They could force the invoice sender to verify an email address, and then include this email address in the invoice email. This way, nobody can pose as "coinbase" -- maybe as invoice@coinbase.fakedomain.com, but not as…
If the explanation is incredibly poor, why is this issue still open: https://github.com/hashicorp/terraform/issues/20718
If terraform crashes during apply, it leaves behind an inconsistent state by design: The lock is still set, and some resources which were created already are not yet in the statefile. Trying to re-run terraform after a…
On gitlab, there has been another way for some time: There is a JWT token CI_JOB_JWT available in an env var which contains the branch name and other info as one of the claims [1]. One can then use this token to obtain…
Your STM is missing a proper approach mechanism. The vertical range of the piezo that is used for scanning will only be a few 100 nanometer. A screw is too coarse for that! Stick-slip mechanisms with a ramp (Besocke or…
I agree. It is also amazing how different the database systems are that are competing against each other today: Partitioning: 1) DynamoDb: Partitioning is explicit and one of the most important parts of schema design 2)…
Thank you for the insightful answer. I see the problem with mutations in foreign systems if those foreign systems do not support idempotency themselves. IMHO, though, stripe should abstract away faults in banks, and…
Strongly agree that idempotency should be understood as part of the application, and not as part of the transport. I find it insightful to think about a transport layer that is much less reliable than the internet:…
What I have always wondered about, in the stripe docs it says "Stripe's idempotency works by saving the resulting status code and body of the first request made for any given idempotency key, regardless of whether it…
Property-based testing is good when there is a property to assert that emerges in a non-trivial manner from the code under test. If you do not have such a problem, property-based testing provides no value over a simple,…
It is a software integration problem. Think Oauth. Your car is made by one company, the charging stations by another. The progress becomes very slow.
A few thoughts: 1) AWS dynamodb has a parallel scanning functionality for this exact use case. https://docs.aws.amazon.com/amazondynamodb/latest/developerg... 2) A typical database already internally maintains an…
The risk of accidentially deleting the database is real. However, it can be mitigated without introducing another tool by using a second terraform root module (with a corresponding second statefile). So you would have…
Yes. If we use a null_resource that has the hashes of the source code files as a trigger, then in the `local-exec` provisioner of the null_resource, we can run the build. The build can also be run remotely (we use…
This works fine only as long as you do not need a step to build or download dependencies, like `npm install` or `pip install`, as part of your run of terraform apply. Otherwise, a more complex solution is necessary,…
Examples: 1) Long-living connections. One part of your application offers large file downloads, so that your users sometimes take significant amount of time to download, and the error rate shall be low. Think people…
S3 is newly strongly consistent within a single region since last reinvent or so (google cloud storage has been strongly consistent for much longer). However, the cross-region replication for s3 is based on 'copying'…
I often hear 'aim for elimination of global dependencies', but the reality is that there is no way around global dependencies. AWS STS or IAM is just as global as google's. The difference is that google more often…
They could force the invoice sender to verify an email address, and then include this email address in the invoice email. This way, nobody can pose as "coinbase" -- maybe as invoice@coinbase.fakedomain.com, but not as…
If the explanation is incredibly poor, why is this issue still open: https://github.com/hashicorp/terraform/issues/20718
If terraform crashes during apply, it leaves behind an inconsistent state by design: The lock is still set, and some resources which were created already are not yet in the statefile. Trying to re-run terraform after a…
On gitlab, there has been another way for some time: There is a JWT token CI_JOB_JWT available in an env var which contains the branch name and other info as one of the claims [1]. One can then use this token to obtain…
Your STM is missing a proper approach mechanism. The vertical range of the piezo that is used for scanning will only be a few 100 nanometer. A screw is too coarse for that! Stick-slip mechanisms with a ramp (Besocke or…
I agree. It is also amazing how different the database systems are that are competing against each other today: Partitioning: 1) DynamoDb: Partitioning is explicit and one of the most important parts of schema design 2)…
Thank you for the insightful answer. I see the problem with mutations in foreign systems if those foreign systems do not support idempotency themselves. IMHO, though, stripe should abstract away faults in banks, and…
Strongly agree that idempotency should be understood as part of the application, and not as part of the transport. I find it insightful to think about a transport layer that is much less reliable than the internet:…
What I have always wondered about, in the stripe docs it says "Stripe's idempotency works by saving the resulting status code and body of the first request made for any given idempotency key, regardless of whether it…
Property-based testing is good when there is a property to assert that emerges in a non-trivial manner from the code under test. If you do not have such a problem, property-based testing provides no value over a simple,…
It is a software integration problem. Think Oauth. Your car is made by one company, the charging stations by another. The progress becomes very slow.
A few thoughts: 1) AWS dynamodb has a parallel scanning functionality for this exact use case. https://docs.aws.amazon.com/amazondynamodb/latest/developerg... 2) A typical database already internally maintains an…
The risk of accidentially deleting the database is real. However, it can be mitigated without introducing another tool by using a second terraform root module (with a corresponding second statefile). So you would have…
Yes. If we use a null_resource that has the hashes of the source code files as a trigger, then in the `local-exec` provisioner of the null_resource, we can run the build. The build can also be run remotely (we use…
This works fine only as long as you do not need a step to build or download dependencies, like `npm install` or `pip install`, as part of your run of terraform apply. Otherwise, a more complex solution is necessary,…
Examples: 1) Long-living connections. One part of your application offers large file downloads, so that your users sometimes take significant amount of time to download, and the error rate shall be low. Think people…
S3 is newly strongly consistent within a single region since last reinvent or so (google cloud storage has been strongly consistent for much longer). However, the cross-region replication for s3 is based on 'copying'…
I often hear 'aim for elimination of global dependencies', but the reality is that there is no way around global dependencies. AWS STS or IAM is just as global as google's. The difference is that google more often…