投稿時間:2021-01-27 00:34:40 RSSフィード2021-01-27 00:00 分まとめ(50件)

カテゴリー等	サイト名等	記事タイトル・トレンドワード等	リンクURL	頻出ワード・要約等/検索ボリューム	登録日
IT	気になる、記になる…	Apple、｢Apple Watch Series 6｣の限定モデル｢Black Unity Collection｣を発表	https://taisy0.com/2021/01/26/131371.html	Apple、「AppleWatchSeries」の限定モデル「BlackUnityCollection」を発表本日、Appleが、「AppleWatchSeries」の限定モデルである「BlackUnityCollection」を発表しました。	2021-01-26 14:53:27
IT	気になる、記になる…	Apple、｢watchOS 7.3｣を今晩に正式リリースへ	https://taisy0.com/2021/01/26/131369.html	apple	2021-01-26 14:30:38
python	Pythonタグが付けられた新着投稿 - Qiita	Q18.[Forensic]leaf in forestをPythonで解いてみる	https://qiita.com/kuratsuka/items/b5177f8dabdbb56f5d23	QForensicleafinforestをPythonで解いてみるQForensicleafinforestこのファイルの中にはフラグがあります。	2021-01-26 23:51:57
python	Pythonタグが付けられた新着投稿 - Qiita	LEGOでカメラアームを作り遠隔でカメラを操作してみた(C言語 + Nuxt.js + Python + Firebase + SkyWay + ラズパイ)	https://qiita.com/akinko/items/59f07dfc159f37380f10	基本セットモデル組み立て説明書LEGOの実行環境ラズパイから常時シリアル通信でEVに命令してモジュールを制御したかったので、開発プラットフォームのEVRTを利用しました。	2021-01-26 23:04:59
js	JavaScriptタグが付けられた新着投稿 - Qiita	モーダルウィンドウ表示	https://qiita.com/x49_n/items/edc316a0807d63d1c018	モーダルウィンドウ表示前回の続きです。	2021-01-26 23:59:02
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	【laravel初心者】画像アップロード機能を実装したい	https://teratail.com/questions/318690?rss=all	ブログ投稿フォームに画像をアップロードし、タイトルと本文と一緒にDBに保存したいです。	2021-01-26 23:58:33
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	gitで削除したはずのブランチが残っているので削除したい。	https://teratail.com/questions/318689?rss=all	gitで削除したはずのブランチが残っているので削除したい。	2021-01-26 23:56:22
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	python glob 参照できない	https://teratail.com/questions/318688?rss=all	pythonglob参照できない以下コード抜粋です。	2021-01-26 23:41:14
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	ターミナルでRailsをインストールしようとすると、エラーになってしまう	https://teratail.com/questions/318687?rss=all	ターミナルでRailsをインストールしようとすると、エラーになってしまう前提プログラミング初心者です。	2021-01-26 23:31:15
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	本番環境に機能を追加するとき	https://teratail.com/questions/318686?rss=all	本番環境に機能を追加するとき実現したいことAWSで構築したwebアプリがあり、そこに開発環境で作った機能を追加したいです。	2021-01-26 23:28:54
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	Rとpythonを用いた回帰分析を行うにあたって，lm関数内の説明変数を動的に処理したい	https://teratail.com/questions/318685?rss=all		2021-01-26 23:11:26
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	Pyomoを用いた数理最適化で所望の結果が得られない	https://teratail.com/questions/318684?rss=all		2021-01-26 23:10:38
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	swiperがエラーも起きていないのですが、起動してくれない	https://teratail.com/questions/318683?rss=all	swiperがエラーも起きていないのですが、起動してくれない現在、swiperで画像に動きをつけているのですが、エラーも起きていないのですが、機能してくれない状況でございます。	2021-01-26 23:06:27
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	主成分回帰、PLS回帰のモデル保存/呼び出しについて	https://teratail.com/questions/318682?rss=all	主成分回帰、PLS回帰のモデル保存呼び出しについて現在X線回析やNMRのような連続値を持つ多次元のスペクトルデータの解析を主成分分析等を用いて行っています。	2021-01-26 23:05:54
Ruby	Rubyタグが付けられた新着投稿 - Qiita	DeviseのSessionsControllerをカスタマイズ(API化)したときに苦労した件	https://qiita.com/ShotaImoto1/items/3fe92a6d4498f3f93b71	デフォルトだとviewファイルをレンダリングする仕様なので、jsonを返すように変換してやる必要があります。	2021-01-26 23:30:04
Ruby	Rubyタグが付けられた新着投稿 - Qiita	【Rails】通知機能	https://qiita.com/mtomoko15/items/419bdd1d222770a9890c	fontawesomeを入れていればもうちょっとシンプルだと思いますがこれで、contact一覧を表示すると通知マークが消えるように実装ができました最後に今回の実装で、クラスメソッドについて学習しました。	2021-01-26 23:05:09
Docker	dockerタグが付けられた新着投稿 - Qiita	gRPC command line toolをAlpine Linuxでビルドする	https://qiita.com/bathtimefish/items/a8c015412c9308442136	gRPCcommandlinetoolをAlpineLinuxでビルドするはじめにデバッグ目的でgrpccliをalpineに入れたくてやったらわりと手こずりました。	2021-01-26 23:31:52
Docker	dockerタグが付けられた新着投稿 - Qiita	mattermostが起動しない！？原因は公式最新バージョンのエラーだった！	https://qiita.com/vain_vox/items/267c530a123a3ada7175	公式のコマンドはデーモンで起動だったので、試しにdockerrunmattermostmattermostpreviewしてみました。	2021-01-26 23:13:40
Git	Gitタグが付けられた新着投稿 - Qiita	きっとgit使えないとbad③	https://qiita.com/TerToEer_sho/items/c7d2ba3151837e519280	きっとgit使えないとbad③はじめに引き続き、少しずつ調べて実践しているけど、細かいところがわからないし、ミスったらどうしようという不安を感じながらコマンドを入力している、今日この頃です。	2021-01-26 23:34:51
Ruby	Railsタグが付けられた新着投稿 - Qiita	DeviseのSessionsControllerをカスタマイズ(API化)したときに苦労した件	https://qiita.com/ShotaImoto1/items/3fe92a6d4498f3f93b71	デフォルトだとviewファイルをレンダリングする仕様なので、jsonを返すように変換してやる必要があります。	2021-01-26 23:30:04
