Lift tips and tricks



See @harryh's 5 line lazy-loading snippet, all the code you need to guard against replay attacks/XSRF, and building real-time web apps in Lift


The Lift Web Framework is gaining popularity among enterprise developers and hip kids alike. FourSquare built their service on Lift. Xerox has a number of Lift-powered web sites in production. Novell chose Lift to power their Pulse real-time project.

Please join David Pollak, Lift’s Benevolent Dictator for Life, in a quick overview of tips and tricks in Lift.

David will show you a bunch of @harryh (lead tech sled dog at FourSquare) Ajax quickies.

David will demonstrate Lift’s security features that make it easy to build apps that resist cross site scripting/request forgeries, replay attacks, and may other common security vulnerabilities.

David will show how few lines of code it takes to put real-time (Comet) components on your web page.

Speaking experience


  • Dpp pict

    David Pollak

    Lift Web Framework


    David Pollak has been writing commercial software since 1977. He wrote the first real-time spreadsheet and the worlds highest performance spreadsheet engine. Since 1996, David has been using and devising web development tools. As CTO of CMP Media, David oversaw the first large-scale deployment of WebLogic. David was CTO and VPE at Cenzic, a web application security company. David has also developed numerous commercial projects in Ruby on Rails.

    In 2007, David founded the Lift Web Framework open source project. Lift is an expressive and elegant framework for writing web applications. Lift stresses the importance of security, maintainability, scalability and performance, while allowing for high levels of developer productivity. Lift open source software licensed under an Apache 2.0 license.

    David is a consultant in San Francisco and works on Lift-based projects including Buy a Feature and ESME.