Curious (Clojure) Programmer Simplicity matters

Menu

  • Home
  • Archives
  • Tags
  • About
  • My Talks
  • Clojure Tip of the Day Screencast
  • (Open) Source
  • Weekly Bits & Pieces
  • RSS

Weekly Bits 05/2022 - Ukraine, CloudFront & OriginCommError, Double-submit cookies, Frontend monitoring, Emacs' query-replace-regexp

February 28, 2022
Table of Contents
  • Ukraine
  • PF.tv Domain Modeling series
    • 461: Rules of thumb don’t scale
  • Clojure
    • Learn Reagent - video course
  • AWS & Cloud
    • CloudFront - OriginCommError and mysterious timeouts
    • Terraform lifecycle policies vs modules
  • Reading (Books)
    • Grokking Simplicity
    • Api Security in Action
      • Double-submit cookies
    • Practical Monitoring
      • Frontend monitoring
  • MISC
    • Emacs - Searching and replacements via (query)-replace-regex
    • 1Password CLI & MFA authentication codes
  • Links

Some of the interesting things I did, learned, or found in the (week before the) past week. This time it’s not very complete and comes a bit later - the reason is simple:


Continue reading →

CloudFront and mysterious OriginCommError

February 23, 2022
Table of Contents
  • The typical deployment
  • Restricting Access
  • The mystery
  • Logs, logs, and logs
  • OriginCommError - who are you?
    • Ok, but why?
  • Resolution
  • References

If you are running production workloads on AWS there’s a good chance you’re using Amazon CloudFront - Content Delivery Network (CDN) that helps you improve performance, security, and reliability of your website:


Continue reading →

Base 64 - padding and URLs

February 20, 2022
Table of Contents
  • The spec
  • Two variants of Base 64 encoding
  • To pad, or not to pad?
  • Base 64 with Clojure and buddy library
  • What about the spec
  • Links

TL;DR: If you know the size of your input beforehand, it should be safe to leave out the padding character ('=') so you don’t need to percent-encode it for safe usage in URLs.


Continue reading →

Weekly Bits 04/2022 - Domain Modeling, Cryogen, AWS Secrets Manager, Api Security, VisiData, and more

February 20, 2022
Table of Contents
  • PF.tv Domain Modeling series
    • 457: Take a stance
    • 458: Three doorways of domain modeling
    • 460: Interface polymorphism
  • Clojure
    • Fixing Cryogen’s auto-refresh
    • Can "NUMA" cause mysterious performance degradations?
    • Core.async - channels as queues?
  • AWS & Cloud
    • AWS Lambda deployment with Terraform
    • AWS Secrets Manager and the principle of least-privilege
    • AWS Load Balancers - increasing the idle connection timeout
  • Books
    • Explore it!
    • Grokking Simplicity
    • Api Security in Action
      • Session fixation, Cookies, Sub-domain hijacking
      • CSRF
    • Practical Monitoring - chapter 5 about Business Metrics
  • Writing
  • MISC
    • Base64 encoding
    • Cognicast with Camille Fournier
    • VisiData - a great tool for exploring CSV (and many other formats) on the command line

Some of the interesting things I did, learned, or found in the past week.


Continue reading →

AWS Secrets Manager and the principle of least-privilege

February 16, 2022
Table of Contents
  • Storing API keys
    • 1. Save API keys in Secrets Manager
    • 2. Create the IAM policy
    • 3. Create the IAM group and attach the policy
  • Using API keys
    • Fetch API keys with AWS CLI
    • Use API keys with Clojure
  • UPDATE 2022-02-22: The perils of MFA
    • What does it have to do with KMS?
    • Temporary session tokens to the rescue!
  • Links

AWS Secrets Manager is a great place to store secrets that are needed by somebody else (machines or people) if you are running your infrastructure on AWS.


Continue reading →
« Prev Next »
Copyright © 2025 Juraj Martinka

Powered by Cryogen | Free Website Template by Download Website Templates