Here is a quick guide to show you how to add two-factor auth login protection to WordPress with YubiCo hardware YubiKeys and or 2FA authenticator app
Advertisement:
app
Setup two factor authenticator protection at login on Ubuntu or Debian
This is a quick post that shows how I set up two-factor authenticator protection at login on Ubuntu or Debian
Advertisement:
Aside
If you have not read my previous posts I have now moved my blog to the awesome UpCloud host (signup using this link to get $25 free UpCloud VM credit). I compared Digital Ocean, Vultr and UpCloud Disk IO here and UpCloud came out on top by a long way (read the blog post here). Here is my blog post on moving from Vultr to UpCloud.
Buy a domain name here
Now on with the post.
Backup
I ensured I had a backup of my server. This is easy to do on UpCloud. If something goes wrong I will rollback.
Why Setup 2FA on SSH connections
1) Firewalls or whitelists may not protect you from detection.
2) SSH authorisation bypass bugs may appear.
I’ve just relased libssh 0.8.4 and 0.7.6 to address CVE-2018-10933. This is an auth bypass in the server. Please update as soon as possible! https://t.co/Qhra2TXqzm
— Andreas Schneider (@cryptomilk) October 16, 2018
2FA authorisation is another lube of defence.
Yubico Yubi Key
Read my block post here to learn how to use the Yubico YubiKey NEO hardware-based two-factor authentication device to improve authentication and logins to OSX and software
Timezone
It is important that you set the same timezone as the server you are trying to secure two 2FA. I can run this command on Linux to set the timezone.
On Debian, I set the time using this guide.
Check the time command
> timedatectl
> Local time: Tue 2019-06-25 16:45:20 UTC
> Universal time: Tue 2019-06-25 16:45:20 UTC
> RTC time: Wed 2019-06-26 02:37:44
> Time zone: Etc/UTC (UTC, +0000)
> Network time on: yes
> NTP synchronized: yes
> RTC in local TZ: no
I set the timezone
> sudo timedatectl set-timezone Australia/Sydney
I confirmed the timezone
> timedatectl
> Local time: Wed 2019-06-26 02:47:42 AEST
> Universal time: Tue 2019-06-25 16:47:42 UTC
> RTC time: Wed 2019-06-26 02:40:06
> Time zone: Australia/Sydney (AEST, +1000)
> Network time on: yes
> NTP synchronized: yes
> RTC in local TZ: no
I installed a npt time server
I followed this guide to install an NTP time server (failed at: ntpdate linuxconfig.ntp) and this guide to manually sync
I installed the Google Authenticator app
sudo apt-get install libpam-google-authenticatorConfigure Google Authenticator
Run google-authenticator and answer the following questions
Q1) Do you want authentication tokens to be time-based (y/n): Y
You will be presented with a token you can add to the Yubico Authenticator or other authenticator apps,
TIP: Write down any recovery codes displayed
Scan the code with your 2FA Authenticator app (e.g Google Authenticator, Yubico Authenticator or freeOTP from https://freeotp.github.io)
The 2FA code is now available for use in my YubiCo Authenticator app
Q2) Do you want me to update your “/root/.google_authenticator” file? (y/n): Y
Q3) Do you want to disallow multiple uses of the same authentication
token? This restricts you to one login about every 30s, but it increases
your chances to notice or even prevent man-in-the-middle attacks (y/n): Y
Q4) By default, a new token is generated every 30 seconds by the mobile app.
In order to compensate for possible time-skew between the client and the server,
we allow an extra token before and after the current time. This allows for a
time skew of up to 30 seconds between authentication server and client. If you
experience problems with poor time synchronization, you can increase the window
from its default size of 3 permitted codes (one previous code, the current
code, the next code) to 17 permitted codes (the 8 previous codes, the current
code, and the 8 next codes). This will permit for a time skew of up to 4 minutes
between client and server.
Do you want to do so? (y/n) y: Y
Advertisement:
Q5) If the computer that you are logging into isn’t hardened against brute-force login attempts, you can enable rate-limiting for the authentication module. By default, this limits attackers to no more than 3 login attempts every 30s.
Do you want to enable rate-limiting? (y/n): Y
Review Google Authenticator Config
You can change this if need be.
sudo nano ~/.google_authenticator
Edit SSH Configuration (Authentication)
Add the line below the line “@include common-auth”
Comment out the following line (this is the most important step, this forces 2FA)
Edit SSH Configuration (Challenge Response Authentication)
Edit the ssh config file.
Search For
Set this to
Ensure the following line exists
UsePAM yes
Add the following line
Edit Common Auth
Add the following line before the line that says “auth [success=1 default=ignore] pam_unix.so nullok_secure”
auth required pam_google_authenticator.so
Restart the SSH service and test the codes in a new terminal before rebooting.
TIP: Do not exit the working connected session and you may need it to fix issues.
Restart the SSH service a tets it
If you have failed to set it up authenticator codes will fail to work.
Failed attempts
When it is configured OK (at login SSH connection) I was prompted for further information
I am now prompted at login to insert a 2FA token (after inserting my YubiKey)
Turn on 2FA on other sites
Check out https://www.turnon2fa.com and tutorials here.
I hope this guide helps someone.
Please consider using my referral code and get $25 UpCloud VM credit if you need to create a server online.
https://www.upcloud.com/register/?promo=D84793
Ask a question or recommend an article
Revision History
V1.4 June 2019: Works on Debian 9.9
V1.3 turnon2fa.com
V1.2 ssh auth bypass
v1.1 Authenticator apps
v1.0 Initial Post
Creating your first Java FX app and using the Gluon Scene Builder in the IntelliJ IDEA IDE
This is quick guide explaining how I created my first JavaFX application using the Gluon Scene Builder in the IntelliJ IDEA IDE.
Read the full article here: https://fearby.com/article/creating-your-first-java-fx-app-and-using-scene-builder-in-the-intellij-idea-ide
Creating your first Java FX app and using the Gluon Scene Builder in the IntelliJ IDEA IDE
This is quick guide explaining how I created my first JavaFX application using the Gluon Scene Builder in the IntelliJ IDEA IDE.
Advertisement:
I have a number of guides on moving away from CPanel, Setting up VM’s on UpCloud, AWS, Vultr or Digital Ocean along with installing and managing WordPress from the command line. I created this blog post on creating a Java GUI app with the older Swing technology (Java FX replaces Swing). I now want to create a JavaFX app to control my UpCloud VM’s.
If you have not read my previous posts I have now moved my blog etc to the awesome UpCloud host. Sign up using this link to get $25 free credit.
Do read: Preparing for JavaFX Application Development: https://wiki.openjdk.java.net/display/OpenJFX/Building+OpenJFX#BuildingOpenJFX-Mac
Downloading Java
Download and install Java SE 8 or higher from http://www.oracle.com/technetwork/java/javase/downloads/index.html
Download Intelli J IDEA IDE
Goto https://www.jetbrains.com/idea/
Click Download
Download the community edition
Install Intelli J IDEA IDE
Install Scenebuilder
I downloaded the Java Scene Builder (1.1 or 2.0) from here.
Install the Scene Builder (open the installer and drag it to your applications folder).
Configure the Scene Builder in IntelliJ IDEA IDE
- Open Intelli J IDEA IDE (set the default’s you wish)
- Create a New Project
- Open Intelli J IDEA IDE Preferences
- Open Languages & Frameworks then JavaFX and set your Scene Builder path (e.g /Applications/JavaFX Scene Builder 2.0.app/)
- Exit Preferences
You can now create a JavaFX project an have a workign scene builder GUI.
After you create a JavaFX project open your JavaFX fxml file in Scene Builder (right click on the .fxml file and select Open in Scene Builder)
Extended Scene Builder from Gluon
I read that there is a better Scene builder GUI available from https://gluonhq.com/products/scene-builder/
Read some of the Java Scene Builder v Gluon Scene Builder history here at Reddit for the latest on why.
