I take blogging pretty seriously. When I write a post it has a very specific purpose and tends to be pretty long. I think this strategy has a lot to do with my success; but it has also raised the stakes on blogging to the point where I no longer have a container for a few hundred words I’d like to share. By container I mean a place to publish content longer and more permanent than a Facebook post but less high stakes than a blog post. With that in mind, I decided that I needed a microblog. For a while, I thought […]
Stronger together, learning from WordPress security vulnerabilities
Last week two very popular plugins, WooCommerce and WordPress SEO, identified, fixed, and disclosed security issues. The details of these vulnerabilities are now publicly available, which allows other developers to learn from their mistakes. In a previous article for Torque, I discussed the importance of responsibly disclosing security issues. To get a better understanding of this in relation to the recent vulnerabilities I reached out to James Golovich, a WordPress developer who recently discovered security issues in WP All Import, Easy Digital Downloads, and IgnitionDeck as well as several other plugins and themes, which he details on his highly informative blog. […]
Defining the WordPress 80/20 problem
The 80/20 rule, also known as the Pareto Principle, states that “for many events, roughly 80% of the effects come from 20% of the causes.” The 80/20 rule is named after Italian economist Vilfredo Pareto, and was popularized as a business tool in the book Living the 80/20 Way, by Richard Koch. This is one of the most useful principles for finding the most important things to focus on in business marketing and development. Identifying the 20% of your efforts that have the biggest impacts is a fundamental step in maximizing your efficiency in any pursuit. Most people with a freelance web […]
Defining best practices and SOPs: Have you defined “doing it right?”
These days everyone is talking about following best practices, established standards, and just doing it right. This is undeniably great, but does your company have a clear definition of what any of this means? I ask because documenting this information can create a valuable resource for your employees and contractors to learn from—all while establishing a company-wide standard. More importantly, however, it creates a way to offer the most constructive type of feedback to those who are not doing it right. Instead of telling them they are flat out wrong, you can direct them to where it says how to do […]
What you need to know about authentication for the JSON REST API
Update: For more information, you can download our free ebook, The Ultimate Guide to the WordPress REST API. The new JSON REST API is one of the more exciting developments in the WordPress world. One of the parts of working with the API that has generated the most confusion is authentication. In this article I will give you a brief introduction to how authentication works with the REST API and the authentication system provided by the REST API team. I will also introduce some additional tools that will make using them even easier. Understanding authentication with the REST API How authentication works […]
4 Comments
Join the conversation