Glad I found your channel. I've done your wordpress course and I'm doing your Laravel one right now. You've made two of the best courses I've ever done in Udemy.
I have your Fullstack JS course that covers Mongo but I have been trying to put together sqlite with node express for the past week. So this is amazing!! A video comparing different technologies and when or why to use them would be a great follow up.
Great course Brad, I've learnt so much over the last few days of going through the course. I've started to write a simple app for giving routes & pickup names & times for 3 mini buses where I work. It's gonna take a while but no pain, no gain. Try this vs code extension "Multiple cursor case preserve" when selecting & renaming multiple words at the cursor. Once again thanks Brad 👍
@@LearnWebCode I somehow don't doubt for a second that it will be! I have a bit of an involved question for you, I'm not sure if you've made any videos on it yet, but the question is, what motivates you to Code and why do you do it? Is it a passion for Tech or solving problems and building things etc or all of the above? Thanks so much again for this course!
Hi Brad, thanks for your videos and courses. Could you make a video about WooCommerce development, especially on how to use hooks and create a custom eCommerce theme?
i hope that one day Brad,youll make your wordpress developer course free and post it here for africans like us who cant afford a good material of knowledge. you teach so well i wish i could afford your udemy courses.
Great tutorial Brad, watched it in one set as everything was clear and not boring. Could you make a tutorial about securing an express app, things like having csrf token in forms etc. I am coming from Rails framework and by default it has security included, and using express without knowing these things hold me back.
This is one of my favorite comments; thank you! Glad to hear the video was clear. I hear you; Rails and Laravel have CSRF for a reason. With our sameSite "strict" setup we are still open to a CSRF attack from one of our own sub-domains if it was compromised. I've added a "setup your own CSRF solution" to my video todo list. I used to always use the CSURF package on NPM but it was deprecated, but rolling our own solution is suprisingly simple (called the double submit technique). All the best, Brad
Thanks! I can point you in the right direction. There's a great package on npm called nodemailer. You'd want to email a user a JWT token that expires after maybe 10 minutes. But have that token give whoever clicks it permission to change the password.
Make same video on frontend development ( as per real time development ) How Real-Time Frontend Devolopment Done in Product Based Compani's ( Share all tasks ( Sprint's) in that video
I'm interested in your Learn JavaScript: Full-Stack from Scratch to learn back-end. I see your NodeJS is 1.5 hours. Other courses take hours just for NodeJS. Will that be enough? I'm so confused how much Node should I learn before getting to Express
Hi, I'm taking your course on Udemy which is fantastic so far. Do you think WordPress is still worth learning in 2024? Seems like there aren't many WP jobs out there these days
Hi, yes, I still think WordPress is a great way to enter the industry. With WP powering over 43% of all websites I think the job market will always be there. However, the enjoyment and salary of those jobs compared to other tech stacks is what's up for debate. If you have more time to study and learn before needing a webDev job right away, I think studying Laravel would be more enjoyable and lucrative. However, if someone came to me and said I really want my first webDev job in the next 30 days, I'd still recommend learning the basics of WP dev and going that route.
Is there any difference having the jwt in the headers than cookies. I’ve seen other people use that approach. Is it for security reasons or just preference
Good question. If we don't store the JWT in a cookie, we'd need to store it in LocalStorage. I don't like to keep security-related things like that in local storage because client side JS can access it. The beauty of an HTTP-only cookie is that even if malicious JS somehow got on our site it cannot access the cookie value. Having said that, if malicious JS code is somehow on our site, then the malicious person could perform any action they wanted on behalf of an innocent user anyways by having the innocent user submit requests and their cookie would be automatically sent along. But the attacker still wouldn't know the secret JWT value that's in the cookie, so in other words, as soon as the innocent user closed their browser tab the security threat would be over. Whereas if malicious JS could access the JWT value, they could continue to perform actions as that user for as long as the token doesn't expire.
do you recommend doing this as a complete beginner? im working to get a jr cloud engineer role and want to learn abit of back end stuff. i have abit of experience with linux servers but more with AWS. but i dont really know much about the back end side. so yeah.. is this something i should be doing?
