Thursday, August 22, 2013

The Treasures of Europe

We're just back from a very memorable tour of Europe, and I could write a thousand things about it. But for now I will let the pictures do the talking.

Visiting the musical and intricate clockwork of the Black Forest Cuckoo clock factory



Taking a boat ride through the thunderous cascade and spray of the Rhine Falls 



Sitting on the shores of the serene Lucerne lake with the picture perfect alpine backdrop.



Spending a relaxing evening in Engleberg, nestled high up in the angelic peaks.



The vertiginous climb to the top of Mount Titlis, the panoramic views the breathtaking heights! And then the throwing, dodging, falling and generally having fun in the snow.




Taking a  gondola ride through the narrow canals, walking over a never ending series of bridges and falling in love with the most romantic of cities, Venice!



Traveling back in time to the gladiatorial arena, walking down the imperial way at the centre of the ancient Roman empire, and  visiting the humbling and awe inspiring Basilica.






Being enchanted by the architecture, the culture and the home of Michaelangelo, the city of Florence.



Amazed at the miraculous piazza with the ever leaning tower of Pisa



The Jet d'Eau at the "Peace Capital" of the world, the city of Geneva.



From the panoramic views upon the Eiffel Tower, 
to the cruise along the river. 
The Sights viewed from the Seine, 
while enjoying the light rain. 
Along the resplendent Champ d'Elysees, 
to the magnificent Arc de Triumphe. 
Being swept of your feet by the city of love, the city of lights, Paris!






And not to forget the iconic national monument of Belgium




Tuesday, May 14, 2013

Professional Guidelines for a Geek


Every field has its own skillset requirements and people with those specific strengths are drawn to it. The general principles that enable you to succeed in life are the same across most fields, but depending on which field you are in, they apply in different ways.
I’ve spent all of my working career in various IT roles, and my knowledge of life outside of IT is all second hand. So if this post appears to be out of touch with the world outside IT, then don’t be too surprised.
Lets start with the TL;DR version first:
  1. Be Prepared – Pre-fetching isn’t just for processors
  2. Be Proactive – And the same goes with branch prediction
  3. Be Decisive - Don’t stall cause you see 100s of possibilities
  4. Be Attentive - Remember, input is just as important as output
  5. Be Straightforward (but not blunt) - Politics should be “Read Only”
  6. Work Hard, but leave on time – The longer you run, the less efficient you are
Stay tuned for posts on each of those points..

Wednesday, February 13, 2013

Programmatic Logout mechanism for Google APIs


While recently working on a project requiring integration with youtube, I had a requirement where I had to switch the currently logged in google user.

The project was using AuthSub authentication to do a web browser based video upload. The way this worked was:
  1. The user was redirected from my site to google's server for the authsub
  2. He would be presented with a choice to grant or deny access of his account to my site (by google) (If he wasn't yet logged into google, he could do that now)
  3. Then google redirects the user to my site, with the required accesses and the site can upload video's on that user's behalf as long as the session contains the token.
However if the browser already has a different logged in google user, then the only option is to log out and re log in when presented with the "allow access" page. This broke the redirection flow and the user would not automatically come back to the site.

The solution to this problem was simple, just log the user out of google services before redirection. Right? Well google had other ideas.

After some searching I found out that there was no documented (by google) way of signing out a user from google. However there were a few sites that mentioned a few approaches.
  1. Open the link: https://mail.google.com/mail/u/0/?logout&hl=en and the user will be logged out of that browser.
  2. www.google.com/Accounts/Logout [?service=mail|youtube|etc &continue=url (url should be inside the google domain)] Optional to pass the parts mentioned in the brackets.

And another one that i found was that you could post "action_logout" with value "1" to www.youtube.com to log out the currently logged in user.

Either of these options required opening the url in a browser window (and possibly posting a parameter). So one way of doing this was opening it in a hidden iframe.

I tried that on firefox as:

<form style="display: inline;" 
      target="hiddenFrame" 
      action="http://www.youtube.com/
      method="post" id="autoLogout">
    
     <input type="hidden" 
            name="action_logout" 
            value="1" />
</form>

<iframe name="hiddenFrame" 
        src="" 
        height="1" 
        width="1" 
        frameborder="0">
</iframe>

<script type="text/javascript">
    dojo.addOnLoad(function (){
        dojo.byId("autoLogout").submit();
    });
</script>

And voila, this worked in Firefox 7 perfectly. However, a quick inspection of the scroll bar for this post, will tell you that this isn't the end of it.

If you try this out in internet explorer 8, you will find that it instead tells you that the url cannot be displayed in an iframe due to security concerns (Specifically: "This content cannot be displayed in a frame"). This is to prevent occurrences of cross site scripting and click-jacking exploits.
http://groups.google.com/group/youtube-api/browse_thread/thread/2d2236731672a098

So instead the only option available was to open this in a new window. So how it goes about was:
(Either on page load or when the user clicks logout)
1. Open a popup window with a name
2. Post auto submit the form to that window
3. Wait for a second or 2, and then close the window just opened.

If you do this in an event handler it should be smooth, but if you do it on any other event (like onload for example), then the popup blocker will block it and the user will have to explicitly grant it permission to proceed.

<!-- The form: Note the target is set to 
     _hiddenFrame, the same as the window 
     that we will be opening -->
<form style="display: inline;" 
      target="_hiddenFrame" 
      action="http://www.youtube.com/
      method="post" 
      id="autoLogout">

    <input type="hidden" 
           name="action_logout" 
           value="1" />
</form>

<script type="text/javascript">
    // This should ideally be called in a click handler, 
    // since then it definitely wont be blocked by a popup blocker.
    function logoutFromGoogle(){
        var windowHandle 
            = window.open("", "_hiddenFrame", 
                          "left=20,top=20,width=1,height=1,toolbar=0,resizable=0")
        dojo.byId("autoLogout").submit();
        setTimeout(function(){
            windowHandle.close();
        }, 2000);
    }
</script>

So there we are, a programmatic logout mechanism for google!