海外TECH	DEV Community	Truly Protected React Routes	https://dev.to/daggala/truly-protected-react-routes-b8a	Truly Protected React RoutesAre you in doubt that your React routes are really protected There are lots of tutorials out there that talk about “secured routes “protected routes “private routes or “restricted routes It s pretty misleading because even though you have protected routes it is possible to get past your login page and get access to all the code in your protected routes Perhaps people are telling you that it isn t worth going for server side rendering SSR in order to truly protect the graphic content of your website Maybe they re saying that securing the backend should be enough because that will prevent you from displaying any sensitive data to fake logged in users But WHAT IF you still want more security and you want to block all access After all you don t want your competitors to hack into your admin dashboard to see how you re progressing or stealing your ideas This article will answer the following questionswhat s not secure about protecting routes in the client why do we protect routes in the client in which case do I want to have truly protected routes how to truly protect routesWhat s not secure about protecting routes in the client In React there is nothing such as truly private routes as it s a single page application SPA which means that all the code is served to the browser This is typically how we protect routes in the browser isLoggedIn lt PrivateRoutes gt lt PublicRoutes gt Enter fullscreen mode Exit fullscreen mode With this code here above you can t guarantee that the user won t tweak your javascript change isLoggedIn to value true and pretend to be an authenticated user Let s see how we can get access to ALL the code of your application Here s a sandbox example where I ve made a typical login system with protected routes Notice that I lazy loaded two components PrivatePage and the LoginPage Then I used the classic way of importing AnotherPrivatePage even though that component is not being used this is on purpose import React useState Suspense from react import AnotherPrivatePage from AnotherPrivatePage const PrivatePage React lazy gt import PrivatePage const LoginPage React lazy gt import LoginPage export default function App const isAuthenticated setAuthenticated useState false return lt Suspense fallback lt div gt Loading lt div gt gt isAuthenticated lt PrivatePage gt lt LoginPage gt lt Suspense gt Enter fullscreen mode Exit fullscreen mode You can either follow the article or test yourself by opening up the sandbox example and opening page in new window by clicking on the two squares in the upper right corner the icon can vary between browsers Go to devtools by right clicking choose Inspect if you re in Chrome Then go to Sources Here above you can see that we have two components loaded to the browser LoginPage because isAuthenticated false We also have AnotherPrivatePage because if you don t lazy load we can very easily access that component as well The hacker doesn t even have to hack to look around and read the code and maybe see some static data It needs a bit more effort to get hold of the other component PrivatePage js as it s lazy loaded There are lots of ways to do that but here s one Install React dev tools if you don t have it already go to ️Components Then click on App and change hook s state to true And you ll see how we get access to the PrivatePage the last component we didn t have loaded in of our application and was supposed to be protected There are of course lots of other ways to hack React To increase security you could for example disable access to devtools in production but there s most often some other way to get around things But why do we then protect our routes in the front end You can protect your components graphics on a component levelroute levelEither way the main reason for why we re protecting those graphics is just to make the user experience nicer The reason why we do it on a route level is just to make our code more organized by avoiding duplications How are protected routes nicer for the user Imagine the user has already visited our page Next time he visits he ll tap the url of your website and his browser autocompletes the website url without adding login to the end of the URL