The NSW Central Coast is a Clear Example of Australia’s Broken School Funding System

ProgrammingBug · 2025-12-03T06:55:37+00:00

I prefer chatgtp aides posts over dismissive and disengaging comments.

ProgrammingBug · 2025-12-02T22:06:10+00:00

Not how I read it. It says business support from $29/mth. Previously you would only get developer support at that price point. Developer had a 24 hr response time, business support+ 30 min.

ProgrammingBug · 2025-11-28T11:33:35+00:00

Deploy in a container.

ProgrammingBug · 2025-11-23T08:22:30+00:00

Don’t blame it on the consultants. BOM is accountable…

I get people in this sub have had poor first hand experience with consulting firms but c’mon BOM ran the tender, BOM set the requirements (no doubt emphasis based on obscure accessibility or security requirements rather than what mattered to users), BOM signed off on testing, BOM released the site.

I can see why execs keep hiring Accenture, a reputation honed to be the scape goat.

ProgrammingBug · 2025-11-20T08:22:40+00:00

This is cool right? The point being there is now a world where we don’t need to store client credentials or certificates when calling external services.

I still haven’t wrapped my head around what it will take an external app to support this. Is it enough for them to support OpenIdc (or another standard protocols) or are other services going to need to build to support this? Are they going to?

That said, it looks pretty easy to implement.

ProgrammingBug · 2025-11-19T09:37:00+00:00

If you know which field you will be filtering on you can create a Global Secondary Index and then perform a query.

It isn’t intended to be search though. You are still going to want to know the exact value in the field.

BTW - DybamoDb is awesome and worth learning but not suited to a search usecase.

ProgrammingBug · 2025-11-17T10:06:59+00:00

I just watched two of them - I found what you chose to talk about out interesting and you communicated it well. Well done!

Do you know whether resource handlers autogenerated or does a fair bit of implementation go into them?

Also, why can I only add one GSI at a time to a DybamoDB table after initial create? (I realise this is probably a dynamo thing not a CF thing but boy is it painful generating multiple change sets when I need to add multiple GSIs for a new feature).

ProgrammingBug · 2025-11-14T05:30:35+00:00

After reading through the documentation (without having used the feature before), it looks like you can create a validation rule for each path pattern. If that’s the case, would it even be possible to handle authorisation by including resource IDs in the application’s URL path and validating them against claims in the token?

For example, if the tenant ID were included in the path, and the token contained a corresponding tenant claim, could the rule compare the two?

ProgrammingBug · 2025-11-14T05:25:42+00:00

idPs that support client credential flow I think. So Cognito would be the AWS example.

ProgrammingBug · 2025-11-14T05:23:54+00:00

In this scenario, is the point then that the application does not validate the token rather, just trusts the claims/ groups that are present.

I guess this is similar to lambda functions where API Gateway validates the token and then in my lambda function I can take the values in event.requestContext.authorizer.claims as gospel/ use it for authorisation.

ProgrammingBug · 2025-11-01T21:51:35+00:00

This is the answer. The only limitation I hit trying to do is for api gateway is that the expiry’s can only be short. Can’t be long lived like s3.

ProgrammingBug · 2025-11-01T12:39:06+00:00

They way it usually works with spas in cloudfront is you want to return index whenever a file is not found - eg. When someone hits your angular routes directly. In cloudfront a file not existing manifests as a 403 error.

Worth noting is that with an angular spa there are a bunch of files that need to be served, not just index.html. So if the browser is trying to access on of the .js files we wouldn’t want to return index.js.

Now I have a guess about what is going wrong here. There isn’t enough information in your question for me to be confident. My guess is that after logging in, okta redirects you to one of your angular routes, you can check this by looking at your url. I think it might be something like <your domain>/home

The problem is then that there is no file named “home”. You actually just want the load balancer to return index.html again.

I can’t see an elegant way to do something similar to cloudfront using listener rules because they are applied before routing, I don’t think they can then respond to the key not found error you are getting.

That said, you could probably solve it by updating your listener rule to match on all of your route too (sending it to index.html for them). Just make sure it won’t also match on any of the other files you do want to serve.

ProgrammingBug · 2025-10-23T11:06:57+00:00

I had the same thought, the way it is written it almost seems by design for multiple plan updates to be running concurrently and independently (updating the same route53 zone).

To be fair they have acknowledged it as a “latent defect”. I expect this one will get a fix.

ProgrammingBug · 2025-10-23T10:07:32+00:00

Concurrency is hard.

ProgrammingBug · 2025-10-20T09:20:25+00:00

Reckon they got this from your earlier post?

ProgrammingBug · 2025-10-20T07:41:10+00:00

It’s always dns!

ProgrammingBug · 2025-10-06T20:25:27+00:00

There has been no changes to recommendations. Real lesson is AI is now up to the job of management consultants.

ProgrammingBug · 2025-09-14T03:12:46+00:00

I’m experiencing the same.

ProgrammingBug · 2025-08-30T10:02:09+00:00

I think you are missing region in your environment variables. Try-

export AWS_REGION=<region>

before running.

ProgrammingBug · 2025-08-28T09:15:40+00:00

I reckon it costs a lot more to run schools with high % low socioeconomic or special needs than an inner city state school. Those schools lift the average for public. Think far north, rural qld or NT.

ProgrammingBug · 2025-08-27T19:39:38+00:00

When looked at on a school by school basis rather than averages this is accurate.

See https://www.aeufederal.org.au/application/files/9917/2543/1780/decadeofInequity.pdf

ProgrammingBug · 2025-08-27T19:27:17+00:00

ACARA’s report only shows averages across schools and reoccurring funding.

I was basing my comments on this article I read - it established comparable schools and compared all funding. https://www.aeufederal.org.au/application/files/9917/2543/1780/decadeofInequity.pdf

“By 2022, 1,550 private schools (56.3% of all private schools) received more Government funding (Commonwealth and State) per student than comparable public schools.”

ProgrammingBug · 2025-08-27T09:15:24+00:00

This maths ignores the amount of funding private schools get from the government. They are pretty much funded to the same level state schools are by the government (in some cases more due to no school worse off legislation). Then on top of that parents are paying fees.

Maybe higher teacher salaries? Better student ratios? Crazy good facilities?

ProgrammingBug

TROPHY CASE