trusted | ️ Trustworthy localStorage | Validation library

I have a trusted MS Access database about invoices, procurement. I use it 4 years ago now, but need a re-do, to solve problems, build new things in to it, make it more easier to use. I started using MS Access more then a decade ago, but this is the first time I must ask.

I have only one problem doing that. I have two tables which has a relationship, one-to-many. One is about invoice data, the other is invoice items. In the invoice table the invoice number is an autonumber with a specified format. There is a split form, where should be a filtered datasheet, filtered to the actual invoice numbers. Now it is not working, because the two connected field parameters are not match. Yes the one is auto number, the other stored as short text.

In the old database I stored the invoice number as short text, but I hate to fill a new invoice number all the time when I create one. This must be a new feature to the database, to fill it automatically.

For more precise information:
Invoice number:
Data type: autonumber
Field size: Long integer
New values: Increment
Format: "SZ"00000

If you believe my approach is not ideal, your ideas are welcome.

I have an OpenID Connect server (OpenIDdict) and an asp.net core webapp in containers behind a TLS termination proxy. In production, all communication between the webapp and the OIDC server can go through the 'outside', based on their public names. However, in development, I'm using self signed certificates that aren't trusted by the containers running the apps, only by my host pc. Because of that, in development, the webapp can redirect the browser to the OIDC server just fine, but when it, for instance, needs to call the token endpoint, it will fail, because the certificate isn't trusted.

A possible solution would be to have the server to server communication go through the internal container network, but I haven't been able to get that to work. Is there a way to make the asp.net core OpenID Connect middleware use a different url (and protocol) for server to server communication?

Another solution would be to install the self signed certificates in the containers, but because that's only needed in development, it seems bad practice to burden the images with that. Is that assessment correct?

I'm hoping I'm missing the most obvious solution. Any ideas?

Few years ago I develop aps in Rails 4 and now many things change.

I user Shire GEM in this example to upload photos:

Ok, my models:

Photo model:

I was reading about the vulnerability of deserializing types with Json.Net using a setting different from TypeNameHandling.None. The Json.Net docs recommend implementing a custom SerializationBinder. A simple example of a custom binder that checks types against a list of known types is given here.

While this solution certainly works, the set of known types is not fixed in my scenario, since the application has to support extensions, which might define their own data classes. One solution would be to extend the known type list during the registration of an extension, however, I had a second approach in mind, that I'd like to verify:

I want to define a common interface for trusted types:

(suggested by dbc: A custom attribute could be used instead of a marker interface.)

I have built a simple app using Create React App, Tailwind and CRACO (https://github.com/gsoft-inc/craco), following the instructions here: https://tailwindcss.com/docs/guides/create-react-app The app also uses Typescript if thats relevant.

However I keep getting build errors when deploying to Netlify - Failed to load config "react-app" to extend from.

I am using the default command yarn build but have also tried with npm run build and CI=' ' npm run build

I have also tried updating the eslint deps based on other advice using the command yarn add eslint-config-react-app -D but still no luck.

Here is the deploy log:

I am trying to ignore the server certificate with the lines:

I have a stupid question about homebrew: Why are executables that I install via homebrew trusted by MacOS (gatekeeper)? i.e. after installation I can run an executable and don't get a security popup and don't have to allow an exception - why is that?

I initially thought that homebrew might sign/notarize the binaries in their CI, but looking at some random executables it doesn't look like they have a signature: spctl -a -v $(which ).

edit: meaning executables installed from bottles (pre-compiled binaries, not source packages compiled on my local machine)

I generated ca.crt, ica.crt and server.crt. Here gives some details of the certs.

Full code: https://github.com/BenedictWHD/kstreams-example

So I have a producer (data-ingest), processor (external-message-processor), and consumer (internal-message-processor (This will become a processor later once I get things working, so apologies for the naming at the moment, but it is a consumer)).

The data-ingest works from what I can tell as it sends messages to the topic external_messages.

The external-message-processor attempts to read from that topic but fails with the following:

Caused by: java.lang.IllegalArgumentException: The class '[B' is not in the trusted packages: [java.util, java.lang, com.yetti.common.externalmessage, com.yetti.common.externalmessage.*]. If you believe this class is safe to deserialize, please provide its name. If the serialization is only done by a trusted source, you can also enable trust all (*).

Example of a message on the topic:

Headers: __TypeId__: [B, contentType: application/json, spring_json_header_types: {"contentType":"java.lang.String"}"eyJpZCI6IjE4ZGQ2ODc4LWYwNWQtNDJiOC1iYTdlLTU2MDhmMTkzOWU3YyIsImV4dGVybmFsTWVzc2FnZVNvdXJjZSI6IlNNUyIsIm1lc3NhZ2VUeXBlIjoiVFJBTlNBQ1RJT04iLCJudW1iZXJGcm9tIjoiMSIsIm51bWJlclRvIjoiMiIsImNjeSI6Ik5UVEwiLCJxdWFudGl0eSI6IjIuNSJ9"

As you can see the TypeId is for some reason "[B".

I have specified for all 3 of the applications to use the following serializer and deserializer: