On Ruby & computing

My writing on coding & working in the tech space.

Rails session cookie `domain: :all` - beware of CNAMEs!

Let’s look at the security implications of a Rails session :cookie_store with domain: :all. It is a convenient way to allow users to be authenticated across subdomains, however, any subdomains as CNAMEs which map third-party services will also receive those session cookies.

read full article

The CSS z-index: a short guide

The z-index: of CSS can be very confusing… You set it and nothing happens or whatever value you choose the element wont appear on top.

“Why is it not working?” I hear you scream…

Don’t despair! This blog post is a short dive into how it works.

read full article

newsletter

Get a monthly roundup of my latest content

You can also find me on Mastodon and Twitter