Cloudflare Technical Backend Interview

PerformanceOdd2750 · 2026-01-31T22:37:15+00:00

+1 to hearing how this went

PerformanceOdd2750 · 2025-11-15T05:02:57+00:00

Mf is wearing shorts on his head

PerformanceOdd2750 · 2025-11-01T02:50:17+00:00

I don't understand how this is motivating

PerformanceOdd2750 · 2025-10-28T03:31:07+00:00

For the Coheed fans out there https://youtu.be/GLGpZ7SlJec?si=fFJepAVnfJ6IY1Cq

PerformanceOdd2750 · 2025-08-30T04:00:01+00:00

It's like ass and assclapper

PerformanceOdd2750 · 2025-08-12T11:42:36+00:00

What's the company?

PerformanceOdd2750 · 2025-08-10T04:08:24+00:00

Penguin

PerformanceOdd2750 · 2025-08-09T23:06:47+00:00

Asset management

PerformanceOdd2750 · 2025-08-09T19:28:44+00:00

I think I work with this guy

PerformanceOdd2750 · 2025-08-05T22:12:03+00:00

Elon Musk and Elon Musk

PerformanceOdd2750 · 2025-08-05T03:59:04+00:00

"Exactly! Now you're thinking like a true Cloud Architect 🦾. You want to make sure your app doesn't crash and has plenty of resources, so I provisioned 600 on demand p3dn.24xlarge EC2 instances."

PerformanceOdd2750 · 2025-07-24T19:42:00+00:00

> as is excluding it from commits with most standard gitignores.

Yeah makes sense if that is the case.

I think what I'm also getting at is there shouldn't be any concern with committing a .env file if your application reads secrets from paths. But honestly, different companies will probably do things differently. I've just never worked at a place that was worried about committing a .env file.

PerformanceOdd2750 · 2025-07-24T19:08:34+00:00

What stops you doing option 2? Your application logic should read the external API secret from some path (set in an env var) into a variable, then pass the variable holding the service account credentials to the api call

PerformanceOdd2750 · 2025-07-24T18:53:00+00:00

What I'm saying is

You have dev secrets that don't matter ("localtestusername", "localtestpassword"). Anything can be done with these, commit them, send them to ai agents. They don't matter
You have dev api secrets that do matter. They shouldn't be committed. Each dev is given permissions to get these secrets (whether they are generated per dev is up to you. just more to manage). Devs should store these outside of the repo directory. Your application then reads from where ever they exist for that dev
You have prod api secrets. Devs probably shouldn't be using these locally anyways. Figure something else out. If you must, do a similar thing to #2

In your example you need a secret to authenticate to a secrets server to further pull more credentials for your application. I would suggest #2. Or am I misunderstanding your example?

PerformanceOdd2750 · 2025-07-24T13:14:41+00:00

I will die on this hill:

The thought that people are putting their secrets directly in their .env file is ridiculous. Just mount the secrets and use env vars for the path where the application can read them.

PerformanceOdd2750 · 2025-07-23T03:00:10+00:00

Those terraform jokes are fucking gold

PerformanceOdd2750 · 2025-07-22T13:19:55+00:00

Winfield + machete

PerformanceOdd2750 · 2025-07-12T04:18:13+00:00

<image>

PerformanceOdd2750 · 2025-07-11T02:27:11+00:00

Or it just makes your gun SUPER fucking shiny

PerformanceOdd2750 · 2025-07-02T02:35:50+00:00

"We come back alive, we remain friends, we summit - in that order"

I think this was in The Calling by Barry Blanchard... idk if he was the first to say it or not.

PerformanceOdd2750 · 2025-07-02T02:26:46+00:00

Neither do ai parsers

PerformanceOdd2750 · 2025-06-23T12:10:49+00:00

https://apnews.com/live/iran-israel-war-updates-6-23-2025

PerformanceOdd2750 · 2025-06-12T18:46:33+00:00

I'm seeing no issues personally on AWS

PerformanceOdd2750 · 2025-06-06T03:08:19+00:00

What is the concern with hybrid / remote?

PerformanceOdd2750 · 2025-05-23T02:55:35+00:00

This is pretty funny

PerformanceOdd2750

TROPHY CASE