I could be wrong, but my first thought is that cloud engineer feels more like DevOps than "development" - meaning less about creating the actual applications and more about setting up the infrastructure the apps run on. In that case, you could download the finished code this video offers (the GitHub link) and practice just the final portion of the video where we learn how to deploy it / setup a Linux host. Every job will be different, some will want AWS, some will want Microsoft's Azure, some will want you to have raw Linux experience. I think it's good to have a bit of experience in a lot of things but not at the expense of someone getting really really really good at one thing and specializing.
I agree 100%, but that would have been yet another technology in a video that already covered a lot. That would make for the perfect follow up video though; how to take this app and containerize it and deploy it.
I know what you mean about services doing that; reminds me of Netflix. But DreamHost has been around for I believe about 27 years and I don't see that happening with them. I've used them for about 19 years and they've never done anything to break my trust.
I wanted to learn nodejs in the month of October and here you post the video 😅
Glad I found your channel. I've done your wordpress course and I'm doing your Laravel one right now. You've made two of the best courses I've ever done in Udemy.
Your comment made my week, thank you so much! So glad the courses are helpful.
Every time I watch your videos, I get automagically smarter. Thanks much Brad! Fun tutorial!!!
I was learning Node from another website and wanted to find other resources for it and like a miracle you post a course for Node. THANK YOU!
I have your Fullstack JS course that covers Mongo but I have been trying to put together sqlite with node express for the past week. So this is amazing!!
A video comparing different technologies and when or why to use them would be a great follow up.
Great course Brad, I've learnt so much over the last few days of going through the course. I've started to write a simple app for giving routes & pickup names & times for 3 mini buses where I work. It's gonna take a while but no pain, no gain. Try this vs code extension "Multiple cursor case preserve" when selecting & renaming multiple words at the cursor. Once again thanks Brad 👍
I'm not even 20 seconds in and have already liked and saved this cause I know it's going to be pure Gold.
I really appreciate that Phill! Hope the course is helpful.
@@LearnWebCode I somehow don't doubt for a second that it will be! I have a bit of an involved question for you, I'm not sure if you've made any videos on it yet, but the question is, what motivates you to Code and why do you do it? Is it a passion for Tech or solving problems and building things etc or all of the above? Thanks so much again for this course!
After started journey of WordPress developer with you. Now I get my next milestone to follow. Thank you 🙏
WTF!!! Just spent an entire goddam week looking for exactly this, didn't find and now here comes the recommendation
❤
Good class for beginner in Back-end developper!
This video is amazing. Thank you so much! My deepest respect to you.
Thank you Brad for this. Badly needed this for a for a project
Hi Brad, thanks for your videos and courses. Could you make a video about WooCommerce development, especially on how to use hooks and create a custom eCommerce theme?
i hope that one day Brad,youll make your wordpress developer course free and post it here for africans like us who cant afford a good material of knowledge. you teach so well i wish i could afford your udemy courses.
Best teacher ever 🤗🤗🤗
Such a nyce tutorial. Love you from India🇮🇳
Waiting for next video on Full stack deployment by using cloud & all devops tools
Bang on, Brad. I really appreciate this content.
Thank you Alan!
Great. I was waiting for this. Thanks Brad.
You're welcome! Hope it's helpful!
Great tutorial Brad, watched it in one set as everything was clear and not boring. Could you make a tutorial about securing an express app, things like having csrf token in forms etc. I am coming from Rails framework and by default it has security included, and using express without knowing these things hold me back.
This is one of my favorite comments; thank you! Glad to hear the video was clear. I hear you; Rails and Laravel have CSRF for a reason. With our sameSite "strict" setup we are still open to a CSRF attack from one of our own sub-domains if it was compromised. I've added a "setup your own CSRF solution" to my video todo list. I used to always use the CSURF package on NPM but it was deprecated, but rolling our own solution is suprisingly simple (called the double submit technique). All the best, Brad
@@LearnWebCode Thank you! looking forward to see your upcoming videos.👍👍👍
Great video 👏
Excellent tutorial, We wish you could upgrade this app by adding a forgot password feature... Huge Thanks!!!
