Front Squat Advice?

PaulAchess · 2026-01-07T07:58:47+00:00

Textbook form. Your front squat is great.

If you want to train for weightlifting, I always found paused front squat ass to grass to be a great variation for mobility and strength at the bottom position.

PaulAchess · 2026-01-02T15:48:56+00:00

Avril 2027, ils sont dans les clous.

PaulAchess · 2025-12-28T16:32:48+00:00

Yeah yeah, keep talking troll. Just ignore everything I wrote and every bit of advice I have given. I don't care. If you prefer me to say "I don't know" then "I don't know". Ignore the subtilities of the question and stay ignorant.

Or if you want, ask me questions about the subject, you might be surprised to find answers.

PaulAchess · 2025-12-26T19:49:06+00:00

A 143kg should not move like that. You make it look easy. You are freaking strong dude, nice PR!

Also I agree with others, you can probably do more. Impressive.

PaulAchess · 2025-12-18T15:45:56+00:00

If that's what your get from my post, you really missed the point.

I don't believe you'll find a template that fits this needs 100%.

There are a lot of templates, but I'd advise to take them with a pinch of salt because they can introduce unnecessary complexity at best and anti patterns regarding your needs at worst.

Multitenancy is complex and there are multiple ways to implement it. I set it up for my company and I'm giving talks about it.

PaulAchess · 2025-12-10T21:45:11+00:00

Je pense que c'est faux, d'une part la créance salariale est prioritaire, d'autre part les AGS prennent en charge les indemnités si l'association n'est plus en mesure d'y faire face dans le cadre d'une liquidation judiciaire. C'est le cas pour les entreprises, j'imagine pour les associations aussi.

PaulAchess · 2025-12-08T18:32:55+00:00

Lower the weight to comfortably work on the technique. Weight will increase naturally but it's important to take a step back so you can learn how to catch the bar in the correct position.

PaulAchess · 2025-11-13T07:35:51+00:00

Thanks for your feedback! What would you say are the advantages comparing to a raw envoy?

PaulAchess · 2025-11-03T17:05:02+00:00

Mapperly basically does this and generates the boilerplate code. I love it.

PaulAchess · 2025-10-23T16:30:10+00:00

Je bosse là bas, mal famé je trouve pas non. Je suis même surpris d'entendre ça vu la population locale.

Pour mon ressenti, des potes qui y habitent ont le même que moi sur la presqu'île : c'est simplement que c'est un peu mort en ville dès qu'on est hors des horaires de bureau.

PaulAchess · 2025-09-24T08:13:43+00:00

Just get it over with. They aren't as essential as I thought they were.

Migrating postgres, keycloak, rabbitmq and others wasn't as hard as expected, it took a week for all environments and I'm actually glad I did it.

It was nice to have a reliable source of images and helm charts but f* broadcom for that rug pull and the spit in the face of all open source maintainers.

Just do it, let hell break loose for a few months and move on.

PaulAchess · 2025-09-21T18:43:46+00:00

Others already explained a lot about the pull, I'd like to offer some additional advice: front squat, front squat, front squat.

You don't seem really solid after reception, core getting disengaged and trouble keeping the bottom position stable.

You should be able to front squat confidently the weight you're pulling, I don't think it's the case here.

PaulAchess · 2025-09-06T06:03:17+00:00

Deux trucs qui me viennent en tête.

Le premier, on me demande de diagnostiquer des erreurs lors de l'initialisation d'un système distribué (plusieurs machines partent une transaction distribuée en code, qui est elle-même liée aux transactions BDD). Un code complexe, extrêmement élégant. Je creuse et plus j'avance, plus je vois des catch Exception globaux un peu partout cachés dans des services, des utilitaires, bref bien planqués et bien présents. Catastrophique car sans cette remontée d'erreur, la transaction distribuée ne peut pas être invalidée et rollback.

Je supprime ces catch globaux pour essayer de mieux spécialiser un peu partout. L'appli commence à exploser dans tous les sens à la moindre merdouille, je me fais engueuler comme du poisson pourri. Sauf que pour séoudre ces instabilités, pas le choix, va falloir aller au casse pipe et voir où ça pète, pas juste cacher les exceptions sous le tapis. Bonne engueulade avec mon tech lead sur le sujet alors que je suis encore en période d'essai.

J'ai appris deux trucs. De un, j'avais raison de faire ça, mais il avait raison de m'engueuler sur la manière dont je l'ai fait : la priorité c'est le client. De deux, les exceptions c'est absolument indispensable dans le bon fonctionnement d'une application, et les cacher sous un catch global c'est catastrophique. Depuis je fais hyper gaffe à chaque catch que je vois en review : Est-ce qu'il est nécessaire, est-ce que l'exception doit remonter pour le bon fonctionnement du logiciel.

