DeveloperWeek Europe 2021 DeveloperWeek Europe 2021

Main Stage

Join on Hopin

Tuesday, April 27, 2021

- BST
To SaaS or Not to SaaS: That’s No Longer the Question!
Radoslaw Szulgo
Radoslaw Szulgo
Dynatrace, Technical Product Manager

Software as a Service (SaaS) offerings such as GitHub, Google, Dropbox, .. give us access to critical services without having to deal with operations, updates, data retention ….
But SaaS is not for all! Many organizations are prohibited storing data outside their data centers, worried about security or restrained by limited change control!
The solution is an architecture that allows deploying your SaaS offering on-premises which however comes with new challenges such as: how to plan maintenance, proper hardware sizing or configuration. While we have known examples such as AWS Outputs or Google Anthos the fact is that not everyone is Google or Amazon!

Join my session where I share how we at Dynatrace moved from SaaS to a hybrid offering including an on-premises deployment. I discuss my top 3 aspects of a successful managed implementation: pro-active support, automated updates delivery, and zero-configuration approach and how our “Mission Control” takes care of these.
I will further discuss our automated CI/CD delivery that deploys to our customers, how automation takes care of proper configuration and how we deal with security related concerns.
This talk should inspire you how to expand your software offering from SaaS to premises with the lowest total cost of ownership!

- BST
Cloud App Modernization: From 0 to Hero
Lorenzo Barbieri
Lorenzo Barbieri
Microsoft, Solutions Architect

There's a lot of confusion about "App Modernization". For somebody it means using containers, for somebody else it means going to the cloud with some "native services". In this session we'll try to understand what's behind app modernization and which strategies you could adopt to succeed in doing it.

- BST
Develop Apps Using Sharepoint Development Framework for Sharepoint and Microsoft Teams
Kislay Sinha
Kislay Sinha
CGI, Director Consulting Expert

A deep dive into how we can create Apps for SharePoint and Microsoft Teams using SharePoint Development Framework (SPFx).
It will cover following topics in detail
1. How to get started that is prerequisites?
2. How to create simple Hello World App?
3. How to call Microsoft Graph from your App to show data from other Microsoft 365 services such as Teams, Calendar, Emails etc
4. How to call Third Party APIs from from your App to show data outside of Microsoft 365 (display a joke whenever a page loads)? using React JS.

This session will give developers know how of development related to SharePoint and how to publish them in Microsoft Teams and SharePoint

- BST
Zero Knowledge Architecture: Is a Secured (web)App Possible?
m4dz
m4dz
alwaysdata, Tech Evangelist

Did you already hear about the ZKA pattern? Zero Knowledge stands for a pattern where no-one but the owner is aware of the content of the data. It's mainly in use in the Zero Knowledge Proof pattern, an authorization design. Despite its powerful concepts, Zero Knowledge patterns remain misunderstood.

In fact, there's a small amount of contents about what Zero Knowledge really is, what it implies, and how to use it. Architectures that use ZK by Design are nearly undocumented. It's a widely unknown territory.

Here's a wide and comprehensive talk about ZKA, with cryptography, keys exchange, data storage, blob secured transfers, privacy use-cases, and many more. Finally, we'll be focused on how to implement it in a web browser environment which is unsecured by design (because always bet on ~JavaScript).

Let's see how we can build secured (web)apps to improve our users' privacy.

- BST
Azure Governance: Power Is Nothing without Control!
Massimo Bonanni
Massimo Bonanni
Microsoft, Azure Technical Trainer

A famous advertising claim says: "power is nothing without control". Azure is a powerful platform and it could get out of hand if we can't get control over it. For this reason, knowing how to organize resources, configure security and define the policies with which resources are created and managed is fundamental. In this session, we will explore the concepts needed to manage our infrastructure in the cloud and look at the tools you can leverage to accomplish that.

- BST
How to Automate Everything in 2021
Viktor Farcic
Viktor Farcic
Shipa, Principal DevOps Architect

Automation of all the repeatable tasks is nothing new. We've been doing it for years or even decades. But the technology changes, so do the tools and the processes we use in automation.

Today, we are practicing not only continuous delivery (CD), but also GitOps and progressive delivery. Our applications are running in Kubernetes and are designed around event-based decoupled architecture.

So, how do we automate everything in 2021? Which practices should we use, and which tools should we choose? How can we combine events with workflows, pipelines, GitOps, and progressive delivery using tools designed from ground-up to be cloud-native and Kubernetes-first?

We'll use Argo project (Events, Workflows & Pipelines, CD, and Rollouts) combined with SealedSecrets, Kaniko, and a few other tools in a hands-on demo.

- BST
Building Real-Time Applications with Blazor and GraphQL
Michael Staib
Michael Staib
ChilliCream, Cofounder

Blazor and GraphQL combined will revolutionize how we build rich SPA applications with pure .NET.

Blazor for the first time in years gives us .NET developers the ability to develop applications that run in the browser. This allows us to use our knowledge that we acquired in the backend or with desktop applications and use that in the web.

GraphQL on the other hand changed how we work with data fetching. With GraphQL the frontend developer defines how the interface between the frontend and the backend looks like. We no more have friction between backend and frontend developer and are able to iterate much faster.

Let us explore together how we can put those to together and change how we design components by binding them to GraphQL fragments. With GraphQL the data becomes front and centre and drives our application.

After having a fundamental understanding of how GraphQL improves our data fetching needs in web applications we will move on and build a nice real-time application with Blazor and GraphQL. Let us together build a truly engaging next gen application and push Blazor to the limit.