I am going to download the Gluon Scene Builder from http://gluonhq.com/products/scene-builder/
Download and install the Gluon Scene builder (at the time of writing requires Java 9 or higher).
Now open IntelliJ IDEA IDE and open the preferences and change the scene builder path from “/Applications/JavaFX Scene Builder 2.0.app/” to “/Applications/SceneBuilder.app/“.
Save the IntelliJ IDEA preferences and Right click on your projects “fxml” file again and click “Open In Scene Builder” , do verify it is indeed the Gluon Scene builder by opening the about menu.
Designing your first JavaFX app
Now you can design and code a JavaFX application with Gluon Scene Builder.
I am not an expert at java apps so i’d highly recommend you follow this guide to learn how to build a well-structured JavaFX panel layout (just ignore that it is using the standard Scene Builder, it works with the gluon one).
You should now have a working Java FX App
The scene builder will save changes to your fxml file
<?xml version="1.0" encoding="UTF-8"?>
<?import javafx.geometry.Insets?>
<?import javafx.scene.control.Button?>
<?import javafx.scene.control.Label?>
<?import javafx.scene.control.Menu?>
<?import javafx.scene.control.MenuBar?>
<?import javafx.scene.control.MenuItem?>
<?import javafx.scene.control.TextArea?>
<?import javafx.scene.control.TextField?>
<?import javafx.scene.control.TreeView?>
<?import javafx.scene.layout.BorderPane?>
<?import javafx.scene.layout.HBox?>
<?import javafx.scene.layout.Region?>
<?import javafx.scene.layout.VBox?>
<BorderPane maxHeight="-Infinity" maxWidth="-Infinity" minHeight="-Infinity" minWidth="-Infinity" prefHeight="400.0" prefWidth="600.0" xmlns="http://javafx.com/javafx/9.0.4" xmlns:fx="http://javafx.com/fxml/1" fx:controller="sample.Controller">
<top>
<VBox BorderPane.alignment="CENTER">
<children>
<MenuBar>
<menus>
<Menu mnemonicParsing="false" text="File">
<items>
<MenuItem mnemonicParsing="false" text="Close" />
</items>
</Menu>
<Menu mnemonicParsing="false" text="Edit">
<items>
<MenuItem mnemonicParsing="false" text="Delete" />
</items>
</Menu>
<Menu mnemonicParsing="false" text="Help">
<items>
<MenuItem mnemonicParsing="false" text="About" />
</items>
</Menu>
</menus>
</MenuBar>
<HBox spacing="8.0">
<children>
<TextField promptText="ip" />
<TextField promptText="Username" />
<TextField promptText="Password" />
<Button mnemonicParsing="false" onMouseClicked="#loginButtonClicked" prefHeight="27.0" prefWidth="68.0" text="Login" />
<Region HBox.hgrow="ALWAYS" />
<Button mnemonicParsing="false" onMouseClicked="#settingsButtonClicked" text="Settings" />
</children>
<padding>
<Insets bottom="8.0" left="8.0" right="8.0" top="8.0" />
</padding>
</HBox>
</children>
</VBox>
</top>
<left>
<TreeView prefHeight="200.0" prefWidth="200.0" BorderPane.alignment="CENTER" />
</left>
<center>
<TextArea prefHeight="200.0" prefWidth="200.0" BorderPane.alignment="CENTER" />
</center>
<bottom>
<HBox BorderPane.alignment="CENTER">
<children>
<Label text="Label" />
</children>
<padding>
<Insets bottom="2.0" left="2.0" right="2.0" top="2.0" />
</padding>
</HBox>
</bottom>
</BorderPane>Advertisement:
You can add functions into your controller class
package sample;
public class Controller {
public void loginButtonClicked(){
System.out.println("Login");
}
public void settingsButtonClicked(){
System.out.println("Settings");
}
}Instaling Gluon JavaFX Templates
Close your test project and create a new project, but before you do click Configure then Plugins
Now lets open In the following screen click Browse Repositories.
Search the repository for and install the “Gluon” plugin
Restart IntelliJ IDEA IDE then you can use templates when creating a project.
Get your own VM
If you have not read my previous posts I have now moved my blog etc to the awesome UpCloud host. Sign up using this link to get $25 free credit.
Packaging a Java app for distribution on OSX
I will show how you can package your app to run on a Mac by using this.
Coming Soon
I will add more guides soon on using a custom JavaFx app to allow you to manage your own UpCloud server and perform Deploy/Init/Setup/Configure/Operate actions. Running CLI commands to deploy and manage a server is fun but is very tedious.
I blogged recently about using the UpCloud API and setting up a subdomain recently (I will use this server to test and prove the Javmanagementnt app).
Advertisement:
Links
- Official Javafx examples
- Official Java learning paths.
- Javafx examples at javacodegeeks.com
- Java widgets
- Reddit JavaHelp
- Jenkov Tutorials
I hope this guide helps someone.
Ask a question or recommend an article
Revision History
V1.6 Jenkov Tutorials
V1.5 Reddit java help
V1.4 added java widgets link
V1.3 added javafx examples link.
V1.2 added Java learning paths
V1.1 added offical Javafx examples
v1.0 Initial post
Write your first Java GUI app
Here is a quick guide that shows how you can create and compile your first Java app with Net Beans.
Advertisement:
I have a number of guides on moving hasting away form CPanel, Setting up VM’s on AWS, Vultr or Digital Ocean along with installing and managing WordPress from the command line. Updating the serves is a pain so I am writing a java app for Windows and OSX to help me manage the server by telnetting in on port 22 and performing routine actions from a button click in Java.
Installing Java and NetBeans IDE
Goto https://netbeans.org/downloads/index.html and click “JDK with NetBeans IDE Java SE bundle”
Download Netbeans and Java SE bundle
Install Netbeans and Java SE bundle
Creating your first GUI Java Application
Create New Project (Java Application) in NetBeans, Click Next
Name the project and set the main class as “main”
Add a new file, a “Swing GUI Form/JFrame form“.
Name the J Frame Form and click Finish.
Adding GUI elements in NetBeans IDE
In the Net Beans IDE, you can simply drag and drop elements. I like to move my properties screen to the bottom centre.
Set the panel at the default startup element
Add the following code to the main.java file
> framemain form = new framemain();
> form.setVisible(true);
Compile the App
The app compiles 🙂
Add an action to a button
You can add button actions (events) in the design mode.
Add Hello World alert box code to the button
Add the following to the Panel code file
> public static void infoBox(String infoMessage, String titleBar)
> {
> JOptionPane.showMessageDialog(null, infoMessage, “InfoBox: ” + titleBar, JOptionPane.INFORMATION_MESSAGE);
> }
Add this to the action (event)
System.out.println(“Hello World”);
> frame1.infoBox(“Hello World”, “Hello World”);
Build
To build right-click on the project and click Clean and Build
The result is an app you can run by double-clicking the jar file.
I hope this helps someone.
Making an OSX APP file from the JAR file
Coming soon
Making a Windows EXE file from the JAR file
Coming soon
I hope this guide helps someone.
Ask a question or recommend an article
Revision History
v1.0 Initial post
How to start-up (flesh out) an app idea
How do you start up a project idea? How much time and effort do you put into product planning, prototyping, product development and product support?
Advertisement:
Below is a rough guide to how you should start up a project (exec summary: start with defining the problem(s) and solution(s)).
I have blogged about app workflow here (mostly for public apps).
Choose a Methodology
Early on you should choose a project management methodology, Agile is a popular (no lock-in) methodology compared to the older/less-flexible Waterfall or PRINCE2 methodologies.
I am a fan of the Agile methodology as it allows for inevitable frequent and required pivots over the more rigid locked down methodologies of the past.