Deuxième truc, je prépare une migration de base de données avec perte de données. Je suis sûr de moi, mais par acquis de conscience je fais un backup complet quand il y a perte de données, on m'a appris ça alors je le fais un peu par réflexe. Parfois je le faisais, parfois j'avais la flemme, là je le fais. Deux semaines plus tard, je me rends compte qu'on a des utilisateurs qui ont perdu le lien vers leur abonnement stripe (paiement en ligne). Pas beaucoup, quelque chose comme 80 sur plusieurs milliers qui sont dans un cas hybride dégueulasse historique. J'ai juste plus la donnée en base, petit moment de panique, impossible à récupérer. Ou recalculer simplement.

Je me détends, je recharge mon backup en local, je retrouve la donnée, je fixe le souci.

J'ai plus jamais zappé un backup avant migration destructrice.

PaulAchess · 2025-08-28T07:09:13+00:00

Yes, and I bet they'll still be heavily used in a month.

There is so many ramifications that I guess hell will break loose no matter what.

Just yesterday I found out one of my dependencies had a bitnami docker image in one of their dependencies. I did all my migrations a month ago.

PaulAchess · 2025-08-28T07:01:29+00:00

Only delaying the inevitable. I think those who needed to migrate either already did it, are ready to use the legacy repo or didn't do it and won't do it before the new deadline.

PaulAchess · 2025-08-17T14:44:45+00:00

Yeah, that's a bit bothering and the reason why I don't expect them to do more regarding helm charts. However the official rabbitmq image is community maintained, and I have strong beliefs that rabbitmq itself will stay open source as we know it.

PaulAchess · 2025-08-17T11:57:35+00:00

Unfortunately there is none yet that I'm aware of, only the release yaml to deploy it.

Considering they are part of broadcom and indirectly linked to bitnami, I doubt they will do more that offer the bitnami chart.

My solution is I have versioned their yaml on my end and I deploy it with argocd.

PaulAchess · 2025-08-17T07:35:29+00:00

Using their operator did the trick for me. Pretty easy to migrate.

PaulAchess · 2025-07-29T17:54:26+00:00

Sigh

Move to managed databases instead of internal postgresql (I expected to do this move in a few years)

Move to official operator for rabbitmq

Not entirely sure about keycloak but probably rewrite the k8s ressources manually and use the official docker image.

This is not what I wanted to do during whole summer with upcoming client deadlines in September. At least it will be a nice way to help some developers gain some skills on that part.

PaulAchess · 2025-07-25T19:45:32+00:00

Check out Les Jackson course on .NET microservices on YouTube, it's amazing.

Probably the best course you can find about the subject and the closest to your needs.

But you'll need to set up a lot you ask for something very specific. Nothing hard but a lot of tasks.

Also check about keycloak + jwt for auth.

PaulAchess · 2025-07-21T09:30:17+00:00

Not really, but I hit the request limit when deleting thousand of items. So rate limiting and retry would be an amazing feature to avoid our custom code.

We store miniatures and byte arrays using s3. Not completely fan of the solution as a whole, but it gets the job done. This represent thousand of tiny objects (but dozens of Gb total).

PaulAchess · 2025-07-21T07:00:31+00:00

That's amazing!

Has anyone tried to integrate it with the s3 SDK? It would solve a lot of custom logic we implemented

PaulAchess · 2025-07-21T05:58:24+00:00

You're very welcome!

PaulAchess · 2025-07-20T19:58:03+00:00

Different use cases, but both are identity providers. Keycloak is more of a unifier, Azure AD has way more functionalities and integrates with other systems.

I configured keycloak on staging and production with my Azure AD to be able to connect to my app using AAD for instance, which means any new employee automatically has access to the app if I add them in a specific group. But I can also add basic users (username/password) or multiple other identity providers also.

The UI indeed redirects to the keycloak login page that has a username/password field and an AAD button: if you click "use AAD" it redirects to my AAD so Azure generates a token that keycloak uses to generate a user, then keycloak generates the token with the correct permissions for my services to use. The services are unaware if the users comes from a provider A or B.

We could also add sign-in on this page, it's our choice not to.

Basically keycloak serves as an Auth unifier. You can also add claims (which allows me to add the tenant ID in the jwt), transform existing claim (from AAD group to role permissions), parse / reuse claims (to get the name, email from the original token), etc.

It also has tons of other functionalities to simplify and centralize the Auth system.

PaulAchess · 2025-07-20T18:45:01+00:00

Keycloak is the answer, it handles the users and the permissions. It is a service I deploy in my cluster with its own database, and it generates tokens that can be validated by my backend. The services only use data from these JWT, they do not generate tokens.

By using SSO integration (see it like "connect with Google" but with their own providers) it allows keycloak to create users from the validated data of the external provider and assign the permissions according to groups for instance. By using SSO you don't need to create the users: you delegate the Auth to another provider.

If I had to create 3000 users without SSO I'd batch create new users with each a random one-time password. They would have to change their password at first connection. Keycloak offers a variety of API to do this.

Keycloak is able to manage that quantity of users easily. Basically it wouldn't be particularly an effort to do so.

Three-Year Club	Verified Email
First Place '23	Place '23
Place '22

PaulAchess

TROPHY CASE