How to Implement Login with GitHub Safely
A practical server-side GitHub OAuth login flow using state validation, authorization code exchange, GitHub user lookup, and a local session.
Frontend
4 posts
React key Is Not Just a List Optimization
A practical explanation of how React key participates in component identity, why changing it resets state, and when that is the right tool.
Frontend Dependencies, Lockfiles, and Reproducible Builds
A practical look at dependency ranges, transitive dependencies, lockfiles, npm ci, pnpm frozen installs, and how frontend projects can make builds more reproducible.
Why Cookies Fail in CORS: From withCredentials to SameSite
CORS cookies depend on more than withCredentials. The server CORS headers, Cookie Domain, SameSite, Secure, and third-party cookie policy all matter.