On Ruby & computing

My writing on coding & working in the tech space.

Rails session cookie `domain: :all` - beware of CNAMEs!

Let’s look at the security implications of a Rails session :cookie_store with domain: :all. It is a convenient way to allow users to be authenticated across subdomains, however, any subdomains as CNAMEs which map third-party services will also receive those session cookies.

read full article

The CSS z-index: a short guide

The z-index: of CSS can be very confusing… You set it and nothing happens or whatever value you choose the element wont appear on top.

“Why is it not working?” I hear you scream…

Don’t despair! This blog post is a short dive into how it works.

read full article

JavaScript & the magic of 'NaN boxing'

Some JavaScript engines represent all data types internally using just floating point values! But why? And how does it work? Let’s look at ‘NaN boxing’!

read full article

Get a monthly roundup of my latest content

You can also find me on Mastodon and Twitter

Native lazy-loading for image tags in Rails

Rails has made it possible to enable browser built-in lazy-loading of images across your whole app.
Find out about the feature, how to enable it & what to consider before doing so.

read full article

On Ruby & computing

Rails session cookie `domain: :all` - beware of CNAMEs!

The CSS z-index: a short guide

JavaScript & the magic of 'NaN boxing'

newsletter

Native lazy-loading for image tags in Rails