Agile Software Development Manifesto
- Individuals and interactions over processes and tools
- Working software over comprehensive documentation
- Customer collaboration over contract negotiation
- Responding to change over following a plan
Agile Methodology and Practices (Stages)
1. Inception Phase
- Form Initial Team (Stakeholders)
- Develop Common Project Vision (What is the problem)
- Align with Enterprise Direction (Integrate where possible)
- Explore Initial Scope (MoSCoW Method)
- Identify Initial Technical Strategy (testing, draft, final, support)
- Develop Initial Release Plan (Goals)
- Form Work Environment (remote, onsite etc)
- Secure Funding (after whiteboarding)
- Identify Risks (what if…)
2. Construction Phase
- Produce Potentially Consumable Solution (Minimum Viable Product/Minimum Value)
- Address Changing Stakeholder Needs (Pivot)
- Move Closer to Deployable Release (Iterate)
- Improve Quality (Measure)
- Prove Architecture Early (Test)
3. Transition Phase
- Ensure Solution Is Consumable (Signoff)
- Deploy Solution (Test and Deploy)
4. Ongoing Goals
- Fulfill Project Mission (Complete Must-have backlog)
- Grow Team Members
- Address Risk
- Improve Team Process and Environment
- Leverage/Enhance Existing Infrastructure
First, you will need to define the problem(s)
First, decide on what the problem(s) are and are aiming to solve? After the problem(s) are known you can discuss and validate possible solutions before any coding is done (billed). The business requirement will drive the technical requirements/directions,.
Letting technology goals drive the project is a bad idea. Why do you need XYZ? Is an app required after all? Does an “off the shelf solution” exist already? Can existing processes or software be tweaked?
You will need stakeholders (or stakeholder proxies)
Choose customer stakeholders (or customer proxies) that are engaged and positive, build a team of about 5 people who can drive the decisions and who understand the problems. Involve key stakeholders early and capture problems in a formal setting
- Identify the stakeholders and establish a team
- Document the problems (as it is and not how it should be)
- Identify and specify improvement points
- Plan solutions and Iterate
Improving a process or product should be measurable and agreed. The main aim of a customer/stakeholder is to create validated user stories that define the problem(s) and solution(s) from the end users perspective.
Example user story formats (snip)
- As a <role>, I want <capability> so that <receive benefit>
- In order to <receive benefit> as a <role>, I want <goal/desire>
- As a <role>, I want <goal/desire>
- As <persona>, I want <what?> so that <why?>
- etc
Whiteboarding
Whiteboarding is a great way to get everyone on board (and on the same page). One person may assume that something is a certain way but another person from the trenches may say it is not the case at all. It is key that problems reported lower down the managerial structure are listen to and be valued. Accept any problems and add them to the backlog (prioritizing comes later).
Whiteboarding should build a backlog of ideas and common understanding of what the landscape of issues are. I use a tool called Mind Node from https://mindnode.com/ to map things electronically. Within minutes you can have a map of connected or not connected areas of interest.
Backlog
A backlog is a place where you can document issues and break issues down into tasks. I have blogged before about Developing software and staying on track. You can use software like Trello, JIRA or Excel or notepad.
Backlogs should have crazy ideas and things that will never be developed. Agile development iterations should only pick the best items to work on.
Trello offers basic shared lists management
Jira offers a more complex Agile backlog management suite
Mockup Prototypes
It is important that you develop validate ideas with on device/screen with mockups/prototypes before coding something.
I use Platforma web and Platforma mobile prototyping tools with Adobe XD to prototype before development.
Agile Terminology in Backlogs
Whiteboarding and Backlogs can allow you to capture Epics, Stories and Tasks. Once tasks are prioritized they can be picked up and complete in Agile work sprints.
- Epics are the bigger user deliverable objectives like a “usable web-based solution”, “usable iOS mobile app”, “user Android Mobile app” or other long-term objectives.
- Stories are smaller things like “deliver back-end server infrastructure”, “Deploy a working prototype of feature X”, “Build an API (Application Programmer Interface)”. A user story can usually be completed in 2 weeks.
- Tasks are often subtasks to stories and can be done quite quickly. A task could be “Change the colour scheme”, “Set up a testing environment” or “Deploy the alpha release”.
Prioritize the Backlog Often
Prioritize items in the backlog often using the MoSCoW Method.
- Must-Have
- Should Have
- Could Have
- Won’t Have
Do not work on won’t have and focus on Must-Haves first.
Define the Solution and Minimum Success Criteria
The following graphic is well known within the Project Management community.
How would you feel as the customer knowing that you have not been understood and that you may not get what you need?
How would you feel as the developer not knowing fully what you need to deliver?
No one likes to double back or waste time and resources unnecessarily. Define and plan early. “Failing to plan is planning to fail.” Benjamin Franklin
Technology Requirements
The backlog will drive the requirements; e.g:
- mobile app or web app
- type of technology needed
- the location and number of servers
- number of prototypes
- scalability and redundancy
Knowing the requirements drives the technology. Technology drives the work and the budget.
TIP: Be wary of contractors that quote before listening to your full requirements. I was once told by a contractor that their main job was to “Con” “and Insult” you. If you accept a quote before saying what you need is a guarantee that you are paying a load of profit.
Now What
If you have defined the problem well, have good user stories and validated with stakeholders you are on the right path.
Be prepared to pivot and set frequent milestones to launch value (RERO).
Obviously centralised web-based technology is easily updatable compared to compiled and distributed mobile apps so choosing the right technology early is key to success.
Security and Quality
This is the project triangle where you can choose two sides (not three)
Quality is a given so you must choose that, the other given is secure in my opinion. I have blogged before about securing Ubuntu in the cloud (checklist), running security audits, installing WordPress WordFence Firewalls and WordPress Anti Malware plugins along with updating OpenSSL and applying kernel patches to protect against Spectre and Meltdown securing issues. Supporting an app is serious stuff and often deployment is the start of the real work.
Maintenance
Will you need to recompile apps to meet iOS or Android requirements?
How often will you release updates? What percentage of devices do you want to reach?
What “service level” will you set for concurrent users, uptime and failover? What priority will you give to backups and snapshots of the environment in case you need to restore to a previous state?
Past Lesson learned
Obviously, the larger the project and higher levels of storage/reliability/security the more checks and balances need to happen.
The Australian Bureau of Statistics contracted IBM to handle the Australian online census in 2016 and the major failure and report into what the identified problems were was an interesting read.
- The ABS website was pulled down on the night of the study, with it then being unavailable for about 40 hours.
- The ABS is judged to have failed to communicate with the public properly about major
- IBM is deemed to have failed to properly test its disaster recovery processes
- IBM had failed to properly plan for how to bring systems back up again.
- IBM’s failure to have tested a router restart, or have a backup synchronised and in place, appears to have been significant contributing factors to the failure of the eCensus
- In his report, meanwhile, Mr MacGibbon also found that the long-term, almost exclusive, relationship between the ABS and IBM had contributed to the problems by meaning any external questioning or oversight was absent.
- Read more about the report.
As a minimum, you should plan and discuss early on about the performance, reliability and uptime targets for any app. Personally I have moved between multiple cloud providers (CloudAnt, Digital Ocean, AWS and Vultr) to comfortably meet cost v performance (each app WILL have different requirements)
Type of app
The type of app (Web, Desktop, Mobile) you will need will come after discussing the problem, focus on the problem(s) and not the solution(s).
Conclusion
Do’s
- Keep Source ownership and IP (never let contractors own the code or processes)
- Insist on frequent handover often
- Do plan for updated version with major OS releases
- Do secure the app
- Do plan for maintenance of the app.
Don’t
- Lock into expensive maintenance contracts.
- Ensure the vendor is passionate about solving your problem and not the invoice they will submit.
- etc
I hope this guide helps someone.
