Search
48 results for “bmariusz”
-
Day 8
TL;DR: Yesterday I took a break. Today I’m back – and permissions are under control :)
Spent the day designing a fine-grained permission model.
I now support 96 distinct permissions across 8 modules, 4 CRUD operations, and 3 scopes: self, group, global.
Three system roles bind these into meaningful sets:
admin: full global access (32 permissions)
supervisor: read self + full group scope (32)
employee: read/update self only (16)That's 80 role-permission bindings total. Uff.
https://write.as/bmariusz/designing-a-scalable-permission-model
#sql #Microservices #monorepo #rbac #codingdays #programming #accessManagement
-
Day 8
TL;DR: Yesterday I took a break. Today I’m back – and permissions are under control :)
Spent the day designing a fine-grained permission model.
I now support 96 distinct permissions across 8 modules, 4 CRUD operations, and 3 scopes: self, group, global.
Three system roles bind these into meaningful sets:
admin: full global access (32 permissions)
supervisor: read self + full group scope (32)
employee: read/update self only (16)That's 80 role-permission bindings total. Uff.
https://write.as/bmariusz/designing-a-scalable-permission-model
#sql #Microservices #monorepo #rbac #codingdays #programming #accessManagement
-
Day 8
TL;DR: Yesterday I took a break. Today I’m back – and permissions are under control :)
Spent the day designing a fine-grained permission model.
I now support 96 distinct permissions across 8 modules, 4 CRUD operations, and 3 scopes: self, group, global.
Three system roles bind these into meaningful sets:
admin: full global access (32 permissions)
supervisor: read self + full group scope (32)
employee: read/update self only (16)That's 80 role-permission bindings total. Uff.
https://write.as/bmariusz/designing-a-scalable-permission-model
#sql #Microservices #monorepo #rbac #codingdays #programming #accessManagement
-
Day 8
TL;DR: Yesterday I took a break. Today I’m back – and permissions are under control :)
Spent the day designing a fine-grained permission model.
I now support 96 distinct permissions across 8 modules, 4 CRUD operations, and 3 scopes: self, group, global.
Three system roles bind these into meaningful sets:
admin: full global access (32 permissions)
supervisor: read self + full group scope (32)
employee: read/update self only (16)That's 80 role-permission bindings total. Uff.
https://write.as/bmariusz/designing-a-scalable-permission-model
#sql #Microservices #monorepo #rbac #codingdays #programming #accessManagement
-
Day 7
✅ 24 test suites, 153 tests passing.Solid coverage across service and controller layers in my modular monorepo. Strict typing (TypeScript), full DTO validation, and realistic mocks across complex relations (TypeORM).
Next: fine-tuning error handling & exploring e2e strategies.
https://write.as/bmariusz/24-test-suites-153-tests-passing-scaling-confidence-with-every-assertion
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 7
✅ 24 test suites, 153 tests passing.Solid coverage across service and controller layers in my modular monorepo. Strict typing (TypeScript), full DTO validation, and realistic mocks across complex relations (TypeORM).
Next: fine-tuning error handling & exploring e2e strategies.
https://write.as/bmariusz/24-test-suites-153-tests-passing-scaling-confidence-with-every-assertion
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 7
✅ 24 test suites, 153 tests passing.Solid coverage across service and controller layers in my modular monorepo. Strict typing (TypeScript), full DTO validation, and realistic mocks across complex relations (TypeORM).
Next: fine-tuning error handling & exploring e2e strategies.
https://write.as/bmariusz/24-test-suites-153-tests-passing-scaling-confidence-with-every-assertion
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 7
✅ 24 test suites, 153 tests passing.Solid coverage across service and controller layers in my modular monorepo. Strict typing (TypeScript), full DTO validation, and realistic mocks across complex relations (TypeORM).
Next: fine-tuning error handling & exploring e2e strategies.
https://write.as/bmariusz/24-test-suites-153-tests-passing-scaling-confidence-with-every-assertion
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 6
TL;DR: Groups, memberships, hierarchy — all dynamic now.Released backend v0.3.0 🎉
✅ Users can belong to multiple groups with typed roles
✅ Groups can form hierarchical or overlapping structures
✅ Roles are normalized via reference typesBuilt with NestJS + TypeORM. Documented via Swagger.
https://write.as/bmariusz/building-a-flexible-group-structure-with-nestjs-and-typeorm
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 6
TL;DR: Groups, memberships, hierarchy — all dynamic now.Released backend v0.3.0 🎉
✅ Users can belong to multiple groups with typed roles
✅ Groups can form hierarchical or overlapping structures
✅ Roles are normalized via reference typesBuilt with NestJS + TypeORM. Documented via Swagger.
https://write.as/bmariusz/building-a-flexible-group-structure-with-nestjs-and-typeorm
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 6
TL;DR: Groups, memberships, hierarchy — all dynamic now.Released backend v0.3.0 🎉
✅ Users can belong to multiple groups with typed roles
✅ Groups can form hierarchical or overlapping structures
✅ Roles are normalized via reference typesBuilt with NestJS + TypeORM. Documented via Swagger.
