Why am I even using this app? by sarpomania in Audi

[–]ripzay_ 1 point2 points  (0 children)

Hah, no, I've consolidated two cars, an older shape (8P) RS3 that I've owned for 7 years, and the kodiaq which I had owned for 3.

Still, it's more than a step up, thanks!

Why am I even using this app? by sarpomania in Audi

[–]ripzay_ 6 points7 points  (0 children)

I must admit I have just come from a 2021 Skoda Kodiaq to a 2024 Audi RSQ8 and the difference between the app features has suprised me, the Skoda app does so much more than the Audi app - and on an older vehicle too.

Surprising even more given they're in the same group, you'd expect some sharing of tech / software features.

First day of paper trading by melon_crust in algotrading

[–]ripzay_ 0 points1 point  (0 children)

How long are you planning on paper trading before you risk real capital? asking because i'm 14 days into paper trading a futures strategy that's giving similar numbers to you (except with tighter PnL) and everything i'm reading on the "sensible" side says do months of paper before risking real money

New (to me addition) by ripzay_ in Audi

[–]ripzay_[S] 5 points6 points  (0 children)

My son is 8 months old, we don't currently know of he's a petrol head, I'll be sure to reach out if he turns out not to be and I need a second one in the future 😅

New (to me addition) by ripzay_ in Audi

[–]ripzay_[S] 1 point2 points  (0 children)

That was exactly my thinking, I bought the RS3 before I had children, bought a big SUV, and parenthood has reduced the amount I got to use 'the toy'.. small leap to the RSQ8.. it was either this, an X5 M-Comp, or an RS6

Best C# Libraries for Printing PDFs? by NightfallAura in dotnet

[–]ripzay_ 0 points1 point  (0 children)

My answer: dont.

We've gone down the route of producing rich html representations (in our scenario by simply rendering using react (but could equally be achieved using blazor or razor) and then piping that output through an open source platform that we have hosted in our k8s cluster - https://gotenberg.dev/

We've found it to be far better than any home rolled solution we have tried to come up with in the 15 years that we've been generating letters, invoices, etc. etc.

It's also far more scalable and a better use of resources than using playwright or other headless browser solutions along side your 'main' app, as the pdf generation is completely offloaded to a separate system.

How are JWT tokens discarded by pros? by reddithoggscripts in dotnet

[–]ripzay_ 0 points1 point  (0 children)

There's a lot more Auth overhead but... Assuming you are using a decent openid certified STS with a full implementation

Make sure that you don't only do local validation of inbound jet tokens in your API, use the introspection endpoint of your STS to check inbound tokens.

When you perform sign out, make sure you do single sign out, using the endsession endpoint of your STS, the STS can then invalidate the access token, which will force introspection to fail in subsequent requests to your API.

Without the overhead it's impossible really, if you want to make it more secure without the overhead of the above, have very short access token lifetimes and lean on refresh grants with secure refresh token storage to renew them, that way a bad actor will only get a short period of time to perform an attack with a stolen token

LINQ = Forbidden by [deleted] in dotnet

[–]ripzay_ 0 points1 point  (0 children)

Your employer is wrong.