What is furusato nozei, a bit of history, and how you can do it end to end. This won’t be short, but I try my best to provide the full picture with all the details. While I do my best to keep this information accurate, if you find any inaccuracies, please let me know.
Read moreoauth2-proxy is often used to handle user authentication for apps, however non-human users (e.g. CI workflows) are often unable to complete the OIDC flow. In this post I will show how to configure oauth2-proxy to trust Github’s OIDC provider and use that JWT to authenticate workflows and give them access to the app behind the proxy.
Read moreIn one of my the projects I manage vault resources via terraform. The main terraform pipeline runs in a Github action workflow and uses Github’s JWT to connect to vault. Meanwhile user authentication is done using vault’s OIDC auth method.
This post will show how to setup the vault terraform provider so that it uses the Github signed JWT when running in CI, and OIDC authentication when running locally.
Read moreFor each Github action workflow, Github creates a unique Github token. This can accessed a either via the GITHUB_TOKEN secret (${{ secrets.GITHUB_TOKEN }}) or via the github context (${{ github.token }}).
The docs also note that
An action can access the GITHUB_TOKEN through the github.token context even if the workflow does not explicitly pass the GITHUB_TOKEN to the action.
However the docs fall short of showing how to do it, and it took me a while to figure it out, so I’m sharing it here.
Read moreThis is a continuation of my previous post on buying vs renting in Tokyo
The future resale price of a property depends on demand: are there going to be people willing and able to purchase it? Let’s look into the forecasts affecting this. I will try my best to use official (government) statistics and forecasts, even if these are a few years outdated.
Read more