https://write.as/bmariusz/building-a-flexible-group-structure-with-nestjs-and-typeorm
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 6
TL;DR: Groups, memberships, hierarchy — all dynamic now.Released backend v0.3.0 🎉
✅ Users can belong to multiple groups with typed roles
✅ Groups can form hierarchical or overlapping structures
✅ Roles are normalized via reference typesBuilt with NestJS + TypeORM. Documented via Swagger.
https://write.as/bmariusz/building-a-flexible-group-structure-with-nestjs-and-typeorm
#TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo #rbac #codingdays #swagger #jwt #jwt_auth #programming
-
Day 5
TL;DR: Continued work on backend security — role-based access is now fully wired up.✅ Got fine-grained role-based access control fully working today.
• Roles loaded from PostgreSQL
• Injected into JWT during login
• Validated via custom `@Roles()` + `RolesGuard`
• Authenticated via `@UseGuards(JwtAuthGuard)` globally
• Introduced `@Public()` decorator to bypass guards for public endpoints
• Swagger supports Bearer token for testingTook a while to get the role propagation into the token right — the key was enriching the `validateUser()` result, not just fetching data from DB.
Modular, clean, and no magic. Feels good. 👌
more on: https://write.as/bmariusz/continuation-securing-routes-with-jwt-and-role-based-access-control
#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming -
Day 5
TL;DR: Continued work on backend security — role-based access is now fully wired up.✅ Got fine-grained role-based access control fully working today.
• Roles loaded from PostgreSQL
• Injected into JWT during login
• Validated via custom `@Roles()` + `RolesGuard`
• Authenticated via `@UseGuards(JwtAuthGuard)` globally
• Introduced `@Public()` decorator to bypass guards for public endpoints
• Swagger supports Bearer token for testingTook a while to get the role propagation into the token right — the key was enriching the `validateUser()` result, not just fetching data from DB.
Modular, clean, and no magic. Feels good. 👌
more on: https://write.as/bmariusz/continuation-securing-routes-with-jwt-and-role-based-access-control
#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming -
Day 5
TL;DR: Continued work on backend security — role-based access is now fully wired up.✅ Got fine-grained role-based access control fully working today.
• Roles loaded from PostgreSQL
• Injected into JWT during login
• Validated via custom `@Roles()` + `RolesGuard`
• Authenticated via `@UseGuards(JwtAuthGuard)` globally
• Introduced `@Public()` decorator to bypass guards for public endpoints
• Swagger supports Bearer token for testingTook a while to get the role propagation into the token right — the key was enriching the `validateUser()` result, not just fetching data from DB.
Modular, clean, and no magic. Feels good. 👌
more on: https://write.as/bmariusz/continuation-securing-routes-with-jwt-and-role-based-access-control
#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming -
Day 5
TL;DR: Continued work on backend security — role-based access is now fully wired up.✅ Got fine-grained role-based access control fully working today.
• Roles loaded from PostgreSQL
• Injected into JWT during login
• Validated via custom `@Roles()` + `RolesGuard`
• Authenticated via `@UseGuards(JwtAuthGuard)` globally
• Introduced `@Public()` decorator to bypass guards for public endpoints
• Swagger supports Bearer token for testingTook a while to get the role propagation into the token right — the key was enriching the `validateUser()` result, not just fetching data from DB.
Modular, clean, and no magic. Feels good. 👌
more on: https://write.as/bmariusz/continuation-securing-routes-with-jwt-and-role-based-access-control
#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming -
Na fotoblogu #trzecieokostaszczuk udało mi się w końcu wrzucić, trochę zdjęć z piątku. Warto korzystać, bo już bardzo mało brakuje do momentu, gdy dominować będzie monochromatyzm. https://staszczuk.blogspot.com/2025/11/ostatnie-podrygi-koloru.html
#zdjęcia #blog #wpis #Nikon #jesień #drzewa
Obiecałem, że dam znać: @bmariusz -
Day 15
Today I implemented full user registration with email verification.
Registration creates an inactive account and sends a verification link with a JWT token.
Verification activates the account if the token is valid and not expired, and assigns the user to the default trial subscription plan.I also introduced a custom JSON-based translation system, with language selected via the `x-lang` HTTP header.
Finally, I refactored subscription logic: a separate `plans` table was added.
Everything works. All tests passed.
