The devlog-ist/landing project helps keep our landing pages up-to-date with the latest content. We've been working on improving its synchronization process with external data sources.

Key improvements include a new job for initial synchronization that smartly detects the last activity date, replacing a hardcoded 7-day window. This makes the sync process more efficient and accurate.

Introduction

This article discusses a common issue in applications using GitHub OAuth for authentication: inadvertently overwriting a user's existing token with one that has fewer permissions. We'll explore how to ensure the application preserves the user's original, broader-scoped token when requesting narrower scopes during subsequent logins.

The Problem

Many applications use GitHub

Securing web applications requires a multi-layered approach. Recent updates to our application focused on bolstering security through rate limiting on authentication routes and implementing granular access control for administrative resources.

Rate Limiting Authentication Routes

To mitigate brute-force attacks and other forms of abuse, we've implemented rate limiting on critical