More Reading
Making your first cross-platform mobile app
Making your first cross-platform app with Electron
Ask a question or recommend an article
Revision History
v1.1 added More Reading
v1.0 Initial post
Building your first app on Heroku
Below is my blog post on setting up a hello world app on Heroku that is powered by a database (e.g Client requests a page, the page reads a database and return hello world).
Advertisement:
I found IBM/Cloudant would cost multiple thousands a month to run a good NoSQL database backend, I moved to a self-managed server on Digital Ocean in Singapore but the distance of the server killed latency and maximum throughput in Australia. I moved to a dedicated AWS EC2 instance with a Mongo DB cluster on AWS in Australia and it was great but pricey. A self-managed server (on Digital Ocean or Vultr) allows you to install whatever you want (e.g PHP, MySQL, MongoDB, Redis, SSL Certificate, Mail or WordPress) and configure what you want (but at what cost?).
Heroku say: “Get straight to building apps – Setting up, operating and maintaining your own platform is not where the race is won. Avoid the risk and complexity, and dedicate your energy to what really matters: building great apps.”.
Having setup serves on IBM Cloudant, Digital Ocean, AWS and Vultr (and even managing with RunCoud and Webmin) and not focusing on a self-managed server-issues like security, backup, security audits, upgrading PHP, updating ssl, setting up distributed mysql, updating https certificates etc sounds like the holy grail.
Let’s put that to the tets and build a Hello World App.
About Heroku
Heroku have a page here about what they offer.
Sign up for Free: https://signup.heroku.com
Programming Languages (Ruby, PHP, Python, NodeJS, Java, Cloujure, Scala, Go etc). I so wanted to select “I’m not a developer” but I won’t. I selected NodeJS.
Next: Verify your email, enter a password and you’ll find yourself here.
Now we can create an app?
Help
Ok, let’s skim the NodeJS help before we start: https://devcenter.heroku.com/articles/getting-started-with-nodejs#set-up
Let’s download the Command Line tools
Installing Heroku CLI on OSX was uneventful
I clicked the “I have installed the Heroku CLI” button.
Heroku wanted me to clone a repo but I logged in to Heroku the Heroku CLI and created a local Heroku folder first (in my local Terminal).
I checked the Heroku Version
I checked Heroku Help
heroku --help Usage: heroku COMMAND Help topics, type heroku help TOPIC for more details: access manage user access to apps addons tools and services for developing, extending, and operating your app apps manage apps auth heroku authentication authorizations OAuth authorizations buildpacks manage the buildpacks for an app certs a topic for the ssl plugin ci run an application test suite on Heroku clients OAuth clients on the platform config manage app config vars container Use containers to build and deploy Heroku apps domains manage the domains for an app drains list all log drains features manage optional features git manage local git repository for app keys manage ssh keys labs experimental features local run heroku app locally logs display recent log output maintenance manage maintenance mode for an app members manage organization members notifications display notifications orgs manage organizations pg manage postgresql databases pipelines manage collections of apps in pipelines plugins manage plugins ps manage dynos (dynos, workers) redis manage heroku redis instances regions list available regions releases manage app releases run run a one-off process inside a Heroku dyno sessions OAuth sessions spaces manage heroku private spaces status status of the Heroku platform teams manage teams update update CLI webhooks setup HTTP notifications of app activity
I ran the advised commands
At this point, I followed the steps at https://devcenter.heroku.com/articles/getting-started-with-nodejs#deploy-the-app
Ran
The website is up
Where is this app located
Traceroute times out but appears to be in the eastern United States (AWS).
Q1) Can I change to Sydney Australia?
Waiting for an answer from Twitter.
Virginia is a long way away.
It’s all good apart from on weak cipher (“TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa) WEAK (112)“).
A shodan scan of the IP reveals an open port 80 and 443 (as expected, nothing out of the ordinary)
Pushing Changes
I ran this to push the app.
I ran this to ensure the app was running
I ran this to open the app
This opened the apps URL in a browser.
A nice help page was pushed to my app.
I changed the contents of “node-js-getting-started/views/pages/index.ejs” and repushed.
It reported “Everything up-to-date“???
I tried to force a push (just in-case something on the server was changed)
???
Ok, let’s pull and see what’s new?
I edited “./index.js” and made the entry point “pages/index2.ejs” and tried to push and no luck.
I tried running push under sudo too (no luck)
Googling revealed I can go to https://dashboard.heroku.com/apps/YOUR-APP/deploy/heroku-gi and see what the issue is.
I logged into the app and could not find how to delete or edit it?
At this point, I would have just ssh’ed in and restarted the node process in pm2 or node on my own self-managed server and edited remote files locally in sublime on my local machine.
Personally, I like to know where files live and not delve into another designers management interface.
I’ll come back to this guide later until then I’ll stick with Digital Ocean or Vultr
Linking to your own Domain on Heroku
It looks like I can use custom domains via Namecheap to link a domain to a heroku app.
Or you can setup a domain sub domain to point to a heroku app with a DNS C Name record.
Database Setup
Todo..
Node talking to the database.
Todo..
App Cost on Heroku
todo: After Hello World is deployed. Digital Ocean (is as low as $5 a month) or Vultr (is as low as $2.5 a month)
Donate and make this blog better
Ask a question or recommend an article
Revision History
v1.4 added custom domain, database, CNAME info
etc
Using Adobe XD and Platforma Web Wireframe Kit to prototype an iOS app
I have blogged about using Adobe XD to prototype mobile apps. Recently, I found an attractive collection of ready to go Wireframe screens from Proforma to use alongside Apple UI Kit elements in Adobe XD
.Advertisement:
Check Out Platforma
Platforma has been in the industry for years providing developers with prototype products for Mobile, Web and HTML templates. Check out https://greatsimple.io/ for other prototyping products.
You can buy (or try) versions of Platforma at https://platforma.ws/#buy Below are screenshots from the Bundle version.
Performa has loads of ready to go samples screens that you can use in Adobe XD like..
- Start Screens
- Sign up Screens
- Walkthrough Screens
- Loading Screens
- Feed Screens
- Activity Screens
- Profiles Screens
- Posts Screens
- Chats Screens
- Contacts Screens
- Search Screens
- Lists Screens
- Settings Screens
- Create Screens
- Catalog Screens
- Discover Screens
- Products Screens
- Shopping Carts
- Check Out Screens
- Filters Screens
- Navigation Screens
- Maps Screens
- About Screens
- Popovers Screens
- Photos Screens
- Media Screens
- Social Screens
- E-commerce Screens
- Charts and More (there are over 100 screens)
Adobe XD, Platforma and iOS Prototypes
The post below will focus on creating iOS prototypes using Adobe XD and Platforma Wireframe kits.
Other posts will focus on creating Android, and Web Prototypes etc. After you purchase Platforma, you can download a zip file (I have the bundle) containing all related design files.
Tip: Save your activation code if you eceive one.
Extract the Zip file.
Files are located in each products folder (I will focus on XD in iOS assets until I learn the others).
Adobe XD iOS assets are in two files.
You can now open either Platforma .xd file to view prototype elements available.
You may get a Fonts Missing dialogue (install the fonts and the error goes away).
fyi
- I downloaded Roboto font from here
- SF UI * font can be downloaded from here
- Apple San Francisco Font from here.
All font packs are free, the Apple San Francisco font needs you to run an install wizard, SF UI needs you to download and install TTF file from GitHub, Roboto needs you to double-click on a number of TTF files to install them in your fonts library.
The fonts are now installed (verified in my fonts app on OSX).
I am now free to open the iOS “Platforma for iOS – Categories.xd” file that came from Proforma.
Performa iOS Categories (Zoomed Out)
Oh my, there are loads of sample screens and elements you can use in an app prototype (I’d count them but I’d be here all day, I had to zoom out to 2.5% to see them all).
Now time to open the second file (“Platforma for iOS – Demos.xd”)
Performa iOS Categories (Zoomed In on Maps)
I had a look at the sample “Maps” screens and they are amazing.
