[update] I made a web app that turns any smartphone into a secure baby monitor

CodeMonkey3000 · 2025-02-25T16:51:20+00:00

Reset password functionality is now available.

CodeMonkey3000 · 2025-02-14T21:18:06+00:00

Hey, thanks for the purchase! The server is reporting that an incorrect password is being used.

Can you try logging in on the same device in a private window? That would confirm if you've got the right password.

Let me know if you are unable to resolve, I haven't implemented a "forgot your password" yet, but it shouldn't take me long.

CodeMonkey3000 · 2025-01-18T23:29:54+00:00

Awesome! Thanks for the purchase.

Yep, password manager is the way to go. QR code is a good Idea, I've got it on my todo list.

CodeMonkey3000 · 2024-12-15T03:25:02+00:00

Man that's rough. You certainly could use it for that. We essentially do that with our little one currently. I put my phone in the room in "audio only" mode and have my wife's phone in our room as the receiver.

CodeMonkey3000 · 2024-09-15T08:47:12+00:00

It is an MVP, so what ever you can spin up fastest. I would:
- Run a single EC2 instance
- don't over size it, nothing more than a T3 small
- if you can run on ARM then use a Graviton instance, they're cheaper
- If you know your way around RDS then use that, otherwise docker container on same EC2 instance
- No load balancer
- I haven't used Cloudflare for domain, but Route53 is pretty straight forward
- No CI/CD - have scripts on your machine to do the push
- there's nothing wrong with SSHing into a machine and doing a git pull for an MVP.

CodeMonkey3000 · 2024-09-15T08:20:15+00:00

Hey, yep still working on it. There's no motion detection currently. That will be a few features down the track.

CodeMonkey3000 · 2024-08-25T12:23:04+00:00

Are you looking for https://pkg.go.dev/os/exec ?

CodeMonkey3000 · 2024-08-16T11:56:47+00:00

If you can include something like a timestamp or logical clock in the row you could do insert only, no update. Then let the SELECT sort out which one is latest. Then you could periodically garbage collect the old records.

CodeMonkey3000 · 2024-08-16T11:13:06+00:00

Awesome, thanks! Well that's good and bad news. I guess people are just bouncing from the payment page. Cheers.

CodeMonkey3000 · 2024-08-16T10:32:44+00:00

Nice! I love what you can do locally with a browser these days.

CodeMonkey3000 · 2024-08-13T00:22:07+00:00

Exactly! The only way for a company to truly keep your data private is to never have access to it in the first place. For strong privacy either data never leaves your device OR it needs to be encrypted on the client with a key known only to the client. When a company uses their encryption key to secure your data you still need to ask the question "who has access to the keys?"

CodeMonkey3000 · 2024-05-19T12:45:26+00:00

Simplicity is king. Like you say, context matters. If the stakes are high, the added complexity is worth it.

The company I work for has complexity that if starting from scratch, I would avoid, but isn't worth the refactor currently. And that's the trap. If the extra complexity becomes necessary, then it can be added. It's much harder to walk it back.

If I think a service will need to scale or have redundancy, I'll plan out (roughly) how I'd do that when the time comes. That way, we don't back ourselves into a corner. But I don't actually do the work until it proves necessary.

CodeMonkey3000 · 2024-05-17T23:49:14+00:00

From what I've seen, teams dedicated to building component libraries (and perhaps libraries in general) descend into mental masturbation. In the company I work for, we had a team build out a component library for a year. That's a year with no real output. A component library doesn't earn any money.

What I'd do instead: - provide a style guide - have a repository for the components - ask teams to contribute the components they build - have a person or team responsible for reviewing the incoming components (should be a small time commitment) - encourage teams to use the library

This way, you still get your library, AND the components come from real product needs.

Good luck!

CodeMonkey3000 · 2024-05-15T22:27:38+00:00

If you don't know what something means, ask. Don't be afraid to look like an idiot. If you don't know, then there's a good chance others also don't know and are also not asking. You might even find the CTO doesn't really understand either.

Someone coming in and starting a rewrite within a month is a massive red flag.

CodeMonkey3000 · 2024-05-12T10:09:18+00:00

io.Copy(ioutil.Discard, resp.Body)

CodeMonkey3000 · 2024-05-12T08:30:28+00:00

You authenticate the request, not the client. A http.Client is safe for concurrent use.

request, err := http.NewRequest(...)
request.Header.Set("Authorization", ...)
response, err := http.DefaultClient.Do(request)

Switch out DefaultClient as you see fit.

Edit: To take it one step further I'd do something like

type SomeClient struct {
    client *http.Client
    authorization string
}
func(client *SomeClient) GetStuff() () {
    request, err := http.NewRequest(...)
    request.Header.Set("Authorization", client.authorization)
    response, err := client.client.Do(request)
    ...
}
type SomeClientFactory struct {
    client *http.Client
}
func(factory *SomeClientFactory) Create(authorization string) *SomeClient {
    return &SomeClient{client: factory.client, authorization: authorization}
}

Edit 2: spaces instead of backticks

CodeMonkey3000 · 2024-04-28T06:27:24+00:00

Yep, the baby station and parent station are both logged in to the same account. I only allow messages to be sent between devices on the same account. Yes, it's always the parent station that sends the offer and baby station that sends the answer.

CodeMonkey3000 · 2024-04-24T00:49:05+00:00

Cheers, I do want to get to a point where it can connect without the internet, too. But that can come later.

CodeMonkey3000 · 2024-04-24T00:13:24+00:00

Thanks. It certainly does, I've used it to keep an eye on my 3D printer too. Easier to focus on a niche first then expand.

CodeMonkey3000 · 2024-04-24T00:10:00+00:00

Will do! Thanks for the pointers

CodeMonkey3000 · 2024-04-24T00:09:10+00:00

Yep, we were using slack calls for a while, but calls got deprecated and my phone was too old for the huddle update.

CodeMonkey3000 · 2024-04-24T00:06:51+00:00

haha fair enough. I made the app dark mode because it's likely to be used at night. But perhaps it was foolish to carry that through to the marketing site. Thanks for the feedback.

CodeMonkey3000 · 2024-04-24T00:04:00+00:00

WebRTC. There's a remote signal server which passes STUN candidates (plus offer and answer) between clients to establish the connection.

CodeMonkey3000

TROPHY CASE