The Guy
TTCTheo's Typesafe Cult
•Created by alextana on 3/24/2025 in #questions
user data encryption
To be fair, the key management is a regular solution. It doesn't fully meet US Federal Security standards lol but it'll do for most applications that don't deal with PII.
If it's something you'd like to learn more about, tools like k8 helm or hashicorp vault are nice. It is geared towards devops/security infra work, but IMO it's never bad to have some knowledge there unless you absolutely hate it. AWS and Cloudlfare have their own secrets manager. Vercel has
sensitive secrets which is really their only form of secrets management right now. The values get decrypted at build, so unless you SSH or get a terminal inside of the server instance, you shouldn't be able to get the env var value. I've used Vault before where we stored API keys and other sensitive items for multiple clients (fintech SaaS), and it's a relatively nice, dynamic experience. Didn't touch infra or management sides of it though.11 replies
TTCTheo's Typesafe Cult
•Created by alextana on 3/24/2025 in #questions
user data encryption
Spot on with what I was about to suggest hahaha just wanted to make sure I had the context right. Sounds like a good solution!
11 replies
TTCTheo's Typesafe Cult
•Created by alextana on 3/24/2025 in #questions
user data encryption
I second that but also wonder what the point of asymmetric encryption would be in this case. If the browser client is decrypting the data, then there’s no point in encryption since the decryption keys will most likely be accessible to anyone using the site, unless everything is SSR or a key pair is made per user.
11 replies
TTCTheo's Typesafe Cult
•Created by alextana on 3/24/2025 in #questions
user data encryption
Would you be able to provide more context for the problem being solved? From what is given, I’m struggling to determine why encryption is taking place and what benefit it provides.
11 replies
TTCTheo's Typesafe Cult
•Created by utdev on 3/20/2025 in #questions
Slug Api Fetch error
Also, I’m noticing you’re using a rewrite, would you be able to share that rewrite from your next config? It could possibly be related to that vs the local DNS
7 replies
TTCTheo's Typesafe Cult
•Created by utdev on 3/20/2025 in #questions
Slug Api Fetch error
7 replies
TTCTheo's Typesafe Cult
•Created by utdev on 3/20/2025 in #questions
Slug Api Fetch error
From what I can tell, yes. Next step might be checking the appropriate service to ensure it’s receiving the request. If it isn’t, then there may be an issue with local DNS resolving the uri
7 replies
TTCTheo's Typesafe Cult
•Created by utdev on 3/20/2025 in #questions
Slug Api Fetch error
Main thing I’m noticing is the subdomain on localhost (not common, so idk if that’s related), but the port is missing from the API url you’ve pasted. From what I’ve searched up, even with the subdomain on local host, you still need the port that backend is running on.
test.localhost:<port number>/api/*
try adding that in and seeing if it solves it!7 replies