He goes straight to but he s not authenticated anymore let s say that he logged out the last time or his authorization token has expired And because he s not logged in anymore the user will see the page without any content and no possibility to interact with anything that has to do with server data It would be nicer for the user to have no direct access to the private pages and instead automatically land on the login page But is it so important to have truly protected routes In the worst case scenario the user can hack its way with javscript to your private routes and will see some empty tables graphs or messages that tell you that there is no data etc And without content your website will look like nothing might even be ugly or at least it will be unusable Well that s not so serious we could even say that our hacker deserves that But you have to make sure that there is no possibility for the hacker to access sensitive data You should not leave any sensitive static data in your client and ensure that all your API endpoints are secure and make the server throw if the user is not really authenticated and authorized But is that really enough Like I said above you might have built an admin dashboard for your company Even without access to sensitive data your competitor could possibly deduce where your company is heading by reading any static texts in your app or by trying to make sense of your graphics even though they re missing the content Apart from that truly securing the private part of your app adds an extra layer of security to your app which can only be positive How to make truly secured routes There are several ways to achieve this You could use SSR to solve this problem or you could stay with SPA and serve your application in two parts I ve an example of the how to achieve the latter solution There are lots of ways to do this and here I have an example of this using Express server in Node js that serves two different SPAs one containing the login page and the other containing the app itself You can see this project here on github If you clone that project and run it you should be aware that it takes pretty much time Instead you can also just follow the article and check out the code If you run the project and go to devtools you ll see in sources that you only have the login page loaded to the browser Here there s no possibility to access the authenticated part of the application because it won t be served to the browser unless you provide the correct auth inputs in username and password thanks to this code in server jsapp get protected req res gt if req signedCookies name admin app use express static path join dirname privatePage build res sendFile path join dirname privatePage build index html Enter fullscreen mode Exit fullscreen mode You can try to log in username admin and password and voilà Here we re logged in and now we have the authenticated part of the application loaded in the browser and as a side effect the login page is no more loaded in the browser I hope this article has been useful for boosting the security of some of your websites that might use some extra layer of restriction If you found this article helpful don t hesitate to leave a comment or share it with others Same of course if you have something that you would like to point out	2021-01-26 14:02:15
Apple	AppleInsider - Frontpage News	Apple marks Black History Month with new Apple Watch band, major content push	https://appleinsider.com/articles/21/01/26/apple-marks-black-history-month-with-new-apple-watch-band-major-content-push	Apple marks Black History Month with new Apple Watch band major content pushApple is marking Black History Month by offering users a wide variety of content to amplify creators and businesses across its various digital storefronts and services as well as offering a limited edition Apple Watch band Throughout February Apple will be showcasing Black owned businesses developers apps content and social justice apps as part of a number of initiatives it is implementing to mark the month In the App Store the Black History Month Hub will list both apps and stories revolving around the topic The stories will feature Black developers from developers including ustwo games and Zynga and will also discus the importance of representation Read more	2021-01-26 14:56:53
