ChiPy __Main__ Meeting March 2021

When: March 11, 2021, 6 p.m.

Where: Remote Meeting

Attendance:

Topics

  • Adding structure to a sea of chaos: a principled approach to authorization using Python + SQLAlchemy
    By: Sam Scott
    Experience Level: Intermediate
    Length: 25 Minutes
    Description:

    Authorization is an unstructured problem. Writing code to decide who can do what in your app can cover a broad set of cases. The most structure that typically gets applied to this problem area is a set of if statements and roles, but in reality, there are a lot more patterns and structure that we can apply. oso is an open source system for building authorization into applications. It's a bit like SQLAlchemy in that it provides a structured approached to authorization, much like SQLAlchemy does for data modeling and access. In this talk, oso cofounder/CTO, Sam Scott, will provide a mental model for authorization and show how to apply it using oso, Python and SQLAlchemy.

     

    Some useful links:

    https://www.osohq.com/

    https://twitter.com/osoHQ

    https://www.osohq.com/post/introducing-builtin-roles

    https://join-slack.osohq.com/

    https://docs.osohq.com/

  • DevOps for developers (or maybe against them?!)
    By: Baruch Sadogursky
    Experience Level: Novice
    Length: 60 Minutes
    Description:

    "DevOps" is the operations people’s crafty plan to make developers do other people's work, but we are smart enough to see right through this naive rebranding trick! Baruch suggests you think about it: we, the developers, have written all the code. It passes all the tests; it obviously works, and works well (Are we a little proud? We are!); so we are DONE. Now, out of the blue, a bunch of "thought leaders" (all with an operations background, mind you!) are trying to tell us that we have to learn YAML, Docker, Kubernetes, and Terraform to deploy our software because suddenly it is our concern?! In this talk, we'll discuss why developers do or don’t need DevOps. We'll consider arguments made by DevOps visionaries and see whether they hold water. Hopefully, by the end of the talk, we'll understand whether DevOps really helps developers to deploy better code to production more often, or if it is just another scam made up by marketing and evangelists.