A Caveat With AWS Shared Resources
Recently I’ve been releasing a new build, as usual utilizing a blue-green deployment by switching the DNS record to point to the load balancer of the previously “spare” group. ButContinue reading
Writing Big JSON Files With Jackson
Sometimes you need to export a lot of data to JSON to a file. Maybe it’s “export all data to JSON”, or the GDPR “Right to portability”, where you effectivelyContinue reading
Implementing White-Labelling
Sometimes (very often in my experience) you need to support white-labelling of your application. You may normally run it in a SaaS fashion, but some important or high profile clientsContinue reading
5 Features Eclipse Should Copy From IntelliJ IDEA
Eclipse Photon has been released a few days ago, and I decided to do yet another comparison with IntelliJ IDEA. Last time I explained why I still prefer Eclipse, butContinue reading
Electronic Signatures Using The Browser
Sometimes, especially in government or enterprise context, you need to sign a document in the browser using a smartcard (some may call it “crypto token”). It’s rare, but many peopleContinue reading
Storing Encrypted Credentials In Git
We all know that we should not commit any passwords or keys to the repo with our code (no matter if public or private). Yet, thousands of production passwords canContinue reading
Audit Trail Overview
As part of my current project (secure audit trail) I decided to make a survey about the use of audit trail “in the wild”. I haven’t written in details aboutContinue reading
User Authentication Best Practices Checklist
User authentication is the functionality that every web application shared. We should have perfected that a long time ago, having implemented it so many times. And yet there are soContinue reading
Setting Up Cassandra With Priam
I’ve previously explained how to setup Cassandra in AWS. The described setup works, but in some cases it may not be sufficient. E.g. it doesn’t give you an easy wayContinue reading
Using JWT For Sessions
The topic has been discussed many times, on hacker news, reddit, blogs. And the consensus is – DON’T USE JWT (for user sessions). And I largely agree with the criticismContinue reading