HackerTrans
TopNewTrendsCommentsPastAskShowJobs

vjay15

no profile record

Submissions

My adventure in designing API keys

vjay15.github.io
113 points·by vjay15·3 mesi fa·81 comments

Creating my own blog from scratch using zola

vjay15.github.io
2 points·by vjay15·6 mesi fa·1 comments

comments

vjay15
·2 mesi fa·discuss
I remember reading Tanenbaum, the dino book right? It is amazing
vjay15
·2 mesi fa·discuss
This is so freaking cool
vjay15
·2 mesi fa·discuss
This is such a good write up, WebRTC is one of the coolest things ever! It's kinda genius to use the VIP approach, SFU is also pretty scalable but now they dont even have to do that
vjay15
·2 mesi fa·discuss
Surprisingly simple concept!
vjay15
·2 mesi fa·discuss
this was such a funny read
vjay15
·2 mesi fa·discuss
Mistral is playing the long game here ngl, lower sized models, lower costs, overall good enough performance!
vjay15
·3 mesi fa·discuss
The songs it generates is so corporate music pilled and generic, it has no creativity of its own and even if we try to make it do something creative, it generates the same EDM style beat with no taste, well I guess stock music users rejoice, you dont need to use stock music anymore, you can create endless stock music
vjay15
·3 mesi fa·discuss
Omg, we can access even ancient OSes, this is amazing!
vjay15
·3 mesi fa·discuss
kdenlive is really good
vjay15
·3 mesi fa·discuss
but api keys arent meant to be revoked once used right?
vjay15
·3 mesi fa·discuss
Yes, it's just a random long password used to access public APIs
vjay15
·3 mesi fa·discuss
OHHH that makes sense!
vjay15
·3 mesi fa·discuss
no this is just a POC, I haven't implemented any of it
vjay15
·3 mesi fa·discuss
Ideally API key shouldn't contain anything regarding the account or any info right? it's meant to be an opaque string, is what I found in most of the other articles I read. Please do let me know if I am wrong about this assumption
vjay15
·3 mesi fa·discuss
fixed it in the blog, thanks for pointing it out amelius ;-;
vjay15
·3 mesi fa·discuss
yes, you are right onei, it is supposed to be random string instead of hex, I am sorry I made that mistake
vjay15
·3 mesi fa·discuss
hash of the API key just like passwords
vjay15
·3 mesi fa·discuss
if not for typo, then I can use for secret scanning then :)
vjay15
·3 mesi fa·discuss
It is alright, I am learning a lot from them as well, healthy criticism is always useful :) I am very glad that you found this a great write up ^_^
vjay15
·3 mesi fa·discuss
I can't understand what you are trying to say :o