devRant - A fun community for developers to connect over code, tech & life as a programmer

I just realized I posted the same message as comment below a different rant. Double posting was not my intention. Sorry to everybody I confused by that.

Hacktoberfest is already out of shirts :( I know, it is weird to be sad about not getting something for free and borderline choosing-beggar, but damn this year's shirt looks sick.

I feel a bit cheated :(

#hacktoberfest #noShirtsLeft #sad

@magicMirror If I could switch to AUTO select, I would. But I cannot switch from VGA to AUTO unless a signal is on the VGA port. And if you have a signal on both inputs (VGA and DVI), the DVI takes precedence.

I switched explicitly to VGA as I wanted to see that input. Then detached the test device and forgot to switch the display back to AUTO. Now the monitor refuses to start until I hook the test device up, give the display some VGA signal and then it allows me to switch back to AUTO.

@sbiewald But that would be OAuth ("Login with X") and usually is displayed as a button of the authentication provider, right?

I'm not familiar about logging into Microsoft accounts with Dell so maybe it works that way.

@sbiewald That is a fair point. But would that matter for the task "fetch credentials from the user"? Wouldn't the backend route your data to the correct provider and verify it?

It is started after logging in, so switching to TTY1 before logging in is an option.

Like they say "If we set the value there, the [website] can broadcast it."

No, a webserver is not "broadcasting" anything. Just say "it will be displayed on page X" instead of "the value will be broadcasted". Stop sales-speaking to me.

@ostream Oh, I guess that is a misunderstanding. I expected that it is not overtime (as in working more hours than agreed on) but shifting the time you work. It probably depends on the contract, mine states that I have to work X hours a week and it does not specify mandatory start and end time. But I see your point about not wanting to work overtime, I wouldn't do that as well.

But shifting my daily working time as an exception, I think that is fair to ask for.

@ostream I guess no organization is powerful enough to create timezone overlaps. Maybe after achieving world domination, they get access to some funky continent-moving tech which would allow moving timezones closer together.

@jasongodev It's funny. My rant is inspired by an actual issue at work. I get frustrated, head to devrant to rant about it and see yours on the front page and think "Hey, at least I'm not suffering alone"

@jasongodev Oh god yes. I've heard about it in an university course. In the feedback, I suggested to teach OAuth2 next year as it is way more established in the industry.

So when you have to suffer a weird authentication flow, at least it should be worth it.

@IntrusionCM I did a little bit because I wanted the PR approvers back on the view. The client side seems chaotic.

I resorted to writing a user script to get that functionality back.

I know, I was kidding with my previous reply and tried to shoehammer the webview into it. ;)

Working with bluetooth should be easy with native Java code on Android. And the UI looks better in native android components IMHO. But that is not what marketing and design wants to hear.

Yep, Wordpress, the bane of true webdevs. Had the experience last week. Wanted to watch a livestream concert, over 2k people bought tickets. When everyone tried to login shortly before the concert begins, the wordpress instance basically went: "Ok, kinda stressful situation here. Guess I die now" and the concert was postponed 1 hour and started on Youtube xD

Wordpress is fine for your quick-and-dirty website of the local cat breeder club but not for "enterprise" websites.

Same, depends on cost of living I guess. If it costs 4k "just to live", I kinda understand it.

Well you could push the received bluetooth data to a webserver, render some html there and show it in a webview, right?

(/s)

Maybe because that is what modern "apps" are, embedded browsers showing a website?

(I don't condone that trend though)

@lotd Yes, we build the stuff so you can browse the stores online because Covid does not allow you to look "on-site". We build the complex stuff that allows you to register for vaccination appointments or just something simple like a newsletter tool for the mom&pop store next door.

Hell, half of the world relies on the internet. With web devs stopping their work and the devops people stopping theirs, half the online-supported economy would just grind to a halt.

Of course, the same would happen if other jobs like farmers or blue collars stop theirs. Just show some respect to each other and don't look down on them.

Except influencers, the world kept spinning years without them. That is a "job" we don't need.

Ok, if setting up a subdomain is too much pain, could they at least use ONE trusted CA for all government stuff? That I can trust the page based on "it got a cert from the gov CA, that page should be good"?

Currently, it's a god damned treasure hunt finding a renown page mentioning the page you are trying to validate.

Well, I do not actually save transferred data, do I? Instead of having to provide the access token, I would have to provide some kind of session identifier, probably via cookie.

That would be

"Authorization: Bearer 00000000-0000-0000-0000-000000000000"

vs

"Cookie: session=00000000-0000-0000-0000-000000000000"

58 vs 52 chars, so only 6 chars saved, assuming your session identifier is as long as your token. A shorter session identifier might give you advantage here.

In any case, the API I'm ranting about is nowhere near high frequency, it's a user management API.

I really like our worker protection laws. If the company says, you have to give X months notice, the company itself must give you at least X months notice or have serious grounds for termination (e.g. getting physical, stealing company property. Not the "current financial situation")

I don't think that is the intended functionality of "request changes". It's meant to block the merge until the person removes that "request changes" flag or the PR creator adds new commits.

If the PR was approved in the past, you should not remove the approval now because things changed. Once merged, the PR is history which should not change.

@petergriffin You can reuse a merged PR? Branches yes, but PRs?

Why would you even want that? After merging, the source branch and the destination branch don't differ until you push again. And then you should open a new PR, because the comments from the old are no longer valid (as the points they mention are no longer part of the diff)

@IntrusionCM According to Wikipedia, Aaron Swartz and John Gruber created Markdown in 2004 and the page daringfireball.net shows "By John Gruber". So I assume the syntax presented there is the initial markdown syntax as conceived by them. It was never "officially" specified in a RFC or god forbid ISO standard.

But the homepage of the maker should be sufficient as standard imho.

It's just something a bit like markdown (e.g. the single asterisk marks something as bold, markdown as specified needs two asterisks for bold and one for italics).

But the ticks for code markup bother me most. The jira-conform solution is {{my code}} to get the same result as `my code` would do in normal markdown.

It really sucks that it differs this much, Slack adheres to markdown standard, jira uses a random markup language.

@theabbie I'm totally agreeing here. I think if I have a valid TOTP, then captcha is not needed because having the valid TOTP is the best proof I'm not a click bot but the real user. Apparently that is not an option for recaptcha or services using it

@theabbie Regarding the 30 second OTP. I mean those generated by Google Authenticator / Authy / Keepass. Not those sent via Mail / SMS / homing pidgeon. That would be madness indeed, but 30 seconds for app-generated TOTP is recommended by RFC 6238, isn't it?