CRUD Script and SSMS Toolkit

Using stored procedures in your Data Access code from ASP.Net applications stops most (not all) SQL Injection Attacks and also ensure that the query is executed with the same parameters in the same order and format each time allowing the query optimizer to use the same query plan on subsequent executions.  So it makes good …

CRUD Script and SSMS Toolkit Read More »

Custom Errors Series: Part 1 – What is an Exception

What is an Exception An Exception is the object class that is created by .Net when an error or unexpected state is encountered while executing application code.  All Exceptions inherit from the System.Exception class.  The Exception object that is created when an error occurs contains error details including the stack trace and potentially any underlying …

Custom Errors Series: Part 1 – What is an Exception Read More »

Story Points Estimation

When planning an agile project creating User Stories and estimating their complexity is an important step to provide your customer and delivery team with a clear understanding of the solution being developed.  Estimating the complexity of a User Story is something typically done by a Product Owner after or during a meeting with a customer …

Story Points Estimation Read More »

Layered Cake

Slicing User Stories Method 7

Slicing by Roles User stories often involves a number of roles (or groups) that performs parts of that functionality. Take a user story to publish new articles to a public newspaper website: As news organization I want to publish new articles on our homepage, so customers have a reason to return periodically By considering the …

Slicing User Stories Method 7 Read More »

Scrum Ceremonies Dont just hit the bullet points! (Rant)

Are your Daily Standups and Sprint Retrospectives taking too long? Do important stakeholders frequently skip your meetings? Do team members question the value of your Standups and Retros? It may be time to reevaluate the priorities of your daily standup and retrospectives. Don’t just hit the bullet points! A retrospective is not just about what you did yesterday …

Scrum Ceremonies Dont just hit the bullet points! (Rant) Read More »

Layered Cake

Slicing User Stories Method 6

Slicing by CRUD or ISUD (AKA Slicing by Operations) Any User Stories involving a managed entity, such as a Customer, Order, Employee or Product, will almost always require some level of management functionality.  This management functionality will provide the ability to perform a number of operations including at a minimum operation, such as Create, Read, …

Slicing User Stories Method 6 Read More »

Cross Site Scripting (SQL Injection) Attack

A SQL Injection Attack is one of the many security issues that must be address when designing and developing applications that access a database.  The injection vulnerability is potentially present on pages or forms where the user must enter a value to be submitted to the server. If the user input is not properly validated …

Cross Site Scripting (SQL Injection) Attack Read More »

Layered Cake

Slicing User Stories Method 5

Slicing by Input Parameter (Datatypes) In most cases a business process or whatever function that the new feature is intended to automate requires some data to perform its actions.  For the sake of this discussion we will refer to this data as Input Parameters.  Data of different types in most cases will need to be …

Slicing User Stories Method 5 Read More »

What makes a good User Story

A User Story is intended to be a method of communicating business or application requirements between potentially nontechnical customers, team members who are not developers and the development / operations teams that must implement the required application or features. In other words, the User Story needs to be understood by all but still provide enough …

What makes a good User Story Read More »

Shopping Cart