BetterDev #216 - Why Authorization is Hard and The pitfalls of using ssh-agent, or how to use an agent safely
Better Dev #216 Sep 20, 2021
A very practical issue. Dealing with authorization, SSH agent, design API, optimize big JS bundle, text vs varchar in database design. I hope you like these as much as I do.
Have a great week everyone.
There’s a fundamental tension in authorization. Is it business logic or authorization logic? Should it be in the app, or separate? Authorization wasn’t particularly fashionable in tech circles. Fast-forward to today, and Airbnb, Carta, Slack, and Intuit are all writing blog posts about the internal authorization systems they built. Suddenly it seems like authorization is a topic as cool as moving to Kubernetes!
rogramming hasn’t fundamentally changed in a long time. Building an app usually means Googling for the right component library, debugging dependencies, rewriting a lot of boilerplate code, and figuring out where to deploy. Everything but solving the problem at hand. Retool is a new approach: we’ve unified the ease of visual programming with the power and flexibility of real code. Connect to any database or API. Drag-and-drop a UI while simultaneously live programming it. Deploy instantly. Allbirds uses Retool to measure billboard efficacy. Amazon uses Retool to handle GDPR requests. You, too, can use it to build business-critical applications fast.
Using ssh-agent, your key can be transfered securely to a jumpbox and from that jump box you an login to another server using that key. But it has so many pitfall to the point many suggest to never use it. In this posts, we will see how we can leverage it safely. Because while proxyjump is useful for SSH, it’s won’t superuseful for thing like git clone.
Tooling, process, strategy to understand Apple Dictionary format. Like how the author walked us through his though process. These kind of article can be very helpful to show how to approach a problem when its knowledge isn’t searchable on google and you gotta be figure it yourself
Nextflix heavily uses gRPC for the purpose of backend to backend communication. When processing a request it is often beneficial to know which fields the caller is interested in and which ones they ignore. How can they understand which fields the caller doesn’t need to be supplied in the response in a gRPC request?
browser always has to parse your JavaScript, regardlesss if that is run on the page or not, they still have to parse, and the bigger the bundles, it takes more time to load. What can we do about it?
Deep dive into how percentile works, when it will shift and why it’s beeter to monitor trend thant average or median.
Lesson from Stripe engineering on why they used text, then switch to varchar(n). The TLDR is that client may not enforce length limit and cause huge text ended up in database
Maynot related to our daily work that much but it’s a really good post to laid our how we can look at a bunch of hexdump and understand what is what. Even if you don’t use C or gdb I’m strongly advise to give this a read
Code to read
Simple and performant client for PostgreSQL, MySQL, and SQLite. If you want to see how to write a database client, look no more. It also supports migration.
GoLightweight, fully spec-compliant HTML5 server-sent events library. If your communication is one-way such as you are only interested into event return from servers, then SSE is much more lightweight and easy to implement than websocket.
GoA script language like Python or Lua written in Rust, with exactly the same syntax as Go’s.
RustBasically allow you to create userbots that can record and broadcast in voice chats, make and receive private calls.
PythonTools
Based on Wireguard VPN, allow you to create a mesh network between multiple hosts. Including a webui for management as well.
checks the configuration of given server accessible over internet during SSH handshake - notably supported encryption and MAC algorithms, and an overview of offered server public keys.
rogramming hasn’t fundamentally changed in a long time. Building an app usually means Googling for the right component library, debugging dependencies, rewriting a lot of boilerplate code, and figuring out where to deploy. Everything but solving the problem at hand. Retool is a new approach: we’ve unified the ease of visual programming with the power and flexibility of real code. Connect to any database or API. Drag-and-drop a UI while simultaneously live programming it. Deploy instantly. Allbirds uses Retool to measure billboard efficacy. Amazon uses Retool to handle GDPR requests. You, too, can use it to build business-critical applications fast.
You can view this issue in web browser.
If you have any suggestion/feedback, do tell me by replying to this email. I read them all.
