Securing the Monolith: CSRF, Redis, and the Driver Lifecycle
2025-12-16From fixing critical security holes to architecting the driver signup flow. A deep dive into CSRF in Dream, Azure Redis, and the importance of building a mental model.
Blog
Welcome to my blog, where I share thoughts, tutorials, and insights on software engineering, functional programming, and industry trends.
Latest Posts
Enabling SSH in Azure App Service for OCaml Containers: A Production Journey
2025-11-21Complete guide to deploying OCaml containers to Azure App Service with SSH access, database migrations, and PostgreSQL extension management. From Docker multi-stage builds to production user creation.
Session Management & WebAuthn : Secure Sessions and Better Auth
2025-11-07Implementing secure session utilities, upgrading WebAuthn flows with better logging.
WebAuthn & Passkeys in OCaml: Implementing Passwordless Authentication
2025-10-30Building a complete WebAuthn/Passkeys authentication system in OCaml: from bytea binary storage challenges to Base64 encoding layers, model validation, and repository patterns.
Setting up Open Telemetry (OTel) with OCaml and Azure Monitor Integration
2025-10-26Complete guide to implementing OpenTelemetry in OCaml with Dream Framework, including Azure Monitor integration, environment-specific configuration, and production-ready tracing middleware.
Model Validation & Time Utilities Sprint: From Basic Models to Proper Validation Layer
2025-09-28A weekend sprint documenting the evolution from basic OCaml models to comprehensive validation infrastructure with field enhancements, time utilities, and cryptographic security improvements for the Chaufr MVP
Database Testing in OCaml: From CRUD to Connection Pool Stress Testing
2025-09-21Building a comprehensive database testing suite for Chaufr: integration tests, transaction verification, migration rollback testing, connection pool stress tests, and performance benchmarks using Alcotest, Lwt, and Caqti
Shipping a robust DB migration runner for Chaufr (OCaml + Caqti + Lwt)
2025-09-14Implemented a production-minded database migration system for Chaufr: CLI, tracking, checksum validation, rollback, and safe SQL execution.
Building Database Layer in OCaml: From UUID v7 to Standardized Error Handling
2025-08-31A comprehensive sprint retrospective documenting the implementation of a near-production-ready database and service layer using OCaml, Caqti, UUID v7, and standardized error handling for the Chaufr MVP
Modern PostgreSQL Connection Pooling in OCaml (2025): Caqti + Dream + Lwt
2025-08-24A practical, production-focused walkthrough of building a PostgreSQL connection pool in OCaml using Caqti_lwt_unix, with health checks, graceful shutdown, and Dream integration
Azure Deployment Journey: OCaml Web Application with Dream Framework
2025-08-10A comprehensive guide to deploying OCaml applications on Azure App Service using Azure Container Registry - from authentication challenges to production success
Advent of Code with OCaml: Building a Complete Automation Pipeline
2025-07-12How I built a fully automated OCaml solution pipeline for Advent of Code with input downloading, solution running, and automatic submission
Getting Started with OCaml
2025-06-08A beginner's guide to functional programming with OCaml
Missing a specific topic? Have a question? Let me know!