Working remotely

A lot has been written about working remotely. In light of the current COVID-19 pandemic, I decided to write down my own thoughts on this topic and the processes and tools I’ve developed to help me be effective at working remotely.

»
Author's profile picture Daniele Sluijters on life

BeyondCorp @ Home: OpenID Connect Provider with Dex

In a previous post I showed you how to setup Keycloak to provide you with OpenID Connect and SAML capabilities. The problem with Keycloak is is that’s it’s a pretty big beast, whereas most of the time we don’t need all the functionality. It’s also tricky to run in a highly available fashion and is annoyingly slow to start up.

»
Author's profile picture Daniele Sluijters on tech

BeyondCorp @ Home: Authentication and authorization proxy with OpenResty

In a previous post I showed you how to set up Gatekeeper as a proxy to enfroce authorization on requests. The problem with Gatekeeper is that it required a lot of additional configuration, an additional proxy hop and is a separate component.

»
Author's profile picture Daniele Sluijters on tech

Arch Linux and the HP Envy x360

  • Update 2019-06-09: Performing BIOS updates
»
Author's profile picture Daniele Sluijters on linux

Emulating a Philips Hue bridge

As part of my home automation I wanted to emulate a Philips Hue bridge. The reason for that is that a lot of things provide out-of-the-box integration with Philips Hue. Aside from that, there’s a ton of apps and other cool things in the Hue ecosystem I wanted to unlock.

»
Author's profile picture Daniele Sluijters on iot

Home Automation

I’m addicted to home automation. There. Said it. But it’s just such a tremendous amount of fun to play with. I’m pretty sure it’s the SRE in me. Why do anything by hand when you can have computers do things for you? Why turn on the lights when you get home when it can happen automatically? Turn on the lights when you enter the bathroom? Barbaric! Turn them off? I’ve git better things to do! Why not wake up to the smell of freshly brewed coffee every morning instead of having to get out of bed first to turn on the coffee machine?

»
Author's profile picture Daniele Sluijters on iot

BeyondCorp @ Home: Authorization

NOTE: A much simpler solution is describe in BeyondCorp @ Home: Authentication and authorization proxy with OpenResty

»
Author's profile picture Daniele Sluijters on tech

BeyondCorp @ Home

Update 2019-10-06: If you don’t need SAML, consider swapping out Keycloak for Dex instead. You can read all about that in this follow-up post.

»
Author's profile picture Daniele Sluijters on tech

Directory Services 101: Writing and testing ACLs

This post is part of a series on directory services. Current available installments are:

»
Author's profile picture Daniele Sluijters on tech

Directory Services 101: Securing your LDAP server

This post is part of a series on directory services. Current available installments are:

»
Author's profile picture Daniele Sluijters on tech