Pushing this change now. You now have to click the login link with the same device that requested the link or it won't work.
If you want to login with your mobile device but have trouble accessing the link, then you can login on desktop and scan the QR code on your profile :)
Like I said. I originally had this in place, but gave in when people complained about being able to use the login link on a different device. That was the wrong choice.
Now even if someone gets your login link, they won't be able to login for you because the link won't work!
lol, just realized that if someone *did* manage to get your login link all they would need to do is request a login link for your email address and they'd be able to get in.
Going to add another bit to the link payload that's a randomly generated ID to side-step this :)
Oh, actually, I already store the whole magic link in the HTTP-only session cookie, so I'll just use that to verify you're the one who requested the one you're clicking. :)
Here's that (also improved some other error messages as well as the experience of using the site while we're waiting for you to click the magic link): github.com/kentcdodds/ken…
Don't believe the FUD. @Tesla cars/solar/batteries are the best in the business and only getting better. And they're doing more to reduce climate change than anyone else.
What's amazing to me is that FSD wasn't even close to being able to do this just a few months ago. This is an illustration of the leaps and bounds improvement the FSD rewrite is over what's in my car right now. Imagine where this will be in the next few months. #exponential
Every car drives itself any time the driver isn't paying attention. It's totally bonkers to me that we drive around trusting ourselves and other drivers to stay focused on the road.
In 2020, there was a driving related fatality every ~26 seconds. We *need* autonomous driving.
I'm still convinced that my kids (8 and younger) will never need to learn to drive a car. FSD will be *really* good by the end of this year and level-5 autonomy will get regulatory approval in the US in the next 2 years. Maybe sooner.
I'm getting a LOT of github issues on my projects/workshops involving npm v7... I'm still on v6. Did v7 just mess up a bunch of stuff or something?
Just realized that v7 has been out for FIVE months. For some reason I thought it was pretty recent 🙃
I guess I should upgrade and see if I can figure out what's going on with it...
Looks like the best way forward is to make sure the package-lock.json version is "1" (generated by npm@6) and the install script should use `--legacy-peer-deps --no-save`
I wouldn't say this if this were the first time this sort of thing has happened. But this isn't the only thing that makes them terrible. It's one of a list of things.
To be clear, a bad companies can also help a lot of people but that doesn't mean it's not a bad company. It's exploitive of both learners and educators, implements dark patterns, and expects its users to vet the content for thievery.
We chatted for a bit... And then he had to put me on hold again. 🤦♂️
Luckily, the hold music is new and he said if we get disconnected he'll call me right back. I think this journey (of leaving etrade forever) is almost over. 😌
Hey folks, just want to remind you of the 40% off deal going on at TestingJavaScript.com. Here's a thread of what some folks have said about it recently: