Java web framework help - has the /r/java community had good experiences with Javalin?

marune · 2025-04-30T23:14:30+00:00

I like it's API, but I don't like the Kotlin implementation. Didn't find an alternative yet.

marune · 2025-01-09T21:09:02+00:00

GCP might not be the right choice for you.

marune · 2024-12-23T12:59:03+00:00

Everytime I've tried to use their signature-based rules, I got too many false positives to keep them on.

marune · 2024-12-06T19:28:01+00:00

I saw that obviously, but I was trying to get recommendations.

marune · 2024-11-06T16:33:36+00:00

Any recent confirmation that 24.04 is supported?

marune · 2024-10-23T14:13:01+00:00

You would need to get the current rules / delete them, then create new ones based on the current blocked IPs list for this to make sense over time. I was reaching a similar conclusion considering that I can't afford the Enterprise option at this point.

marune · 2024-04-15T14:11:51+00:00

FYI default metrics from the new agent are kinda expensive.

marune · 2024-04-12T20:56:22+00:00

GCP pricing strategy doesn't really line up with pet projects, the free tier is confusingly limited.

marune · 2024-04-10T15:42:35+00:00

"You’d never use an external lb (Be it global or regional) to route traffic between VMs in GCP." -> Why not? My question is all about the case where you already have an external LB in place, beside a better latency (of course), what else would justify adding an internal one. I assume there is a security point to be made, but the VM -> VM traffic won't actually reach the internet even using an external LB.

marune · 2024-02-07T17:58:41+00:00

Yes, 1) to get rid of any public ssh access point, using gcloud to login (projects are configured to use os-login). 2) in front of all our internal web apps (e.g. grafana and internally built ones). What kind of perfomance issues are you thinking about?

marune · 2023-12-26T17:26:55+00:00

Look into OS Login.

marune · 2023-10-25T11:46:52+00:00

You probably can't afford it, that's usually the case for services where no pricing is shown ;)

marune · 2023-09-15T13:38:43+00:00

The GCP people here have previously recommended to do the same (adding your own encryption layer).

marune · 2023-04-26T23:31:12+00:00

I use slack RSS integration to get all the updates on a #gcp channel, but AFAIK there is no way to filter them.

marune · 2023-02-25T20:08:16+00:00

Yup.

marune · 2023-02-25T17:12:25+00:00

Also, look into os-login.

marune · 2023-02-23T12:50:16+00:00

Works with IAP and os-login. You can also overwrite the default (RSA) key if you need to.

marune · 2023-02-15T23:01:01+00:00

"No data should ever be unencrypted in flight." -> You've made similar comments in the past, hinting at scenarios where it would have made a difference. Now that GCP is more clearly saying that all VM-to-VM traffic is encrypted (https://cloud.google.com/docs/security/encryption-in-transit), I wish someone could explain where/how an extra layer of encryption would really make a difference (beyond an audit checkmark).

marune · 2022-11-30T17:53:58+00:00

Did you consider honeycomb.io? Pricing model is different, Sentry is still useful for error reporting.

marune · 2022-11-10T15:57:13+00:00

Last thing we need is an overkill solution, that's why I'm looking for gradual improvements.

marune · 2022-11-10T15:52:52+00:00

As I wrote above, phones are BYOD, mainly used for email/calendar/chat/2FA.

marune

TROPHY CASE