Thanks! I can point you in the right direction. There's a great package on npm called nodemailer. You'd want to email a user a JWT token that expires after maybe 10 minutes. But have that token give whoever clicks it permission to change the password.
Do you have any udemy plan for react native course or node or nextjs?
Some of your udemy course are outdated
or mern stack
Make same video on frontend development ( as per real time development )
How Real-Time Frontend Devolopment Done in Product Based Compani's ( Share all tasks ( Sprint's) in that video
I love your videos
Awesome
Awesome! ❤❤❤
I'm interested in your Learn JavaScript: Full-Stack from Scratch to learn back-end. I see your NodeJS is 1.5 hours. Other courses take hours just for NodeJS. Will that be enough? I'm so confused how much Node should I learn before getting to Express
🎉🎉thanks!
MERCI 🙂
Hi this was so cool
Hi, I'm taking your course on Udemy which is fantastic so far. Do you think WordPress is still worth learning in 2024? Seems like there aren't many WP jobs out there these days
Hi, yes, I still think WordPress is a great way to enter the industry. With WP powering over 43% of all websites I think the job market will always be there. However, the enjoyment and salary of those jobs compared to other tech stacks is what's up for debate. If you have more time to study and learn before needing a webDev job right away, I think studying Laravel would be more enjoyable and lucrative. However, if someone came to me and said I really want my first webDev job in the next 30 days, I'd still recommend learning the basics of WP dev and going that route.
@@LearnWebCode thanks! Wow Laravel I didn’t think that was even relevant these days
Is there any orm that could be used in place of the raw query
Is there any difference having the jwt in the headers than cookies. I’ve seen other people use that approach. Is it for security reasons or just preference
Good question. If we don't store the JWT in a cookie, we'd need to store it in LocalStorage. I don't like to keep security-related things like that in local storage because client side JS can access it. The beauty of an HTTP-only cookie is that even if malicious JS somehow got on our site it cannot access the cookie value. Having said that, if malicious JS code is somehow on our site, then the malicious person could perform any action they wanted on behalf of an innocent user anyways by having the innocent user submit requests and their cookie would be automatically sent along. But the attacker still wouldn't know the secret JWT value that's in the cookie, so in other words, as soon as the innocent user closed their browser tab the security threat would be over. Whereas if malicious JS could access the JWT value, they could continue to perform actions as that user for as long as the token doesn't expire.
Love you man
do you recommend doing this as a complete beginner? im working to get a jr cloud engineer role and want to learn abit of back end stuff. i have abit of experience with linux servers but more with AWS. but i dont really know much about the back end side. so yeah.. is this something i should be doing?
I could be wrong, but my first thought is that cloud engineer feels more like DevOps than "development" - meaning less about creating the actual applications and more about setting up the infrastructure the apps run on. In that case, you could download the finished code this video offers (the GitHub link) and practice just the final portion of the video where we learn how to deploy it / setup a Linux host. Every job will be different, some will want AWS, some will want Microsoft's Azure, some will want you to have raw Linux experience. I think it's good to have a bit of experience in a lot of things but not at the expense of someone getting really really really good at one thing and specializing.
nice!
pls make a front end and how to connect them
just a heads up: i noticed there’s a problem with the first link in the video’s description
Really appreciate that! I totally missed that; thank you!
I think better option is to use docker for deployment 😜
I agree 100%, but that would have been yet another technology in a video that already covered a lot. That would make for the perfect follow up video though; how to take this app and containerize it and deploy it.
@@LearnWebCodeplease that will be a great video and thank you.
Make DSA with js
yeah dream host is worth it but we know that every service when it gets successful they start to charge extra, hop dream host will remain as it is
I know what you mean about services doing that; reminds me of Netflix. But DreamHost has been around for I believe about 27 years and I don't see that happening with them. I've used them for about 19 years and they've never done anything to break my trust.
Now with golang😅
Now lets declare a variable : CONST x ... no offense PHP is better and nicer
????????
You must be bored
too much fluff, beating around the bush
1:21:31
if (
req.body.username.trim().length < 1 ||
req.body.password.length < 1
) errors.push("invalid username/password.")