anderspitman

↗ HN profile [ 94.9 ms ] full profile
Karma
7,970
Created
December 11, 2014 (11y ago)
Submissions
0
Software architect on the iobio team at the University of Utah Eccles Institute of Human Genetics. I'm passionate about the application of computer science to solving health problems. Hans Rosling is my hero.

Personal site:

apitman.com

Projects:

IndieBits.io - A community for data ownership, self-hosting, and decentralization.

TakingNames.io - Domain names for self-hosters

boringproxy.io - Simple, e2ee tunneling proxy

patchbay.pub - Connect any two computers on the internet with curl

  1. Bluesky Business Plan (blueskyweb.xyz)
  2. WebAuthn vs. Passkeys (blog.passwordless.id)
  3. A lot of OAuth2 attacks are related to leaking access or refresh tokens. Especially with modern web crypto APIs, why not create a non-exportable key pair, include the public key with the authorization request, and…

  4. I've been implementing an OAuth2 client application, and integrating it with various OIDC and non-OIDC social login services like Google, GitHub, etc. Facebook is an interesting case. It appears to implement everything…

  5. I run several websites that manage user accounts. I generally default to an email-based login flow. I'd love to improve UX for my users by integrating with social login SSO, but I don't want to encourage my them to sell…

  6. scheduleduptime.com (scheduleduptime.com)
  7. Scott Manley (en.wikipedia.org)