No longer want to receive these emails? Unsubscribe
Older messages
BetterDev #215 - Can Podcasts Predict the Stock Market?
Monday, September 13, 2021
Better Dev #215 Sep 13, 2021 Hi everyone, full of security related articles this week. I want to shift gear a bit to give everyone gain more knowledge and exposure to cyber security. Can Podcasts
BetterDev #214 - Picturing Git: Conceptions and Misconception
Tuesday, September 7, 2021
Better Dev #214 Sep 07, 2021 This issue is arrived one day later than our usual schedule due to US holiday. We're back now and hope everyone had a great week despite of the holiday or not Picturing
BetterDev #213 - An amazing error message if you put more than 2^24 items in a JS Map object
Monday, August 30, 2021
Better Dev #213 Aug 30, 2021 An amazing error message if you put more than 2^24 items in a JS Map object Can you guess that? a map with 2^24 items? Probaly some limit exceed error? Indeed, JS will
BetterDev #212 - One does not simply calculate the absolute value
Monday, August 23, 2021
Better Dev #212 Aug 23, 2021 Happy monday everyone. I hope this week's issue bring you some joy. We got stories of Rakuten, Clubhouse, Target deploy and debug their system. Infrastructure is hard
BetterDev #211 - Mixpanel Saving $30000 a month by improving Garbage Collection
Tuesday, August 17, 2021
Better Dev #211 Aug 16, 2021 Hi all, Let's get straight to our link this week. If you like our content, please share it with your friends or co-workers :) Saving $30000 a month by improving Garbage
You Might Also Like
Import AI 399: 1,000 samples to make a reasoning model; DeepSeek proliferation; Apple's self-driving car simulator
Friday, February 14, 2025
What came before the golem? ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏
Defining Your Paranoia Level: Navigating Change Without the Overkill
Friday, February 14, 2025
We've all been there: trying to learn something new, only to find our old habits holding us back. We discussed today how our gut feelings about solving problems can sometimes be our own worst enemy
5 ways AI can help with taxes 🪄
Friday, February 14, 2025
Remotely control an iPhone; 💸 50+ early Presidents' Day deals -- ZDNET ZDNET Tech Today - US February 10, 2025 5 ways AI can help you with your taxes (and what not to use it for) 5 ways AI can help
Recurring Automations + Secret Updates
Friday, February 14, 2025
Smarter automations, better templates, and hidden updates to explore 👀 ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏
The First Provable AI-Proof Game: Introducing Butterfly Wings 4
Friday, February 14, 2025
Top Tech Content sent at Noon! Boost Your Article on HackerNoon for $159.99! Read this email in your browser How are you, @newsletterest1? undefined The Market Today #01 Instagram (Meta) 714.52 -0.32%
GCP Newsletter #437
Friday, February 14, 2025
Welcome to issue #437 February 10th, 2025 News BigQuery Cloud Marketplace Official Blog Partners BigQuery datasets now available on Google Cloud Marketplace - Google Cloud Marketplace now offers
Charted | The 1%'s Share of U.S. Wealth Over Time (1989-2024) 💰
Friday, February 14, 2025
Discover how the share of US wealth held by the top 1% has evolved from 1989 to 2024 in this infographic. View Online | Subscribe | Download Our App Download our app to see thousands of new charts from
The Great Social Media Diaspora & Tapestry is here
Friday, February 14, 2025
Apple introduces new app called 'Apple Invites', The Iconfactory launches Tapestry, beyond the traditional portfolio, and more in this week's issue of Creativerly. Creativerly The Great
Daily Coding Problem: Problem #1689 [Medium]
Friday, February 14, 2025
Daily Coding Problem Good morning! Here's your coding interview problem for today. This problem was asked by Google. Given a linked list, sort it in O(n log n) time and constant space. For example,
📧 Stop Conflating CQRS and MediatR
Friday, February 14, 2025
Stop Conflating CQRS and MediatR Read on: my website / Read time: 4 minutes The .NET Weekly is brought to you by: Step right up to the Generative AI Use Cases Repository! See how MongoDB powers your