Writing a Secure Systemd Service with Sandboxing and Dynamic Users

React server components. Streaming server side rendering. Edge compute. Web app architecture advancements are making classic SPAs appear long in the tooth. Time to see what I’ve been missing, and try to keep up with the Joneses (negative connotation fully implied). I might suffer from Perpetual Reengineering Syndrome as this is the umpteenth time...

I’m moving more code into Cloudflare workers everyday as they are cheap, fast, and powerful. But it hasn’t been without struggle. This is the story of one such struggle with a troublesome endpoint. The endpoint in question verifies the OpenID authentication signature directly with Steam. In short, this code runs after the user authenticates with...

Did you know that the files originating from an file input don’t have all their data buffered into memory? Seems intuitive that this is how JS would work, otherwise web sites operating over files would be terribly memory inefficient. Don’t let this efficient File deceive you. If you create one yourself, you’ll soon find that you need to buffer...

In an app that has S3 files and a Postgres database storing file metadata, we might have a DELETE route that looks something like: Select file from db, and if it does not exist throw a 404. If the file’s owner isn’t our session’s user, check the db if the session’s user is an admin Delete file from the db Delete file from S3 The above steps...

I came across some high usage under my Vercel account. Vercel usage donut charts. Cropped for brevity What is “Fast Origin Transfer”? The docs are vague, and whatever it is, seems like I’m about at my limit. Vercel used to have straightforward pricing, but they recently updated their model. Instead of...