BetterDev #216 - Why Authorization is Hard and The pitfalls of using ssh-agent, or how to use an agent safely
Better Dev #216 Sep 20, 2021
A very practical issue. Dealing with authorization, SSH agent, design API, optimize big JS bundle, text vs varchar in database design. I hope you like these as much as I do.
Have a great week everyone.
There’s a fundamental tension in authorization. Is it business logic or authorization logic? Should it be in the app, or separate? Authorization wasn’t particularly fashionable in tech circles. Fast-forward to today, and Airbnb, Carta, Slack, and Intuit are all writing blog posts about the internal authorization systems they built. Suddenly it seems like authorization is a topic as cool as moving to Kubernetes!
rogramming hasn’t fundamentally changed in a long time. Building an app usually means Googling for the right component library, debugging dependencies, rewriting a lot of boilerplate code, and figuring out where to deploy. Everything but solving the problem at hand. Retool is a new approach: we’ve unified the ease of visual programming with the power and flexibility of real code. Connect to any database or API. Drag-and-drop a UI while simultaneously live programming it. Deploy instantly. Allbirds uses Retool to measure billboard efficacy. Amazon uses Retool to handle GDPR requests. You, too, can use it to build business-critical applications fast.
Using ssh-agent, your key can be transfered securely to a jumpbox and from that jump box you an login to another server using that key. But it has so many pitfall to the point many suggest to never use it. In this posts, we will see how we can leverage it safely. Because while proxyjump is useful for SSH, it’s won’t superuseful for thing like git clone.
Tooling, process, strategy to understand Apple Dictionary format. Like how the author walked us through his though process. These kind of article can be very helpful to show how to approach a problem when its knowledge isn’t searchable on google and you gotta be figure it yourself
Nextflix heavily uses gRPC for the purpose of backend to backend communication. When processing a request it is often beneficial to know which fields the caller is interested in and which ones they ignore. How can they understand which fields the caller doesn’t need to be supplied in the response in a gRPC request?
browser always has to parse your JavaScript, regardlesss if that is run on the page or not, they still have to parse, and the bigger the bundles, it takes more time to load. What can we do about it?
Deep dive into how percentile works, when it will shift and why it’s beeter to monitor trend thant average or median.
Lesson from Stripe engineering on why they used text, then switch to varchar(n). The TLDR is that client may not enforce length limit and cause huge text ended up in database
Maynot related to our daily work that much but it’s a really good post to laid our how we can look at a bunch of hexdump and understand what is what. Even if you don’t use C or gdb I’m strongly advise to give this a read
Code to read
Simple and performant client for PostgreSQL, MySQL, and SQLite. If you want to see how to write a database client, look no more. It also supports migration.
GoLightweight, fully spec-compliant HTML5 server-sent events library. If your communication is one-way such as you are only interested into event return from servers, then SSE is much more lightweight and easy to implement than websocket.
GoA script language like Python or Lua written in Rust, with exactly the same syntax as Go’s.
RustBasically allow you to create userbots that can record and broadcast in voice chats, make and receive private calls.
PythonTools
Based on Wireguard VPN, allow you to create a mesh network between multiple hosts. Including a webui for management as well.
checks the configuration of given server accessible over internet during SSH handshake - notably supported encryption and MAC algorithms, and an overview of offered server public keys.
rogramming hasn’t fundamentally changed in a long time. Building an app usually means Googling for the right component library, debugging dependencies, rewriting a lot of boilerplate code, and figuring out where to deploy. Everything but solving the problem at hand. Retool is a new approach: we’ve unified the ease of visual programming with the power and flexibility of real code. Connect to any database or API. Drag-and-drop a UI while simultaneously live programming it. Deploy instantly. Allbirds uses Retool to measure billboard efficacy. Amazon uses Retool to handle GDPR requests. You, too, can use it to build business-critical applications fast.
You can view this issue in web browser.
If you have any suggestion/feedback, do tell me by replying to this email. I read them all.
No longer want to receive these emails? Unsubscribe
Older messages
BetterDev #215 - Can Podcasts Predict the Stock Market?
