Techly NewsGet the app

Get the latest tech news

Operationalizing Macaroons


The Integral Principles of the Structural Dynamics of Macaroons

The result is that database writes are relatively rare and very simple: we just need to record an HMAC key when Fly.io organizations are created (that is, roughly, when people sign up for the service and actually do a deploy). This is a design smell, but the security model is nice: across many thousands of machines, there are only a handful with the cryptographic material needed to mint a new Macaroon token. Past oTel, and the standard logging and Prometheus metrics every Fly App gets for free, we also have a complete audit trail for token operations, in a permanently retained OpenSearch cluster index.

Get the Android app

Or read this on Hacker News

« US immigration officials look to expand social media data collection
Met Police smash down door of Quaker meeting house to arrest activists »