2.5 KiB
| title | date | tags | ||||||
|---|---|---|---|---|---|---|---|---|
| Weeknotes: 2025-04-06 | 2025-04-06T21:50:46-07:00 |
|
Looks like I'm averaging about one "weeknotes" post every two weeks. That's actually not too bad!
Continuing from my [previous post]({{< ref "/posts/weeknotes-the-third" >}}), I did install the GitHub Vault Plugin on my Vault, but then I got side-tracked to shaving a different yak - Gitea provides no OIDC token for Gitea Actions, so it's not possible to create a different Vault Role for each repo's actions in order to maintain least-privileges. Instead, I've created a single Vault Role that is accessible (to every repo's Actions) via the kubernetes auth method. Which is, honestly, fine for this setup (where I'm the owner of all the repos on the forge and so I don't have to worry about permission issues from untrusted actors) - but it's not right, dammit!
Thankfully, the bulk of the work of adding OIDC tokens to Gitea Actions had already been completed nearly two years ago, but the original author had lost motivation and the PR was abandoned. Both GoLang (the language in which Gitea is written) and OIDC/JWT are things that I am moderately familiar with, albeit no expert - but, that's enough to have forked the PR and tried to keep moving it forward! I'd be really psyched to get this change merged - even though I didn't author the original change, it would still feel great to help contribute this sizeable feature to an Open Source project that I use and respect. Getting PRs merged is Glue Work, and that's still valuable!
Other than that:
- I've been enjoying playing around with Vercel/Next.js after a highly-respected ex-colleague recommended them (hi Dustin!)
- I've put a bit more effort into "EDH ELO", the webtool I've been tinkering with to rank my Magic: The Gathering Commander playgroup's decks from match results. Kinda tempted to combine the two and "Rewrite It In
RustReact" :P