Performa iOS Demos (Zoomed Out)
Here is a complete zoomed out view of the “Platforma for iOS – Demos.xd” file.
Performa iOS Demos (Zoomed in on Social Samples)
Here is a sample of some of the screens in the Social category in the “Platforma for iOS – Demos.xd” file.
Let’s Start an App Prototype in Adobe XD
I open the “./Platforma for iOS/XD/Platforma for IOS/Platforma for iOS – Categories.xd” and “./Platforma for iOS/XD/Platforma for iOS – Demos.xd” xd files that you downloaded from https://platforma.ws/
Also, start a new iOS blank project in Adobe XD.
I positioned windows so I could see all Adobe XD projects.
Tip: If you are using the Apple iOS (or Android etc) UI components then you can open them too (see my Adobe XD guide to see how to get the oficial iOS controls from Apple).
Personally, I would suggest before you start prototyping that you have a “validated list” of things that you want to prototype (if you are designing a prototype for a client then ask them what they want). Check out the awesome http://joinagile.com/lean-and-mean-agile-podcast/ for tips on Collecting, grooming, prioritizing app tasks. Don’t waste time developing unwanted features. Manage tasks around Outcomes and not tasks. I have blogged about developing software and staying on track and how to get feedback for your ideas.
Also, I have a so you have an idea for an app graphic and blog posts on Atlaz.io BETA Project Management Tool For Cross-Functional Teams the Trello and Atlassian JIRA Killer? and How to develop software ideas. I would suggest you listen to the Lean and Mean Agile Podcast to get extra product backlog grooming, prioritization tips etc.
TIP: I use the MoSCoW method for capturing and prioritizing tasks.
- snip from: https://en.wikipedia.org/wiki/MoSCoW_method
- Must have
- Requirements labelled as Must have are critical to the current delivery timebox in order for it to be a success? If even one Must have requirement is not included, the project delivery should be considered a failure (note: requirements can be downgraded from Must have, by agreement with all relevant stakeholders; for example, when new requirements are deemed more important). MUST can also be considered an acronym for the Minimum Usable Subset.
- Should have
- Requirements labelled as Should have are important but not necessary for delivery in the current delivery timebox. While Should have requirements can be as important as Must have, they are often not as time-critical or there may be another way to satisfy the requirement so that it can be held back until a future delivery timebox.
- Could have
- Requirements labelled as Could have are desirable but not necessary, and could improve user experience or customer satisfaction for little development cost? These will typically be included if time and resources permit.
- Won’t have (this time)
- Requirements labelled as Won’t have been agreed by stakeholders as the least-critical, lowest-payback items, or not appropriate at that time. As a result, Won’t have requirements are not planned into the schedule for the next delivery timebox. Won’t have requirements are either dropped or reconsidered for inclusion in a later timebox. (Note: occasionally the term Would like to have is used; however, that usage is incorrect, as this last priority is clearly stating something is outside the scope of delivery).
end snip.
Starting your Prototype in Adobe XD
Based on your MoSCoW list you can (I do) create empty screens ( I usually add a label in the top left indicating the screens MoSCoW status so I can prototype needed features now and start planning future versions later from the one prototype file). I am not a big fan of using multiple app prototype files.
Now you can copy and paste in example screens over the empty screens.
Within minutes you can have a nice mockup of your app using Adobe XD and Platforma assets.
Drag as needed, change as needed.
Customizing sample screens
Of course, you can edit the sample screens and rename, add, remove or change individual items in Adobe XD (Nice work Platforma/Adobe). Ignore the Yellow “Should Have” on the screen below, it looks out of place but I get in the habit of adding a floating “Must Have”, “Should Have”, “Could Have” and Won’t Have” labels to screens.
Preview
You can preview the rough prototype in Adobe XD on your desktop or on a real mobile device.
Don’t forget to wire up screens to generally goto and return to the main screen.
Or you can wire up individual screen elements to go to different screens. You will need to be in Prototype mode in XD first.
If you saved to the Adobe Cloud you can now open the prototype app on the Adobe XD app on a mobile device (or simulate it in Adobe XD on the desktop). Open Adobe XD on your mobile device and open your project from your Adobe Creative Cloud folder.
You can now view fabulous looking application prototypes on a mobile device screen with minimal invested time and effort.
Conclusion
I am very impressed with the https://platforma.ws Wireframe Kit, I’d strongly recommend app developers buy a copy and use the pre-setup templates look impressive and will save you loads of time (no more messing with UI Kits to make app prototypes look good). I can’t wait to check out and review the other assets in the Full Platforma Bundle.
Read More
Still reading?
Read: Quick guide to using Adobe XD CC to design a prototype iOS app.
More to come.
Donate and make this blog better
Ask a question or recommend an article
Revision History
v1.0 Initial Post
etc
Installing Android Studio 3 and creating your first Kotlin Android App
Below is my quick post showing how you can create your own Hello World Android app using the new Kotlin language on OSX. More will be added to this blog post over time.
Advertisement:
What is Kotlin
Kotlin is a statically-typed programming language that runs on Java Virtual Machines (the syntax is not compatible with Java but interoperates with it). Kotlin is Google’s default language for deveAndroid Android Apps.Kotlin is now the offimoremorecial language supported by Google for Android development. Kotlin v JAVA: http://androiddeveloper.galileo.edu/2017/10/16/kotlin-vs-java-what-is-the-difference/
The official Kotlin language page can be found here: https://kotlinlang.org/ (Wikipedia has a page here).
Kotlin has a “Try Kotlin” page here ( https://try.kotlinlang.org/ ) where you can the language out in a browser. Android Studio 3 is the latest IDE from Google that allows you to develop apps in JAVA pr Kotlin for Android.
Learn Kotkin: Hello World Demo
Kotlin Hello World Code:
/**
* We declare a package-level function main which returns Unit and takes
* an Array of strings as a parameter. Note that semicolons are optional.
*/
fun main(args: Array<String>) {
println("Hello, world!")
}fyi: Other Kotlin Code Examples:
- Reading a name from the command line
- Multi-Language Hello World
- Object-Oriented Hello World
- Using a For Loop
- Using a While Loop
- Sum
- Strings
- Data Classes
- Properties
- Etc
Kotlin Language Reference: http://kotlinlang.org/docs/reference/
Tutorials: http://kotlinlang.org/docs/tutorials/
Books: http://kotlinlang.org/docs/books.html
More Resources: http://kotlinlang.org/docs/resources.html
Installing Android Studio on OSX
You will need to install the latest Android Studio 3 IDE from the link below. This will allow you to download the latest Android SDK, Android Emulator, tools and Documentation from Google.
Download Android Studio from here: https://developer.android.com/studio/index.html?utm_source=android-studio
You should now have a 750MB (or there about’s) file (called something like android-studio-ide-171.4408382-mac.dmg )
You are now ready to run the setup dmg and install the app.
“Replace” Earlier Versions (if you had 1.x or 2.x installed)
You may be asked to choose the default Android emulator ram size
Congratulations, Android Studio 3 should now be installed
Congratulations you now have the Android Studio 3 IDE Installed.
Android Studio Tips and Tricks: https://medium.com/@mmbialas/50-android-studio-tips-tricks-resources-you-should-be-familiar-with-as-an-android-developer-af86e7cf56d2
Android Studio 3 User Guide: https://developer.android.com/studio/intro/index.html
Official getting started guide: https://developer.android.com/training/basics/firstapp/index.html
Setting Android Studio Defaults
Don’t forget to download updates and set auto updates “to enabled” in the Android Studio preferences screen.
Goto the “SDK Manager” menu item under the “Tools” then “Android” menu.
You can Download additional Android SDK versions, updates and emulator environments. I would recommend you pre-download the Android 3.x to 8.x environments.
You can also download and create Emulated Android Devices in the Android Virtual Device (AVD) Manager menu.