#programming #jwt #subscription #json #monorepo #saas #codingdays
-
Day 14
Registration Form Implementation
I've just finished implementing a registration form with validation and language switching using Next.js and React Hook Form. Now users can register with dynamic language support (English/Polish) and data validation (email, password, phone).Unfortunately, my account on Write.as has been temporarily blocked, so details about the implementation will be available once the account is unlocked. Stay tuned! 😊
https://write.tyolabs.com/?p=1
#programming #next_js #javascript #typescript #monorepo #saas #codingdays
-
Day 14
Registration Form Implementation
I've just finished implementing a registration form with validation and language switching using Next.js and React Hook Form. Now users can register with dynamic language support (English/Polish) and data validation (email, password, phone).Unfortunately, my account on Write.as has been temporarily blocked, so details about the implementation will be available once the account is unlocked. Stay tuned! 😊
https://write.tyolabs.com/?p=1
#programming #next_js #javascript #typescript #monorepo #saas #codingdays
-
Day 14
Registration Form Implementation
I've just finished implementing a registration form with validation and language switching using Next.js and React Hook Form. Now users can register with dynamic language support (English/Polish) and data validation (email, password, phone).Unfortunately, my account on Write.as has been temporarily blocked, so details about the implementation will be available once the account is unlocked. Stay tuned! 😊
https://write.tyolabs.com/?p=1
#programming #next_js #javascript #typescript #monorepo #saas #codingdays
-
Day 14
Registration Form Implementation
I've just finished implementing a registration form with validation and language switching using Next.js and React Hook Form. Now users can register with dynamic language support (English/Polish) and data validation (email, password, phone).Unfortunately, my account on Write.as has been temporarily blocked, so details about the implementation will be available once the account is unlocked. Stay tuned! 😊
https://write.tyolabs.com/?p=1
#programming #next_js #javascript #typescript #monorepo #saas #codingdays
-
Day 14
Registration Form Implementation
I've just finished implementing a registration form with validation and language switching using Next.js and React Hook Form. Now users can register with dynamic language support (English/Polish) and data validation (email, password, phone).Unfortunately, my account on Write.as has been temporarily blocked, so details about the implementation will be available once the account is unlocked. Stay tuned! 😊
https://write.tyolabs.com/?p=1
#programming #next_js #javascript #typescript #monorepo #saas #codingdays
-
Day 13
version 0.6.0 released
Scoped access is now enforced across all core modules. Each repository operation is tenant-aware via a shared ScopedRepository base class.Key facts:
12 modules refactored
96 updated tests
1 shared base class (ScopedRepository) used across the boardsubscriberId is automatically applied in all find, findOne, save, remove operations
1 very long workday
Commit, tag, release — done
https://write.tyolabs.com/?p=42
#programming #typescript #saas #scoped_access #microservices #monorepo #codingdays
-
Day 12
Implemented password reset functionality using JWT:
/auth/remind-password generates a short-lived token and sends it via email
/auth/reset-password verifies the token and updates the password using bcryptValidation handled with class-validator.
Endpoints documented with Swagger.
Token secret and base URL configured via environment variables.https://write.tyolabs.com/?p=33
#programming #typescript #saas #microservices #monorepo #codingdays
-
Day 12
Implemented password reset functionality using JWT:
/auth/remind-password generates a short-lived token and sends it via email
/auth/reset-password verifies the token and updates the password using bcryptValidation handled with class-validator.
Endpoints documented with Swagger.
Token secret and base URL configured via environment variables.https://write.tyolabs.com/?p=33
#programming #typescript #saas #microservices #monorepo #codingdays
-
Day 12
Implemented password reset functionality using JWT:
/auth/remind-password generates a short-lived token and sends it via email
/auth/reset-password verifies the token and updates the password using bcryptValidation handled with class-validator.
Endpoints documented with Swagger.
Token secret and base URL configured via environment variables.https://write.tyolabs.com/?p=33
#programming #typescript #saas #microservices #monorepo #codingdays
-
Day 12
Implemented password reset functionality using JWT:
/auth/remind-password generates a short-lived token and sends it via email
/auth/reset-password verifies the token and updates the password using bcryptValidation handled with class-validator.
Endpoints documented with Swagger.
Token secret and base URL configured via environment variables.https://write.tyolabs.com/?p=33
#programming #typescript #saas #microservices #monorepo #codingdays
-
Day 12
Implemented password reset functionality using JWT:
/auth/remind-password generates a short-lived token and sends it via email
/auth/reset-password verifies the token and updates the password using bcryptValidation handled with class-validator.
Endpoints documented with Swagger.
Token secret and base URL configured via environment variables.https://write.tyolabs.com/?p=33
#programming #typescript #saas #microservices #monorepo #codingdays
-
Day 11
Well, technically it’s been a few days.I just finished populating the entire partner-contracts layer in our system. That means hundreds of users, each linked to the correct unit, with the proper supervisor, job title, and contract type. All of it reflected in a single, consistent data model.
Every user has a contract pointing to their supervisor — with cascading relations:
- regional managers report directly to the admin,
- unit managers report to regional managers,
- team leads report to unit managers,
- and finally, operators, assigned in pairs to each lead.I’ve also updated every partner’s supervisor field, so hierarchy is fully navigable.
It took some time and required pulling data from multiple sources:
users, organizational units, and memberships, regional and structural hierarchy, and even address assignments.Numbers:
Total test users & contracts: 1,408
Regional Coordinators: 16
Managers: 160
Team Leads: 640
Operators: 592