Documenting code, one commit at a time.
This article discusses a common issue in applications using GitHub OAuth for authentication: inadvertently overwriting a user's existing token with one that has fewer permissions. We'll explore how to ensure the application preserves the user's original, broader-scoped token when requesting narrower scopes during subsequent logins.
Many applications use GitHub
This post details the process of seeding initial data, specifically post examples, for tenant-specific features in our application. This approach allows for features like auto-generated posts or random content display that is tailored to each tenant.
When building multi-tenant applications, providing default or example data for each tenant can greatly
Securing web applications requires a multi-layered approach. Recent updates to our application focused on bolstering security through rate limiting on authentication routes and implementing granular access control for administrative resources.
To mitigate brute-force attacks and other forms of abuse, we've implemented rate limiting on critical