You can choose an existing Android Device (emulated)
Create Your Own Virtual Device
You can also create your own Android virtual device (Emulated) for testing.
I have a physical Huawei Mate 9 device (for physical testing), I will set up a similar virtual device (but stick with 2GB ram instead of 4GB as my development Mac only has 8GB total ram).
You can choose an emulators device skin if you so desire. Many phone skins can be found online (e.g here, here and here). Samsung Developer page has a skins page here. Managing AVD user guide here: https://developer.android.com/studio/run/managing-avds.html. I don’t use emulator device skins as this uses much-needed memory and screen real estate.
When you are done configuring your virtual device image you may be prompted to download missing images (e.g in my case I need to download API 27/ Android 7.1.1).
Physical Device Setup (Enable Developer Mode)
You should always code on physical devices where possible (emulators are ok but have a handful of physical devices on hand to test on). I find the emulator crashes a lot on me.
How to enable developer mode on a physical Android device: https://developer.android.com/studio/debug/dev-options.html. When you have enabled developer mode you can enable advanced developer options (I like these options).
When you have a physical Android device setup and connected, you can choose to run the app on the physical device.
Creating Your first Hello World Kotlin Project
By now you will have Android Studio 3 installed, Configured Updates, Configured an Emulator device and hopefully a real test device. Now you can open Android Studio and select.
1. “Start a New Android Studio Project”
2. Name your project (e.g “My Kotlin Test App 001”)
3. Ensure your company name is unique (e.g “com.fearby.testgithub001android”
4. Tick “Include Kotlin Support” (not ticked by default).
5. Click “Next“.
6.You will need to choose the minimum API and Android version to support. If you choose a new API you may limit the potential users that can run your app and if choose an old API you will limit the potential features. In my case, I will choose 7.0 for my test project (but will choose 4.1 in public apps). Click “Help me choose” to see the percentage of users and features in each API version.
7. Clik “Next”
8. Choose “Empty Activity” and click “Next“.
9. Take note of Activity name of “MainActivity” and Layout Name of “activity_main” and click “Finish“.
Now that you have a new project you can start Emulatorkator (Tools, Android, AVD Manager then press Play next to your emulator of choice).
10. Now click Run and choose the Emulator to start.
Before we add a button to the test app, let’s add a Anko dependency to the project ( https://github.com/Kotlin/anko ) to make coding easier.
11. Open your “app/Gradle Scripts/build.gradle (Module: app)” node in the Android Project treeview.
12. View add the following line to the dependencies section (refer to https://github.com/Kotlin/anko and replace “0.10.2” with the version listed at thGitHubub site). Then click “Sync Now”.
// Anko Commons compile "org.jetbrains.anko:anko-commons:0.10.2"
13. Goto “app/res/layout/activity_main.xml” (1) and add a button to the layout (2) and name the button (3)
14. Goto “app/java/%projectname%/MainActivity” (1) and add the following two lines (2)(3) below.
Add the following at the top of “MainActivity”
import org.jetbrains.anko.toast
Add the following in the “onCreate” function (ensure your button name is the same as you called it).
buttonhello.setOnClickListener { toast ("Hello World (www.fearby.com)") }
15. You can now build and deploy the app to a device (or emulator, real devices are faster).
AAdd a Button to change activity screens
The official documentation on changing activity screens can be found here.
1. Rename the button from above from”Button” to ‘Hello World”
2. Add a new button can call it “buttonnextscreen” (set constraints if you wish to match the hello world button left and width).
3. Now you can add and a new target activity screen ( e.g Open your project in the treeview (1), select “New” (2), select “Activity” (3) and then choose the activity type you want (e.g “Empty Activity” (2) ).
4. Name the “Activity Name” and “Layout Name” and click “Next“.
More info on Kotlin fragments: https://www.raywenderlich.com/169885/android-fragments-tutorial-introduction-2
5. In “MainActivity.kx” I edited the following (time to use Anko Intents and not just Anko toast )
//import org.jetbrains.anko.toast import org.jetbrains.anko.*
I also wired up the new “Next Activity” Button
buttonnextscreen.setOnClickListener {
startActivity(intentFor<NextActivity>().singleTop())
}Now you have wired up a button to change Activity Screens. The Android back button will fire the previous screen so there is no need to wire up a returning button (like on iOS).
This is the Next Activity screen that was called from a button (exciting eh).
Set and Read Textbox
After adding a textbox and button this is how I set and red text in a textbox control.
textbox.setText("Sample Text")
buttongettext.setOnClickListener{
toast(textbox.text.toString())
}
Create, Set and Read Local Class
I added a button (ID) called “buttoncreateclass” and setup a “setOnClickListener” (in onCreate) to create a class, fill it then output the data from the class to three textboxes (“textfirstname”, “textsurname” and “textage”)
class Person(val Firstname: String, val Surname: String, var Age: Int) {}
buttoncreateclass.setOnClickListener {
var cbob = Person("Bob", Surname = "Smith", Age = 41)
// Read
textfirstname.setText("Firstname: " + cbob.Firstname.toString())
textsurname.setText( "Surnmae: " + cbob.Surname.toString())
textage.setText("Age: " + cbob.Age.toString())
}Adding Application Icons.
Read the official guidelines here: https://developer.android.com/studio/write/image-asset-studio.html
I use the free cions generator here: https://romannurik.github.io/AndroidAssetStudio/
Ensure you replace the following files (with your project closed)..
- res/mipmap-hdpi/ic_launcher_round.png (72 x 72 px)
- res/mipmap-hdpi/ic_launcher.png (72 x 72 px)
- res/mipmap-hdpi/ic_launcher_round.png (72 x 72 px)
- res/mipmap-hdpi/ic_launcher.png (72 x 72 px)
- res/mipmap-xhdpi/ic_launcher_round.png (96 x 96 px)
- res/mipmap-xhdpi/ic_launcher.png (96 x 96 px)
- res/mipmap-xxhdpi/ic_launcher_round.png (144 x 144 px)
- res/mipmap-xxhdpi/ic_launcher.png (144 x 144 px)
- res/mipmap-xxxhdpi/ic_launcher_round.png (192 x 192 px)
- res/mipmap-xxxhdpi/ic_launcher.png (192 x 192 px)
You may also need to remove the res/drawable XML files to prevents the automatically genrated im,ages from loading.
- DELETE: “res/drawable/ic_launcher_background.xls”
- DELETE: “res/drawable/ic_launcher_foreground.xls”
You may need to force a delete (Right Click then “Delete” then “OK” then “Delete Anyway“).
I had a number of errors related to removing references to the automatically generated images.
File “anydpi-v26/ic_launcher.xml” and “anydpi-v26/ic_launcher_round.xml” had this contents.
<?xml version="1.0" encoding="utf-8"?>
<adaptive-icon xmlns:android="http://schemas.android.com/apk/res/android">
<background android:drawable="@drawable/ic_launcher_background"/>
<foreground android:drawable="@drawable/ic_launcher_foreground"/>
</adaptive-icon>I replaced the contents of the file “anydpi-v26/ic_launcher.xml” and “anydpi-v26/ic_launcher_round.xml” with
<?xml version="1.0" encoding="utf-8"?>
<application>
android:icon="@mipmap/ic_launcher"
android:roundIcon="@mipmap/ic_launcher_round"
</application>
Then you will need to click the “Build” menu then “Clean Project” to remove references to the files.
“Build“, “Clean” results.