Apple	AppleInsider - Frontpage News	Spotify launches literary audiobooks as 'test' of non-music streaming	https://appleinsider.com/articles/21/01/26/spotify-launches-literary-audiobooks-as-test-of-non-music-streaming	Spotify launches literary audiobooks as x test x of non music streamingA small collection of new audiobook recordings of classic novels have been added to Spotify in what the company says is a test run Spotify has added a series of literary classic audiobooksFollowing the apparent success of its exclusive podcasts Spotify has added to its range of non music content with a new series of audiobooks The nine titles are all literary classics and all feature new readings recorded especially for the streaming service Read more	2021-01-26 14:49:51
Apple	AppleInsider - Frontpage News	'Apple Car' may automatically configure seats, keep displays private	https://appleinsider.com/articles/21/01/26/apple-car-may-automatically-configure-seats-keep-displays-private	x Apple Car x may automatically configure seats keep displays privatePassengers of the Apple Car may only be able to see displays inside the vehicle while wearing special glasses for privacy while the driver may discover the car s seat and steering wheel could change position automatically by detecting the presence of their iPhone BMW has embraced CarKey Apple s digital key protocol that uses an iPhone to replace a key fob The Apple Car is a long rumored product that has been in development for a considerable length of time but reports from the start of claim it may not be too long before it officially launches Apple is said to be in talks with Hyundai subsidiary Kia to make the car for a potential launch with a beta version likely to surface in Read more	2021-01-26 14:09:31
海外TECH	Engadget	Sony's WF-1000XM3 ANC earbuds are 23 percent off right now	https://www.engadget.com/sony-wf-1000xm3-wireless-anc-earbuds-sale-amazon-best-buy-144755766.html	Sony x s WF XM ANC earbuds are percent off right nowYesterday we covered a deal on one of our favorite pairs of wireless headphones the Sony WH XM that brought them down to You can still grab that deal today but if over ear cans aren t your style you can now save a bit on Sony earbuds	2021-01-26 14:47:55
海外TECH	Engadget	AT&T's public safety network knows which floor first responders are on	https://www.engadget.com/att-firstnet-vertical-gps-walkie-talkies-upgrade-143049165.html	AT amp T x s public safety network knows which floor first responders are onAT amp amp T s FirstNet public safety network just received some upgrades that could make all the difference in certain emergencies Most notably the platform now includes vertical GPS support or Z Axis in AT amp amp T speak It s now possible to pinpoint	2021-01-26 14:30:49
海外TECH	Engadget	Wink's home automation service has been down for a whole day	https://www.engadget.com/wink-home-automation-service-failure-142519770.html	Wink x s home automation service has been down for a whole dayHome automation service Wink has suffered a connectivity issue that has knocked out its equipment for the better part of a day In a tweet the company announced that it was investigating an issue “controlling devices connected to Wink adding that	2021-01-26 14:25:19
海外TECH	Engadget	Walmart knocks over $50 off the 44mm Apple Watch Series 6	https://www.engadget.com/apple-watch-series-6-44mm-blue-aluminum-navy-sport-band-discount-walmart-140546738.html	Walmart knocks over off the mm Apple Watch Series While Apple doesn t have many sales of its own it s possible to find things like the Apple Watch for less at other retailers But when it comes to the Watch in particular there s rarely any rhyme or reason to these discounts ーone day all models wi	2021-01-26 14:05:46
海外TECH	Engadget	Formlabs launches its first SLS 3D printer for in-house prototyping	https://www.engadget.com/formlabs-fuse-1-sls-3d-printer-140033232.html	Formlabs launches its first SLS D printer for in house prototypingToday Formlabs is introducing a new Selective Laser Sintering SLS D printer for prototypers and engineers The Fuse uses the company s first Nylon powder to make SLS printing more affordable and accessible for businesses It s an industrial pri	2021-01-26 14:00:48
