06 Aug 2023
| #tech
GitHub Enterprise Cloud is an enterprise version of GitHub.com “designed for large businesses or teams who collaborate on GitHub.com”(source).
There is a strong emphasis on security, which extends to strong limits on programmatic access, especially to enterprise-wide resources, so getting all organizations or all repositories of the enterprise becomes non-trivial.
This guide will describe how to do just these.
Read more
02 Aug 2023
| #tech
| #security
How to use the HashiCorp Vault Secrets Plugin for Artifactory to create short-lived Artifactory tokens scoped to a specific user, without the need for an admin token.
The main usecase for this is CI workflows (e.g. Github actions) that can authenticate to vault (e.g. Github’s workflow OIDC) and need access to Artifactory.
Read more
29 Jul 2023
| #japan
| #money
How to indicate furusato nozei when filing taxes online. (To learn about furusato nozei, see Furusato nozei - end to end guide.)
Read more
29 Jul 2023
| #japan
| #money
What is furusato nozei, a bit of history, and how you can do it end to end. This won’t be short, but I try my best to provide the full picture with all the details. While I do my best to keep this information accurate, if you find any inaccuracies, please let me know.
Read more
04 Jul 2023
| #tech
oauth2-proxy is often used to handle user authentication for apps, however non-human users (e.g. CI workflows) are often unable to complete the OIDC flow.
In this post I will show how to configure oauth2-proxy to trust Github’s OIDC provider and use that JWT to authenticate workflows and give them access to the app behind the proxy.
Read more