Documenting code, one commit at a time.
This article discusses a common issue in applications using GitHub OAuth for authentication: inadvertently overwriting a user's existing token with one that has fewer permissions. We'll explore how to ensure the application preserves the user's original, broader-scoped token when requesting narrower scopes during subsequent logins.
Many applications use GitHub
This post discusses a recent update to our post generation process, shifting from hardcoded sections to a more adaptable, example-driven approach.
Previously, our post generation system rigidly enforced a predefined structure: Introduction, Development, Examples, and Conclusion. This inflexible format ignored the nuances and varied structures of different example posts,
This post addresses an issue where a billing system, specifically when using a service like Cashier, fails to correctly identify active subscriptions beyond the default type. We'll explore the problem and provide a solution to ensure all subscription types are properly recognized.
In many billing systems, especially those utilizing
Securing web applications requires a multi-layered approach. Recent updates to our application focused on bolstering security through rate limiting on authentication routes and implementing granular access control for administrative resources.
To mitigate brute-force attacks and other forms of abuse, we've implemented rate limiting on critical