海外TECH	CodeProject Latest Articles	DOCTYPE Inside the HTML Document.	https://www.codeproject.com/Tips/5292344/DOCTYPE-Inside-the-HTML-Document	document	2021-01-26 14:52:00
海外TECH	CodeProject Latest Articles	Preparing Images for AI Model Training	https://www.codeproject.com/Articles/5293069/Preparing-Images-for-AI-Model-Training	training	2021-01-26 14:41:00
海外科学	NYT > Science	Flaming Lips Use of Plastic Bubbles at Concerts Leave Covid-19 Experts Unsure	https://www.nytimes.com/2021/01/25/arts/music/flaming-lips-bubble-concert.html	Flaming Lips Use of Plastic Bubbles at Concerts Leave Covid Experts UnsureMedical professionals questioned how well the individual plastic bubbles protected band members and concertgoers from the coronavirus	2021-01-26 14:14:06
金融	RSS FILE - 日本証券業協会	新型コロナウイルス感染症への証券関係機関等・各証券会社の対応について（リンク集）	https://www.jsda.or.jp/shinchaku/coronavirus/link.html	新型コロナウイルス	2021-01-26 15:17:00
海外ニュース	Japan Times latest articles	New COVID-19 cases in Tokyo again jump above 1,000	https://www.japantimes.co.jp/news/2021/01/26/national/coronavirus-japan-jan26/	New COVID cases in Tokyo again jump above The figure comes after the capital last week revised its contact tracing strategy to prioritize outreach to higher risk individuals affected by the coronavirus	2021-01-27 00:25:14
海外ニュース	Japan Times latest articles	Frank Lampard ‘disappointed’ with Chelsea exit	https://www.japantimes.co.jp/sports/2021/01/26/soccer/frank-lampard-chelsea/	thomas	2021-01-26 23:23:18
海外ニュース	Japan Times latest articles	Biden may struggle to calibrate his Asia policy	https://www.japantimes.co.jp/opinion/2021/01/26/commentary/world-commentary/biden-struggle-calibrate-asia-policy/	obama	2021-01-27 00:17:08
海外ニュース	Japan Times latest articles	The eternal promise of the Arab Spring: Democracy isn’t like instant coffee	https://www.japantimes.co.jp/opinion/2021/01/26/commentary/world-commentary/promise-arab-spring-democracy-instant-coffee/	The eternal promise of the Arab Spring Democracy isn t like instant coffeeInstead of undergoing a genuine transition to freedom and social justice almost all Arab Spring countries have reverted to various combinations of autocracy poverty and	2021-01-26 23:02:00
ニュース	BBC News - Home	Covid-19: Vaccine minister 'confident' of supplies amid production delays	https://www.bbc.co.uk/news/uk-55808266	february	2021-01-26 14:54:15
ニュース	BBC News - Home	Covid: Quarantine hotel plans set to be announced	https://www.bbc.co.uk/news/uk-politics-55805575	countries	2021-01-26 14:02:39
ニュース	BBC News - Home	Fourteen wickets fall on enthralling first day of Pakistan-South Africa series	https://www.bbc.co.uk/sport/cricket/55812815	karachi	2021-01-26 14:27:48
ニュース	BBC News - Home	Uncertainty persists over Tokyo 2020 with IOC poised to meet	https://www.bbc.co.uk/sport/olympics/55811593	tokyo	2021-01-26 14:24:33
ニュース	BBC News - Home	Groenewegen sent death threats & noose after crash with Jakobsen	https://www.bbc.co.uk/sport/cycling/55804723	Groenewegen sent death threats amp noose after crash with JakobsenDutch sprinter Dylan Groenewegen says he received death threats following a crash that left Fabio Jakobsen with serious head injuries	2021-01-26 14:05:45
ニュース	BBC News - Home	Covid: What’s happening to the EU vaccine scheme?	https://www.bbc.co.uk/news/explainers-52380823	coronavirus	2021-01-26 14:46:46
北海道	北海道新聞	旭川厚生病院がクラスター終息宣言　国内最大規模３１１人　濃厚接触者が看護し拡大か	https://www.hokkaido-np.co.jp/article/505100/	新型コロナウイルス	2021-01-26 23:33:05
北海道	北海道新聞	病院長の解任は「公平」　旭医大が会見　古川前院長は漏えい否定	https://www.hokkaido-np.co.jp/article/505105/	記者会見	2021-01-26 23:19:22
北海道	北海道新聞	ワクチン接種済みの６頭が豚熱に　和歌山・かつらぎ町の養豚場	https://www.hokkaido-np.co.jp/article/505107/	和歌山県	2021-01-26 23:12:03
北海道	北海道新聞	与党幹部ら深夜、銀座のクラブに　自民・松本氏、公明・遠山氏	https://www.hokkaido-np.co.jp/article/505121/	国対委員長	2021-01-26 23:04:00
北海道	北海道新聞	ＮＹ円、１０３円後半	https://www.hokkaido-np.co.jp/article/505120/	外国為替市場	2021-01-26 23:04:00
仮想通貨	BITPRESS（ビットプレス）	[CoinDesk Japan] ハーバード、イェール、ミシガン…米大学基金はビットコインを購入していた：関係者	https://bitpress.jp/count2/3_9_12204	coindeskjapan	2021-01-26 23:58:12
仮想通貨	BITPRESS（ビットプレス）	[ロイター] 永続的な暗号資産、まだ存在せず＝英中銀総裁	https://bitpress.jp/count2/3_9_12203	資産	2021-01-26 23:56:46