Executing tasks: [:app:assembleDebug] Configuration 'compile' in project ':app' is deprecated. Use 'implementation' instead. :app:preBuild UP-TO-DATE :app:preDebugBuild UP-TO-DATE :app:compileDebugAidl UP-TO-DATE :app:compileDebugRenderscript UP-TO-DATE :app:checkDebugManifest UP-TO-DATE :app:generateDebugBuildConfig UP-TO-DATE :app:generateDebugResValues UP-TO-DATE :app:generateDebugResources UP-TO-DATE :app:mergeDebugResources UP-TO-DATE :app:createDebugCompatibleScreenManifests UP-TO-DATE :app:processDebugManifest UP-TO-DATE :app:splitsDiscoveryTaskDebug UP-TO-DATE :app:processDebugResources UP-TO-DATE :app:compileDebugKotlin UP-TO-DATE :app:prepareLintJar UP-TO-DATE :app:generateDebugSources UP-TO-DATE :app:javaPreCompileDebug UP-TO-DATE :app:compileDebugJavaWithJavac UP-TO-DATE :app:compileDebugNdk NO-SOURCE :app:compileDebugSources UP-TO-DATE :app:mergeDebugShaders UP-TO-DATE :app:compileDebugShaders UP-TO-DATE :app:generateDebugAssets UP-TO-DATE :app:mergeDebugAssets UP-TO-DATE :app:transformClassesWithDexBuilderForDebug UP-TO-DATE :app:transformDexArchiveWithExternalLibsDexMergerForDebug UP-TO-DATE :app:transformDexArchiveWithDexMergerForDebug UP-TO-DATE :app:mergeDebugJniLibFolders UP-TO-DATE :app:transformNativeLibsWithMergeJniLibsForDebug UP-TO-DATE :app:processDebugJavaRes NO-SOURCE :app:transformResourcesWithMergeJavaResForDebug UP-TO-DATE :app:validateSigningDebug :app:packageDebug UP-TO-DATE :app:assembleDebug UP-TO-DATE BUILD SUCCESSFUL in 1s 26 actionable tasks: 1 executed, 25 up-to-date
Now you can build an APK with static icons (yes, that’s my face).
Read move on “realtime generated/adaptive” v “image” icons here: https://medium.com/@ianhlake/vectordrawable-adaptive-icons-3fed3d3205b5
Official guide on Adaptive Icons: https://developer.android.com/guide/practices/ui_guidelines/icon_design_adaptive.html
Displaying Alerts
Displaying a hard-coded option with Anko
alert("Coffee?", "Would you like another coffee?") {
yesButton { toast("OK, go and get a coffee.") }
noButton { toast("OK, go and get a glasss of water.") }
}.show()Displaying a list with options with Anko
val fruit = listOf("Apple", "Banana", "Mango")
selector("Go..", fruit, { dialogInterface, i ->
toast("Go: ${fruit[i]}.")
})Making Phone Calls, Sending Text, Browing the web and sending Emails
Anko has some cool helper methods to allow you to send and share content.
As long as you add the appropriate buttons, text fields you can add these button listeners.
override fun onCreate(savedInstanceState: Bundle?) {
...
buttonmainscreen.setOnClickListener {
startActivity(intentFor<MainActivity>().singleTop())
}
buttonmakeacall.setOnClickListener {
makeCall(textphonenumber.text.toString())
}
buttonsendatext.setOnClickListener {
sendSMS(phonenumber2.text.toString(), textsendthistext.text.toString())
}
buttonbrowsetheweb.setOnClickListener {
browse(texturl.text.toString())
}
buttonsharesometext.setOnClickListener {
share(textsharethis.text.toString(), textsharethis2.text.toString() )
}
buttonsendanemail.setOnClickListener {
email(textemail.text.toString(), textsubject.text.toString(), textbody.text.toString())
}
}Layout
Background Async Calls
You can call background calls and then invoke the UI thread when the call has returned.
buttondoasync.setOnClickListener {
fun runLongTask(): String {
Thread.sleep(3000)
return "Waited 3 seconds"
}
doAsync {
var result = runLongTask()
uiThread { toast(result) }
}
}App Manifest Permissions
Edit the file “app/src/mainAndroidManifest.xml” and add the following two lines above the “<applications” node
<uses-permission android:name="android.permission.ACCESS_NETWORK_STATE"/> <uses-permission android:name="android.permission.INTERNET"/>
View all permission options here: https://developer.android.com/reference/android/Manifest.permission.html
By default your app will not ask for permissions (unless you set them).
Downloading data from the Internet (API Endpoint)
Add the following to a button to make a anetwork call.
buttoncallapiinthebackground.setOnClickListener {
doAsync {
val result = URL("https://www.yoursite.com/api/yourappname/v1").readText()
uiThread {
longToast("Request performed: " + result)
}
}
}Example Result:
Request performed: {"API Status": "OK"]More soon.
Adding soon: Network (submit data).
Adding soon: Plan Sound.
Adding soon: Animations.
Adding soon: String Encryption.
Adding soon: Basic Security.
Updating your Android Studio IDE (do this often)
Don’t forget to download updates (and enable auto updates) in the Android Studio IDE. At the start of this draft blog post, I installed Android Studio 3.0 (Four hours later a large 1.3 GB sized update was available), I had to download many smaller updates too.
This is a frequent update that would not go away for me.
Copying the app to an Android Device.
Once you have enabled debug mode you can copy apps to and from the physical device. You can build an APK by going to the “Build” then “Build APK’s” menu and build the file to your project folder (e.g “/Users/simon/AndroidStudioProjects/MyKotlinTestApp001/app/build/outputs/apk/debug/app-debug.apk“). You can then copy this file to your Android device (via the Android File Transfer app) and you can now run the app anytime you want away from your Mac.
Also before you copy and unsigned apps to your test device tyoiu will need to enable developer mode then enable the running of apps from “unknown sources“.
If you have any security apps instaled like Sophos you will be told that yiour app has a low rating.
APK living on your device 🙂
The Android Studio also has a real device debugger.
Monitor output from a show stats from a real device
Android Security 101 (you need to know this)
You can define network configuration per these instructions: https://developer.android.com/training/articles/security-config.html
Coming from developing iOS and desktop apps I decided on researching the current state of Android Security. I would strongly suggest you watch this video from Marcos Placona ( https://twitter.com/marcos_placona Developer Evangelist @ Twilio).
Takeaway’s from this video
- Use Certificate Pinning with the library – http://square.github.io/okhttp/ in Android for network calls. Read my post on Beyond SSL with Content Security Policy, Public Key Pinning etc to set it up on a Vultr Server.
- Your app will be decompiled (with tools like Apktool) so don’t store passwords
- Use encryption for in-app strings.
- Read: https://androidsecurity.info/
- Storing your secure information in the NDK
- Check if your app is running on an emulator (is it being decompiled?)
- Check if your app is debuggable (has the manifests been changes)
- Never trust devices
- Check your apps certificate (has in been disassembled and recompiled)
- Consider using DexGuard Pro
- Use the Google SafetyNet API
- Test your devices with the Compatibility Test Suite from Google.
- Use environment variables or config files too laod API tokens etc.
- Monitor miss-use (attacks, break-ins or API hits) early.
My Suggestions
- Secure your Ubuntu server (info here and here).
- Use an HTTPS SSL Certificate
- Use Certificate Pinning
- Ask for app token/keys from your server and keep in memory.
- Use OAuth 2 to secure sessions
- Use short timeouts (or expire on use) on tokens with sensitive data.
- Call upstream objects form API to prevents client-side attacks.
Deploying your app to the Android/Google Play store
To publish an app to the Google Play store you will need to create a Google Play Developer Account, pay $25 USD and you are free to publish an app on the Google Play store. Read more here: https://play.google.com/apps/publish/
Publishing an app is as simple as filling in the blanks in the publish app screen.
Troubleshooting
- You will need a fast system with at least 8MB of ram (16GB is ideal).
- Apple XCode users will find Android Studio 3 slow and unstable (so backup your project often).
- Building apps take a long time so be prepared to wait for build and deploys to devices.
- Update warnings are aplenty, get used to them.
