Security Headers Strict-Transport-Security HTTP Strict Transport Security (HSTS) protect websites against man-in-the-middle attacks by indicating the browser to access the website using HTTPS instead of using HTTP. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security X-Frame-Options The X-Frame-Options HTTP response header can be used to indicate whether or not a browser…[read more]

Windows 10 introduces Virtual Desktops. This new feature comes with a few recommendations. From the documentation: Applications should avoid automatically switching the user from one virtual desktop to another. Only the user should instigate that change. In order to support this, newly created windows should appear on the currently active virtual desktop. In addition, if an application can reuse…[read more]

When a user make a request to an ASP.NET Core application, the server parses the request, generates a response, and sends the result to the client. The user can abort the request while the server is processing it. For instance the user can navigate to another page or close the page. In this case, you may want to stop all the work in progress to avoid consuming resources. For instance, you may want to…[read more]

The author of this GitHub issue is complaining about the behavior or FirstOrDefault when it's following an OrderBy. Indeed, the predicate is called on each element which is not what he expected. In his example the predicate has a side-effect so he really doesn't want the method to be called for each element. var account = accounts.OrderBy(x => x.UsageCount).FirstOrDefault(x => x.TryReserve(token)); //…[read more]

I recently moved many scripts from cmd (.bat or .cmd) to PowerShell (.ps1). In this post, I'll show all the differences I've seen during the migration. This is list is not exhaustive as it only contains the cases I had encountered in the migrated scripts. Why using PowerShell instead of cmd? PowerShell has many advantages compare to cmd: Discoverability: PowerShell makes it easy to discover its features…[read more]

In .NET, you can use Task.WhenAll to wait for multiple tasks. Once the tasks are completed, you can get the results using .Result or by awaiting them. Task<int> task1 = Task.Run(() => 1); Task<string> task2 = Task.Run(() => "meziantou"); await Task.WhenAll(task1, task2); var task1Result = task1.Result; // or await task1 var task2Result = task2.Result; // or await task2 I don't really want write this…[read more]

Once you have created a Roslyn Analyzer, you have multiple ways to consume it in your project: Using a Visual Studio extension Using a NuGet package Using a Project Reference when the Roslyn Analyzer is in the same solution The first 2 solutions are the most common ones, and are described in the first post of the series: Writing a Roslyn Analyzer. For instance, here's an example of referencing an…[read more]

xUnit.net is a free, open source, community-focused unit testing tool for the .NET Framework. Written by the original inventor of NUnit v2, xUnit.net is the latest technology for unit testing C#, F#, VB.NET and other .NET languages. xUnit.net gains lots of popularity when Microsoft starts using it for CoreFX and ASP.NET Core. This is also the test framework I use on most of my projects. So, this post is…[read more]

It's very common to split a string into lines. You can write something like that: var str = "Nickname: meziantou\r\nName: Gérald Barré"; var lines = str.Split(new [] { '\r', '\n' }, StringSplitOptions.RemoveEmptyEntries); foreach (var line in lines) { // - Allocate 1 string per line + 1 array // - The Split method may allocate } This code create one string per line and allocate one array. So,…[read more]

I don't like having extra imports in files. By default, Visual Studio shows them as faded and provide a quick fix to remove them: In this case, you need to check in each file whether all imports are used. It is possible to show them in the error window: Create a new file named .editorconfig at the root of your project with the following content: [*.{cs,vb}] # IDE0002: Name can be simplified…[read more]