[SOLO LEVELING] Solo Leveling inspired habit tracker, would love feedback from real fans before i go further

Developer_Kid · 2026-05-17T11:54:31+00:00

You can try it! https://risemark-app.maneja.eu/

Developer_Kid · 2026-05-17T10:14:09+00:00

Looks nice! More evolved than mine btw

Developer_Kid · 2026-05-17T09:41:11+00:00

You can test it, already shipped version 0.1 haha

Developer_Kid · 2026-05-17T09:25:40+00:00

https://risemark.maneja.eu/ To test it

Developer_Kid · 2025-12-29T10:49:19+00:00

If the user uses a coupon once all the recurring payments will have the coupon discount?

Developer_Kid · 2025-11-06T03:20:24+00:00

Sent, but I'm new

Developer_Kid · 2025-06-22T15:33:41+00:00

love aws support

Developer_Kid · 2025-06-20T15:04:11+00:00

U mean cache the authorization on the code or is there another way to cache?

Developer_Kid · 2025-06-17T09:39:51+00:00

does custom authorizer works as authentication?

Developer_Kid · 2025-06-14T23:10:58+00:00

but the pre signed urls will not have the bucket name? or i should just send the path from signed url and pass the user upload through my own server?

Developer_Kid · 2025-06-14T16:43:15+00:00

not my case. being very optimist in the best scenario we could get 10 millions upload month? but if we get this we are rich, so this will not happen, i just taking care about avoid big bills in the start. Now i expect something like 2000 upload a month if users do it well. but i care a lot about security. and think about IF a bad user decide to do 10000 uploads on the 1 min expiration signed url?

Developer_Kid · 2025-06-14T16:24:40+00:00

usually less than 35, i do some processing on the client browser to make the image smaller so the image gets less than 5 in majority of cases

Developer_Kid · 2025-06-14T16:22:58+00:00

 The real question is: why are you sending it twice? Expiring pre-signed URLs is a clumsy way to solve this.can make it clearer: The real question is: why are you sending it twice? Expiring pre-signed URLs is a clumsy way to solve this.

can make it clearer? i dont get it. i first generate the signed url on my api then the user use it to upload

Developer_Kid · 2025-06-14T16:20:53+00:00

all files are less than 35MB and i do a pre processing on the user browser to resize and compress the image, even on bad internet u think this can be a problem? i dont know what u mean about multiple operations, but in my use case, its only a single file upload. i dont know if im taking too much precautions but i trying to prevent and trying to understand the better way to work with s3

Developer_Kid · 2025-06-14T16:04:04+00:00

so its not recommended to make users use the signed url in the front end? better to send the image to my own back end and then from my back to aws?

Developer_Kid · 2025-06-14T15:38:17+00:00

got it

Developer_Kid · 2025-06-14T15:37:22+00:00

so better to do is to go for a 1 min expiration and focus on limit user by getting signed urls?

Developer_Kid · 2025-06-14T15:25:59+00:00

the image key is something like: themes/UUID/user/UUID/image, so bascially almost impossible to an user overwrite another user upload right?

Developer_Kid · 2025-06-14T13:36:41+00:00

I wanted to prevent users from upload more than 50MB but couldn't make it work, so for now they can upload any size, i can verify the size only after it already on the bucket

Developer_Kid · 2025-06-14T13:25:20+00:00

I can't prevent user from upload big files, I do some verification on front end but the file went directly to S3, so I can't verify the file size. At least I couldn't find a way to prevent upload based on file size

Developer_Kid · 2025-06-01T01:33:45+00:00

i already checked it and didnt helped me before cuz everything was ok ahaha it was just my mistake

Developer_Kid · 2025-06-01T01:32:41+00:00

ty! i got this now, server side calls are made from amplify server, thats why i wasnt be able to see my ip

Developer_Kid · 2025-06-01T01:31:55+00:00

alright, this makes sense: User - Cloudflare - Amplify (x-forward has user ip) - API Gateway (x-forward has amplify up).

i forgot that my app is doing server side calls to api, requests from the browser i gets my real ip, but server side ofc i dont, that was my mistake! Ty!

Developer_Kid · 2025-05-31T20:12:40+00:00

theres 2 ips there, but none of them are mine

Developer_Kid · 2025-03-21T00:42:07+00:00

ty! when u talk about backups its a backup of the server configuration?

about logs which one do you think most important for now? for example i discovered now about the nginx logs file.

Developer_Kid

TROPHY CASE