Automate Access Control for User-Specific Entities
Practically every web application is supposed to have multiple users and each user has some data – posts, documents, messages, whatever. And the most obvious thing to do is toContinue reading
Scaling Horizontally on AWS [talk]
On a recent conference (HackConf) I gave a talk where I tried to summarize how to do deployment and horizontal scaling on AWS. It is an overview of AWS resourcesContinue reading
Typical Workarounds For Compliant Logs
You may think you have logs. Chances are, you can rely on them only for tracing exceptions and debugging. But you can’t rely on them for compliance, forensics, or anyContinue reading
A Caveat With AWS Shared Resources
Recently I’ve been releasing a new build, as usual utilizing a blue-green deployment by switching the DNS record to point to the load balancer of the previously “spare” group. ButContinue reading
Writing Big JSON Files With Jackson
Sometimes you need to export a lot of data to JSON to a file. Maybe it’s “export all data to JSON”, or the GDPR “Right to portability”, where you effectivelyContinue reading
Implementing White-Labelling
Sometimes (very often in my experience) you need to support white-labelling of your application. You may normally run it in a SaaS fashion, but some important or high profile clientsContinue reading
5 Features Eclipse Should Copy From IntelliJ IDEA
Eclipse Photon has been released a few days ago, and I decided to do yet another comparison with IntelliJ IDEA. Last time I explained why I still prefer Eclipse, butContinue reading
Electronic Signatures Using The Browser
Sometimes, especially in government or enterprise context, you need to sign a document in the browser using a smartcard (some may call it “crypto token”). It’s rare, but many peopleContinue reading
Storing Encrypted Credentials In Git
We all know that we should not commit any passwords or keys to the repo with our code (no matter if public or private). Yet, thousands of production passwords canContinue reading
Audit Trail Overview
As part of my current project (secure audit trail) I decided to make a survey about the use of audit trail “in the wild”. I haven’t written in details aboutContinue reading