Monday, September 13, 2021
Better Dev #215 Sep 13, 2021 Hi everyone, full of security related articles this week. I want to shift gear a bit to give everyone gain more knowledge and exposure to cyber security. Can Podcasts
BetterDev #214 - Picturing Git: Conceptions and Misconception
Tuesday, September 7, 2021
Better Dev #214 Sep 07, 2021 This issue is arrived one day later than our usual schedule due to US holiday. We're back now and hope everyone had a great week despite of the holiday or not Picturing
BetterDev #213 - An amazing error message if you put more than 2^24 items in a JS Map object
Monday, August 30, 2021
Better Dev #213 Aug 30, 2021 An amazing error message if you put more than 2^24 items in a JS Map object Can you guess that? a map with 2^24 items? Probaly some limit exceed error? Indeed, JS will
BetterDev #212 - One does not simply calculate the absolute value
Monday, August 23, 2021
Better Dev #212 Aug 23, 2021 Happy monday everyone. I hope this week's issue bring you some joy. We got stories of Rakuten, Clubhouse, Target deploy and debug their system. Infrastructure is hard
BetterDev #211 - Mixpanel Saving $30000 a month by improving Garbage Collection
Tuesday, August 17, 2021
Better Dev #211 Aug 16, 2021 Hi all, Let's get straight to our link this week. If you like our content, please share it with your friends or co-workers :) Saving $30000 a month by improving Garbage
You Might Also Like
The 165+ best Black Friday deals
Wednesday, November 27, 2024
Windows Super God Mode; Bluesky starter packs; Tech gifts under $100 -- ZDNET ZDNET Tech Today - US November 27, 2024 Black Friday 2024 live blog Best Black Friday deals 2024: 165+ sales live now
⚙️ Neuralink's new trial
Wednesday, November 27, 2024
Plus: Zoom is becoming an AI-first company
Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign
Wednesday, November 27, 2024
THN Daily Updates Newsletter cover The AI Value Playbook ($35.99) FREE for a Limited Time Business leaders are challenged by the speed of AI innovation and how to navigate disruption and uncertainty.
The Sequence Chat: Why are Foundation Models so Hard to Explain and What are we Doing About it?
Wednesday, November 27, 2024
Addressing some of the interpretability challenges of foundation models and the emerging fields of mechanistic interpretability and behavioral probing. ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏
Overcoming Perfectionism: How to Break Free from the Enemy of Progress
Wednesday, November 27, 2024
Discover how perfectionism hinders progress and learn practical strategies to overcome the fear of imperfection, boost productivity, and achieve your goals without getting stuck in the pursuit of
🖤 Laravel Black Friday Deals!
Wednesday, November 27, 2024
The biggest deals of the year Laravel Black Friday Deals View in browser Laravel News Editor Note: We are sending this outside the regular Sunday newsletter schedule because some of these specials end
BetterDev #271 - Memory: The Forgotten History and Why did Windows 95 setup use three operating systems?
Wednesday, November 27, 2024
Better Dev #271 Nov 26, 2024 Hi all, Welcome to thanksgiving issue of BetterDev. Hope everyone had a safe and warm thanksgiving. It's getting so cold these days. If you are in warzone such as
Mapped | Unemployment Rate By U.S. State in 2024 💼
Tuesday, November 26, 2024
As of October 2024, DC and Nevada tied for the highest unemployment rate in the US at 5.7%. Which states saw the lowest rates? View Online | Subscribe | Download Our App FINAL CHANCE - ENDS TONIGHT!
🔊 7 DIY Tips for Soundproofing a Room — Why I Switched to Xfce for Linux Mint
Tuesday, November 26, 2024
Also: Home Theater Sound Terms Explained, and More! How-To Geek Logo November 26, 2024 Did You Know The shiny layer of a CD doesn't contain the data; the plastic polycarbonate layer does. The shiny
JSK Daily for Nov 26, 2024
Tuesday, November 26, 2024
JSK Daily for Nov 26, 2024 View this email in your browser A community curated daily e-mail of JavaScript news JavaScript Certification Black Friday Offer – Up to 54% Off! Certificates.dev, the trusted