Read More
Kotlin Community: http://kotlinlang.org/community/
Android Studio ~ Android Central Blog: https://www.androidcentral.com/tag/android-studio
Huawei Developer Page: http://developer.huawei.com/en/
Samsung tips on using Android Studio: http://developer.samsung.com/galaxy/emulator-skin/guide#tips
Create a custom emulator skin https://developer.android.com/studio/run/managing-avds.html#skins
Follow Android Dev on Twitter: https://www.twitter.com/AndroidDev
Read: https://androidsecurity.info/
An Introduction to Kotlin: https://code.tutsplus.com/tutorials/an-introduction-to-kotlin–cms-24051
Reddit: https://www.reddit.com/r/androiddev/
Create Non XML based layouts (with ANKO):
Kotlin v JAVA: http://androiddeveloper.galileo.edu/2017/10/16/kotlin-vs-java-what-is-the-difference/
Read more about Android Studio 3: http://www.technoblogpost.com/android-studio-3-0/
Jetbrains Android Studio Guidelines: https://www.jetbrains.com/help/idea/2016.2/general-guidelines.html
Donate and make this blog better
Ask a question or recommend an article
v1.57 added Async calls, app icon, misc screenshots, Anko alert, email, sms, share code, permissions, network download etc.
Infographic: So you have an idea for an app
I created this graphic as I was asked by multiple people how to develop an app. This does not include tips on coding but many people with the non-technical prerequisites to building an app.
Advertisement:
I hope this graphic helps someone (It’s my first infographic/decision flow image, feedback welcome).
So You Have an Idea For An App: Graphic
Click for larger version.
Standalone Image URL’s
v1.3 (22nd November 2017) https://fearby.com/wp-content/uploads/2017/10/Infographic-So-you-have-an-idea-for-an-app-v1-3.jpg v1.2 (4th Nov 2017, Added requirements and MoSCoW): https://fearby.com/wp-content/uploads/2017/10/Infographic-So-you-have-an-idea-for-an-app-v1-2.jpg v1.1 (1st Nov 2017, Fixed Typos): https://fearby.com/wp-content/uploads/2017/10/Infographic-So-you-have-an-idea-for-an-app-v1-1.jpg todo: Things to add Issues to fix in 1.4: - Add user personas and Epic, Story and Task stages. - How to capture good stories (and validated ideas (landing pages/interviews/problems/value/painpoints)
Define the problem(s) (pain points)
Before you start coding, do list your app requirements (problem’s to solve (pain points)).
Atlassian JIRA or Trello can help with this. I personally use (and like) Atlaz.io (now Hygger), I reviewed the BETA here).
Using Trello lists are also a simple way to capture tasks/ideas.
More on these Read more here also read my Atlaz.io BETA Preview here.
Nothing beats pen and paper too.
Moscow Prioritization
Must-Have Should-Have, Could-Have and Won’t-have are buckets you should sort ideas into. If you have trouble moving items away from Must to Should, Could or Won’t then assign a fictitious monetary value to spend on each item and that will help you decide what is more important.
Read this MoSCoW Method article at Wikipedia: https://en.wikipedia.org/wiki/MoSCoW_method
Managing MoSCoW tasks on paper is OK if you do not want to use planning software.
More
Read my guide on how to prototype apps with Adobe XD guide here. You can also Prototype a Web app with Platforma (review here).
Read my post on how to develop software and stay on track.
Research
Do research your idea for market fit/need, competition, complexity, legal and validate ideas early. It’s best to find out early that Google will quote $60,000+ TAX a year to allow you to use Google map’s in your app early, then you can use https://www.mapbox.com for $499 a year.
Do you have competition?
Some people say “don’t develop an app that already exists”. Why would you develop a new Uber app? Henry Ford did make a new transportation mode when people were happy with horses, other car manufacturers like Tesla are moving in on the space so don’t be discouraged.
Landing Page
A landing page with a signup form (Newsletter and Register Interest) form is a good way to validate ideas and get feedback early (I would suggest you use a free Mainchimp signup form, a generated website with Platforma on a $5/m server for quick results). There is no point coding and launching to crickets.
Do you have an app Prototype or Mock-Up?
This is very important and easy step. Programs like Adobe XD CC (read my guide here) and Balsamiq can help you prototype an app, Platforma can help you prototype web apps.
Have you validated your idea (app) with end users?
If you don’t do this you are mad. Watch this video to see lessons learned from Trades Cloud.
Is this app idea a hobby (passion)?
This can help you limit costs and expectations. Cheap serves exist (read here and here).
Do you have time to develop/manage this?
Developing and managing an app and planning (paying for) development cycle can be time-consuming and mentally draining.
Can you code?
Do you need to hire developers or learn to code? Blog post coming soon on how to hire coders.
Do you have funds?
Having funds on hand to set up and build an app is very important.
Do you want to hide developers (or get Venture Capital)?
This can help you get moving but you will have to give away a slice of the profits and or IP, managing mentors and VC’s can be tiresome.
Have you set failure criteria (post-mortem)?
Read this page on lessons learned from over 200 startup failures, save your favourites. Having realistic goals and limits is a wise idea, do stop when you reach preset limits.
Do you have a business case?
There are plenty of business case generator template, you will want to document some of the following.
- What is your apps Purpose – App X will be..
- What is your Mission Statement – App X will..
- Who are your Target Customers – Retail..
- Who are the Early Adopters – Retail..
- What Problems does your app solve – App X will..
- What Milestones will your app go through – iOS, Android, Apple TV, Web etc..
- What Existing solutions exist – App: A, B and C..
- How does your app Solve your customer’s problems (pain points) – App X will..
- How will your app Find customers – Word of Mouth, Referrals, Advertisements?
- What is your Revenue model – Sales, Ad’s, Subscriptions?
- What is your apps Goal statement – App X will hit X users in X?
- What are your apps Failure points – If app X does not reach X or monthly costs reach Y….
- What is your Marketing message – App X will..
- What is your apps Metrics – iOS, Android, Apple TV apps..
- What is your Unfair Advantage – Why will you succeed over others?
Are you using a project management methodology?
Proven Methodology can help you develop software and stay on track, software like Atlaz, JIRA or Trello are highly recommended tools. Capturing ideas and processing feedback in tools is very important.
Before you code (or hire coders) use source code versioning software like GitHub and Bitbucket (guides here and here). You want to retain the code and insist on owning it.
Product Goal
Simon Sinek has a good video on companies (or Products) being in a finite or infinite game.
Are you in full control of your development stack?
If you are not a developer you may not care if you are in control, but you will if there are issues with hired developers or issues with service providers. I moved from CPanel to self-managed servers, moved from IBM Cloudant to Digital Ocean to AWS then Vultr servers where I can have full control or scalability, features, security and costs.
Can you forecast the costs?
Lowering cost and boosting performance is important and having spare money is a good thing.
I read recently that Telsla is burning through $6,000 a minute and is forecast to need something like 2 billion dollars in the next 2 years. Software as Service platforms will drain your budget quick (they do take on some risk and maintenance tasks), is this worth it?
Mark Fedin (CEO and Co-founder at Atlaz) has a great post on the topic of viability Stop Dabbling At Startups .
Are you using the right tech?
Don’t be afraid of changing tech along the way, you may start with MySQL and move to MongoDB, Redis, Oracle ot MSSQL database servers etc.
Do you have systems to capture customer feedback?
Self-explanatory, you are solving customer problems, right? You will pivot in the first year (trust me).
What is your revenue/sales model?
If you don’t know how to make money then don’t make an app (apps are expensive to code and maintain).
Are you prioritizing task?
I have blogged about this before, do use the tools to stay on track.
Funny Bit
Donate and make this blog better
Ask a question or recommend an article
v1.5 Fixed typos and fixed CDN link issue.
v1.4 Updated the graphic to version v1.3.
Short (Article): https://fearby.com/go2/so/
Short (Image): https://fearby.com/go2/so-img/