64 articles · updated regularly Blog · Field notes

Thoughts on code, shipped from the trenches.

Architecture lessons, performance war stories, and engineering patterns from two decades of building production systems.

Search the blog…

64

Articles

101

Topics

20+

Years XP

Page 5

Articles archive

Page 5 / 7
13m Apr 13, 2025

Multi-Factor Authentication (MFA) : Authentication Strategies for Modern Web Applications

A comprehensive implementation guide to multi-factor authentication — covering TOTP setup, backup codes, SMS verification, hardware security keys, adaptive MFA, and recovery strategies.

AuthenticationSecurityBackend
Read
12m Apr 12, 2025

Passwordless Authentication : Authentication Strategies for Modern Web Applications

A comprehensive implementation guide to passwordless authentication — covering magic email links, SMS OTP, WebAuthn/FIDO2 passkeys, implementation patterns, and security considerations.

AuthenticationSecurityBackend
Read
13m Apr 11, 2025

OAuth 2.0 Authentication : Authentication Strategies for Modern Web Applications

A comprehensive implementation guide to OAuth 2.0 — covering authorization flows, OpenID Connect, implementing Google and GitHub login, token management, and enterprise SSO patterns.

AuthenticationSecurityBackend
Read
14m Apr 10, 2025

JWT Authentication : Authentication Strategies for Modern Web Applications

A comprehensive implementation guide to JWT authentication — covering token structure, signing algorithms, access/refresh token patterns, middleware implementation, token revocation strategies, and security best practices.

AuthenticationSecurityBackend
Read
12m Apr 9, 2025

Session-Based Authentication : Authentication Strategies for Modern Web Applications

A comprehensive implementation guide to session-based authentication — covering how sessions work under the hood, server-side storage strategies, cookie security, scaling with Redis, and production best practices.

AuthenticationSecurityBackend
Read
8m Apr 8, 2025

Authentication Strategies for Modern Web Applications

A high-level comparison of modern authentication approaches — Session-based, JWT, OAuth 2.0, Passwordless, and MFA — covering when to use each, trade-offs, and real-world use cases.

AuthenticationSecurityBackend
Read
10m Apr 2, 2025

Flutter vs React Native: Cross-Platform Development in 2025

A detailed technical comparison of Flutter and React Native in 2025, covering architecture, performance, developer experience, ecosystem maturity, and real-world project considerations.

MobileFlutterReact Native
Read
11m Apr 1, 2025

Building a Production Monitoring and Observability Stack

Monitoring tells you something is broken. Observability tells you why. Here's the stack and methodology I use to instrument production systems — from metrics and logs to traces and alerting that doesn't wake you up at 3 AM for nothing.

DevOpsMonitoringInfrastructure
Read
12m Mar 25, 2025

System Design Patterns Every Senior Engineer Should Know

Essential system design patterns for senior engineers, covering load balancing, caching strategies, database sharding, message queues, rate limiting, circuit breaker, CQRS, and event sourcing with practical architectural examples.

ArchitectureSystem DesignBackend
Read
10m Mar 18, 2025

TypeScript Patterns for Large Codebases

TypeScript at scale requires different patterns than TypeScript for a side project. Here are the type patterns and architectural decisions that keep large codebases maintainable, based on managing 200K+ line TypeScript projects.

TypeScriptArchitectureFrontend
Read