- BST
VIP Networking AfterParty: Fireside Chat w/Featured Speakers
Tal Joffe
Tal Joffe
Nielsen, Engineering Director
Ritesh Jain
Ritesh Jain
Infynit, Co-Founder, Former COO at HSBC
Christoph Engelbert
Christoph Engelbert
Instana, Senior Developer Advocate
Ruben Rincon
Ruben Rincon
HelloSign, Developer Evangelist Lead

Join DevNetwork Co-founder Jon Pasky in this fireside chat with featured speakers on THE CLOUD & DIGITAL TRANSFORMATION.

Wednesday, April 28, 2021

- BST
4 Pillars of Successful Agile Test Automation
Mesut Durukal
Mesut Durukal
Rapyuta Robotics, Test Automation Lead

Motivation:
-------------
After executing a project to test a cloud-based microservices platform, we experienced a lot of challenges in both technical and social manners and tried to develop solutions to cope with them. Finally, we have wrapped them up to make a list of golden rules to successfully manage a test project. The purpose of this talk is to give insights about how a test automation project is managed.

Our problems were:
----------------
Technically, if not managed properly, automated testing will lead to extra costs and could even be less effective than manual testing.
From another aspect, at some point, we had too many complaints in our retrospective meetings about the heavy deployment activities and redundant executions. We had lots of flaky tests, execution lists full of not clear test definitions. Everyone was sick and tired of maintenance issues and the team was not happy. We took actions to improve motivation in the team.

Our 4 fundamental solutions are:
--------------
* Being truly agile: Adapt new solutions quickly.
* Manage the progress: Be aware of what is going on by setting KPIs to track & monitor with tools like CloudWatch, Grafana
+ Technical part: Automation principles for the sake of robustness.

* Solutions to reduce flaky tests & analysis effort & costs: Code demos on Java API polling libraries, Selenium usage and others.
* How we solved flaky tests: Adaptations into the code and observing the effect of each application. A few examples are polling mechanisms (safe wait methods) and test design techniques
* For maintenance efforts: We keep test history in the pipelines and develop helper methods to improve quality.
Improve coverage from different aspects to reduce escaped bugs.

* Team spirit!

Results & Conclusion
---------
After application of our proposals, we observed that waste is eliminated by prioritization and removing duplicated or dispensable work. After all, we believe that this submission has interesting content which can make great attention. Instead of theoretical claims, we discuss faced challenges and applied solutions. We analyze effects of solutions with before-after situations, graphs and evidence. Instead of what to do, we go over how to do it.

Takeaways
-----------
Proposed approaches can be applied by any organization by adapting according to the related work to achieve time and cost reduction. After this talk:

* Attendees will know our 4 golden milestones for successful agile testing: Being truly agile, Managing and improving internal processes, building a Good Automation Framework and Improving Efficiency.
* Attendees will be able to realize the importance of test coverage and see how it affects defects coming from production.
* Attendees will be able to realize the effect of test suites on sprint planning and execution effort.
* Attendees will be able to have some insights about increasing efficiency.
* Attendees will be able to utilize automation not only in implementation, but also in Executions, Reporting and other phases.
* Attendees will be able to analyze bugs. Just resolve and close them, or gain some lessons-learnt from them?


Outline
Introduction & project background
----------------------------------------------------------------
Importance of agility: Quality mindset, voice of customer
Demo 1: Collecting KPIs & metrics and monitor them on CloudWatch.
----------------------------------------------------------------
Automation Principles
Demo 2: Code Blocks to reduce test smells on Java, Postman and Selenium.
----------------------------------------------------------------
Efficiency & Team Productivity
Demo 3: A game showing the effects of team work.
----------------------------------------------------------------
Close & Questions

- BST
Security in CI/CD Pipeline - Myth or Truth
Mirza Dautbegovic
Mirza Dautbegovic
Endava, DevOps Engineer

Today we are talking a lot about security, data protection, privacy, but we are forget one pretty important stuff, a secure code. Normally most of IT professionals or security experts expect attack from outside. But what if the real enemy is our code? Many times we see that someone from developers forget to delete credentials from code, or just hard-code passwords, database endpoints, etc. From security perspective its very hard to detect it if app is already deployed.. In this session I would like to present how Endava integrate security into our CI/CD pipelines and how it help us to identify security issues.

- BST
Your Code, Your Responsibility
Martin Knobloch
Martin Knobloch
Micro Focus, Global Application Security Strategist

While the business keeps increasing the pressure and demand of flexibility of the development team, the agile movement was pushed to the limits. CI/CD was born to reduce manual step to reduce human errors and increase speed to go-live! Last not least, with DevOps the teams took application responsibilities, from cradle to grave. Nevertheless, software security is still missing in many full-stack developers resume and application security responsibilities are pushed off to the security department still. Petty, because the exactly agile, CI/CD and DevOps are security enabling practices.
This session is explaining Shift-left, early security enablement in the development Lifecycle. As the application development becomes more developer centric, the developer’s toolset must match the new challenges to have responsibilities matching capabilities. Learn from rugged software to supply chain cleanliness. Learn to avoid the common pitfalls and benefits of modern application development strategies. Hear why security champions programs tend to fail, compliance driven security trainings are a waste of time and money. Take back the best practices, proven solutions and Shift Left beyond the development.

- BST
Use DevOps to Deliver Micoservices with High Quality
Moa Gardell
Moa Gardell
Softronic, Lead Developer, Consultant, Engineer

What would you do if you were asked to design a system to analyze transactions in near-real time to find money laundering? That was the challenge I has been working with the last year. I used microservices and after a while I had a fully functional system, but how to deploy it? How to keep control when each service acts independently from the rest of the system? How to deliver a system with high quality, availability, and reliability? The last piece of the puzzle was to add DevOps – and this is when things get interesting.

And during the process I must admit it, I have fallen in love with DevOps and the capabilities it brings. Come listen to a speech about the elegance and possibility’s I have learned.