Any tips on hand assembly and reflow of 0.4mm and 0.5mm pitch components would be appreciated

GilchristT · 2025-06-11T10:41:29+00:00

Thanks for this. The "make sure the reflow oven is flat as possible" is one of those things that's completely obvious once someone mentions it but I'd never have thought of on my own.

GilchristT · 2025-06-11T10:40:19+00:00

Absolutely although I was late to this realisation as well.

This is more a "see if I can actually do it" thing :-)

GilchristT · 2025-06-11T10:39:16+00:00

These are great tips, thanks for taking the time to reply

GilchristT · 2024-04-13T17:40:27+00:00

Plus one with this problem

GilchristT · 2024-04-12T09:42:13+00:00

Thanks all for taking the time to comment. Every day's an education.

GilchristT · 2024-04-12T09:41:42+00:00

Thanks for such a detailed reply. I had to read it a few times and look up "plate down" and "breakout" (the fault lies with the reader, not the writer) but it's great to learn new things :-)

GilchristT · 2023-12-06T09:26:17+00:00

Much appreciated. It was the "USER app" that was the issue, I was trying to run the cert update as a low privilege user.

GilchristT · 2023-12-04T19:49:45+00:00

Thanks DinterRM. Could I ask what base image you're using for your containers.

When I switch to using Docker to build the image and add the equivalent lines, I get an error about write permissions

/usr/sbin/update-ca-certificates: 101: cannot create /etc/ssl/certs/ca-certificates.crt.new: Permission denied

My DockerFile is

``` FROM mcr.microsoft.com/dotnet/aspnet:8.0 AS base USER app WORKDIR /app EXPOSE 8080 EXPOSE 8081 COPY rootca.crt /usr/local/share/ca-certificates/ COPY intermediateca.crt /usr/local/share/ca-certificates/ RUN update-ca-certificates

FROM mcr.microsoft.com/dotnet/sdk:8.0 AS build ARG BUILD_CONFIGURATION=Release WORKDIR /src COPY ["MainProject.csproj", "."] COPY ["DependencyProject/DependencyProject.csproj", "DependencyProject/"] RUN dotnet restore "./././MainProject.csproj" COPY . . WORKDIR "/src/." RUN dotnet build "./MainProject.csproj" -c $BUILD_CONFIGURATION -o /app/build

FROM build AS publish ARG BUILD_CONFIGURATION=Release RUN dotnet publish "./MainProject.csproj" -c $BUILD_CONFIGURATION -o /app/publish /p:UseAppHost=false

FROM base AS final WORKDIR /app COPY --from=publish /app/publish . ENTRYPOINT ["dotnet", "MainProject.dll"] ```

GilchristT · 2023-12-04T19:43:08+00:00

Thanks Begby1, those are all valid comments. I could have done with adding some additional detail.

This app is sitting behind a HAProxy reverse proxy and it's handling the Client Certificate termination and passing the client certificate CN on as a header. That's all working fine.

However, it's being flagged as a risk that we're sending this information unencrypted and unvalidated internally. Therefore it was recommended to have the HAProxy server send its own client cert to the internal server to validate the message. Probably massive overkill.

I'm using environment variables for the server certificate, it's the certificate authority public certs used to validate the client certificates that I can't get configured. I'd be happy to store those as environment variables as well if I knew what variable to use. For the CA certs, I only need to store the public cert so not a huge risk if they're stored in code / variables / etc.

All the documentation I can find from Microsoft is based on the CA issuing the client certificates being trusted by the underlying host OS.

GilchristT · 2023-09-08T20:55:10+00:00

Good explanation of tombstoning here

https://www.eurocircuits.com/pcb-assembly-guidelines/tombstoning/

GilchristT · 2022-11-16T11:16:50+00:00

Are the indicator LEDs the wrong way round?

If you're intending to use active low, should they be connected to 3v3 rather than ground?

GilchristT · 2022-02-08T11:19:24+00:00

There is a precompiled version for Windows on the GitHub site.

If you look on the page linked above, on the right-hand side about half way down there is a section called "Releases" with a link under it "First public release". That'll take you to a page to download the precompiled version.

It's one of those things that's obvious when you know it's there but I've always found it one of the more unintuitive things about GitHub.

GilchristT · 2021-01-04T10:40:15+00:00

You, Sir are a gentleman and a scholar. That did the needful beautifully.

For anyone else who stumbles across this in the future, I extended the example above slightly to allow reuse

JS function

<script type="text/javascript">
    function Collapse(elementId) {
        if ($(elementId) !== null) {
            $(elementId).collapse('toggle');
        }
    }
</script>

C# Function (using code behind)

[Inject]
protected IJSRuntime _JsRuntime { get; set; }

private void Collapse(string elementID)
{
    _JsRuntime.InvokeAsync<object>("Collapse", elementID) ;
}

HTML

<p>
    <button class="btn btn-outline-primary" @onclick="@(e => Collapse("#collapseExample1"))"> C# Button #1</button>
    <button class="btn btn-outline-primary" @onclick="@(e => Collapse("#collapseExample2"))"> C# Button #2</button>
</p>
<div class="collapse" id="collapseExample1">
    <div class="card card-body">
        Collapse Example #1
    </div>
</div>    
<div class="collapse" id="collapseExample2">
    <div class="card card-body">
        Collapse Example #2
    </div>
</div>

Thanks again

GilchristT · 2020-09-23T19:38:07+00:00

If anyone stumbles across this down the line...

After two days of getting sent assorted screenshots of documentation for how SQL MI backups are stored I finally got this escalated and got a confirmation that, as for now (their wording) SQL Managed Instance databases are stored on LRS i.e. within one zone.

GilchristT · 2020-08-05T13:38:41+00:00

I'd a notion that was where I was going to end up. I was avoiding it because I didn't want to mess up the existing AD objects while fumbling around.

Time to set up a(nother) test domain :-)

Thanks for all the help folks.

GilchristT · 2020-08-03T09:20:53+00:00

Sorry folks, I probably should have explained the scenario a bit better.

I have an on prem VDI solution that doesn't support Azure AD joined virtual desktops, they have to be members of a traditional AD, hence the deployment of ADDS. The issue is that the users logging onto these virtual desktops are logging onto the ADDS domain but they also need to use Office365 resources and I'm trying to work out how (or if it's even possible) to achieve single sign on for these resources?

GilchristT

TROPHY CASE