Home / Companies / Nhost / Blog / February 2024

February 2024 Summaries

2 posts from Nhost

Filter
Month: Year:
Post Summaries Back to Blog
Elevated Permissions is a new feature introduced by Nhost Auth, designed to enhance security for certain data or user workflows by requiring an additional validation step using a Security Key. When a user successfully completes this extra security challenge, a claim x-hasura-auth-elevated: $user-id is added to their access token, remaining valid for the token's duration. This claim can be utilized as a Permission Variable within the GraphQL API to define access to data and actions needing the extra security check, similar to the x-hasura-user-id. Additionally, the Auth API allows for security checks on endpoints related to changing passwords, altering emails, managing MFA, adding security keys, and creating personal access tokens (PATs) by configuring the mode to 'required' for elevated privileges. Further details and examples can be found in the documentation.
Feb 19, 2024 202 words in the original blog post.
AWS has implemented a charge of $0.005 per hour for public IPv4 addresses starting February 1st, due to the scarcity of IPv4 addresses, impacting infrastructure companies reliant on AWS. This change highlights the industry's shift towards IPv6, a protocol offering a vastly larger address space, though its adoption is hindered by incompatibility issues with IPv4 and the need for extensive updates across tools and services. Despite the potential cost increase, some companies have managed to avoid passing these costs onto users by leveraging efficient IP management strategies, such as using Network Load Balancers (NLBs) and Kubernetes, which allow for a more effective allocation of IP resources. The transition to IPv6 is facilitated by platforms like Nhost, which have preemptively integrated support for IPv6, enabling users to seamlessly adapt without additional effort.
Feb 12, 2024 667 words in the original blog post.