Charith Ellawala

Unfortunately, while allowing any number of backends to be stacked is more elegant, in reality we'd need to be much more prescriptive 😞 It probably should be limited to just...

Basic auth is the easiest way to get started and almost all HTTP libraries have support for it. It does involve setting a header, but, so does JWT. It's basically...

Yes. This task is about adding basic auth, JWT etc.

This requires a full scan of the audit table within a range. It's a little resource-intensive but it can be done. However, I am just wondering whether it's worth spending...

Objecthash is overkill for this purpose as it is designed for hashing messages with confidentiality guarantees (e.g. redactions). A simple, non-cryptographic hash of protobuf messages should be more than enough...

Traversing protobuf message via reflection is very slow. Generated code for the same task is over 500% faster. ``` name old time/op new time/op delta Hash/nesting=1-8 30.9µs ± 1% 5.0µs...

Caddy's [interactive configuration documentation](https://caddyserver.com/docs/json/) is really cool. I wonder if we can generate something like that using the schema as well.

https://tip.golang.org/doc/fuzz/

``` === FAIL: client TestClient/without_tls/tcp/grpc/ResourcesQueryPlan (0.00s) client_test.go:276: Error Trace: client_test.go:276 Error: Received unexpected error: request failed: rpc error: code = Internal desc = Resources query plan request failed Test: TestClient/without_tls/tcp/grpc/ResourcesQueryPlan...

This is impossible to replicate locally. The tests use the same SQLite database and the suspicion is that maybe the GH runners are not quick enough to clean it up...