *
 * @package hooks
 * @description Disables CSRF token for certain pages.
 */
 
class DisableCSRF
{

        function disable_if_callback() 
        {    
            if(stripos($_SERVER["REQUEST_URI"],'/rating/expression') !== FALSE)
            {
                $CFG =& load_class('Config', 'core');
                $CFG->set_item('csrf_protection', FALSE);
            }
        } 
        
}

And as a side note, we are still in honey moon with CodeIgniter. We have just finished another project with it, and so far we haven’t been let down by this amazing framework. Hope it helps you, in case you have similar error.

Happy St. Patricks Day! And happy coding!