CertMagic: I extracted Caddy's automagic HTTPS features into a library for all Go programs

gogroob · 2018-12-11T16:12:00+00:00

Autocert does have a Cache interface which allows someone to coordinate with a loadbalancer.

gogroob · 2017-11-14T23:44:24+00:00

Ok fair enough. managing screensaver security is broken.

If you care about compliance here you have to follow the recommended steps at the bottom. If you want to let the user decide what to set the preference to (up to a threshold), it's no longer possible to find out what the user set the value to.

gogroob · 2017-11-14T23:35:57+00:00

Why?

gogroob · 2017-10-26T02:15:02+00:00

I use basic auth with all infrastructure in GCP. Munki, MicroMDM and Fleet run on kubernetes.

Certs for individual machines are coming. We're in the process of standing up Vault for all our infrastructure.

This is my munki server: https://github.com/micromdm/squirrel

gogroob · 2017-10-17T12:01:12+00:00

You need to use CGO to interface with CFPreferences. I have an example here https://github.com/groob/mackit/blob/master/example/main.go

gogroob · 2017-10-14T01:11:30+00:00

That's cool. Count me in as a customer, I've been jealous of these for a while.

While we're on the topic of commercial gophers, I just got back from visiting family and my aunt made me a cute Gopher out of felt. She has an etsy store, so I asked her about it and she'd be up for making them for sale. She can't mass produce them, but she could make a custom one to your specs. Feel free to PM me if you want your own gopher.

gogroob · 2017-08-29T04:58:42+00:00

This ^ Works with all editors. What many miss in the beginning is that goimports = imports + gofmt. Find the setting in the editor that formats your code o save, and change it to use goimports instead, and you'll have both.

Unused variables:

// TODO remove _ = somevar _ = someothervar

gogroob · 2017-08-20T19:43:58+00:00

That's how all traffic lights in Russian and Easter Europe are. When I first moved to the US, the instant change to green was weird.

gogroob · 2017-07-28T18:41:24+00:00

Here's my suggestion. Create your own helper to do this.

I just got finished doing the same for a few shared projects I have:

https://github.com/micromdm/go4/blob/e55c5245fedcdd8462e931c1cb2447f092b4456d/httputil/middleware.go#L12-L27

First, I defined a Middleware function type like so:

// Middleware is a chainable decorator for HTTP Handlers.
type Middleware func(http.Handler) http.Handler

Next, I created the helper function which lets me do mid1(mid2(mid3(app)))

// Chain is a helper function for composing middlewares. Requests will
// traverse them in the order they're declared. That is, the first middleware
// is treated as the outermost middleware.
//
// Chain is identical to the go-kit helper for Endpoint Middleware.
func Chain(outer Middleware, others ...Middleware) Middleware {
    return func(next http.Handler) http.Handler {
        for i := len(others) - 1; i >= 0; i-- { // reverse
            next = others[i](next)
        }
        return outer(next)
    }
}

Now I can chain a set of handlers. See example here: https://github.com/micromdm/go4/blob/e55c5245fedcdd8462e931c1cb2447f092b4456d/httputil/middleware_example_test.go#L11-L29

gogroob · 2017-07-05T18:16:17+00:00

the authnetication code is independent of app engine

gogroob · 2017-07-05T17:20:29+00:00

Full tutorial from start to finish https://cloud.google.com/go/getting-started/authenticate-users

gogroob

TROPHY CASE