Logus Graphics

05/04/2026

Open-sourcing your auth stack is scary. We did it anyway. Grant is live: multi-tenant RBAC, self-hosted,

TypeScript-first — the distillation of months of “how should this actually work in production?”

Curious: would you rather own IAM or rent it?

Why I started Grant, how real-world identity and access problems led me through OAuth, RBAC, and guidance from the National Institute of Standards and Technology (NIST)—and what we shipped when we opened the repository to the world.

01/01/2026

Marcus thought everything was under control. It wasn’t.

While he trusted the system to behave, things were happening out of sight. By the time he decided to check, the situation had already gone off the rails.

This story isn’t about incompetence. It’s about how a tiny, almost invisible mistake can spiral into total loss of control — especially in containers.

I wrote this piece to show how easily things get out of hand, and what you can do to prevent it before you even notice something’s wrong.

Docker containers inherit Unix permissions, but most Dockerfiles ignore them entirely. Running as root, copying files with wrong ownership, and mounting volumes without permission checks—these aren't edge cases. They're the default. Here's how to fix it before your container becomes an attack vect...

14/12/2025

Every developer has done it.

2 AM. Deployment broken. Nothing works.
chmod 777

Problem gone. Security sin committed. Moving on.

But here's what I learned: Unix permissions aren't complicated—they're deliberately simple. And that simplicity is the entire security model.
The same permission system designed in the 1970s still runs your containers, your Kubernetes clusters, your cloud infrastructure.
I wrote about why "boring" is the whole point.

Unix permissions are not granular—they are intentionally simple. This 50-year-old security model still underpins containers, cloud systems, and Kubernetes. Learn why limiting expressiveness is the real security feature.

30/11/2025

Ever wonder how apps access your data without your password?

The answer is OAuth 2.0—one of the most elegant solutions in modern web security.

I wrote a guide that explains delegated authorization through a cute healthcare story and a practical GitHub integration tutorial. Perfect for anyone building secure applications.

Discover how OAuth 2.0 enables trusted delegation of access through an engaging story about three entities working together, then dive deep into the technical details with sequence diagrams, historical context, and a practical GitHub integration example.

27/11/2025

Quick question: How do you control who can do what in your app?

Turns out, there's a simple pattern that AWS, Google, GitHub, and basically everyone uses. It's called RBAC (Role-Based Access Control).

I just wrote the guide I wish someone had shown me years ago. It covers how it works, real examples from major platforms, and how to build it yourself.

Perfect whether you're just starting out or need a refresher.

Check it out and let me know what you think!

A friendly introduction to Role-Based Access Control (RBAC), exploring how this powerful standard shapes authorization in AWS IAM, GCP, GitHub, and countless other platforms we use every day.

24/11/2025

A complete guide to setting up a privacy-focused, offline AI coding assistant using Ollama, Qwen-Coder, and the Continue extension in VSCode.

A complete guide to setting up a privacy-focused, offline AI coding assistant using Ollama, Qwen-Coder, and the Continue extension in VSCode.

24/11/2025

My journey from struggling with password managers and MFA to researching OTP standards and compliance requirements, leading to a focus on building authentication and authorization solutions.

My journey from struggling with password managers and MFA to researching OTP standards and compliance requirements, leading to a focus on building authentication and authorization solutions.

09/09/2021

I can't believe I'm going to say this; I've been using computers for over 30 years now (since I was 5 years old). Because of the global reach Microsoft had at that time in my region (Bolivia/South America) most of us tech lovers there were introduced to the computer world from the Microsoft world, MS-DOS and Windows. For the first 2 decades of my exeperience I used windows and learned all I could about hardware and how computers are assembled and customized. Even though thrilling and knowledge nurturing, it was a hassle to get things done with Windows, just so much configuration, setup, knowledge about compatilibity between different vendors hardware and the different drivers available. The fact that Microsoft launched a whole ecosystem of tech that could be technically plug-and-play also opened an abysm of issues at that time which I got tired of eventually. Then around 7 years ago I switched to the Apple ecosystem and immediately fell in love with the cross-device seamless experience, every product from them just connected, worked and made life so much easier. Not only the experience was seamless and most things worked out of the box with 0 configuration, but also the amount of art, detail and spirit that the products had from what Steve Jobs built was just a whole other universe of wonder and pleasure using their products. However, eventually I realized how absurd it's to try to get run away from the Apple hardware deprecation and how they stop supporting older devices and force you into an absurd chase for the latest product for no good reason. I got sick of it as well. And then here I am, after weighing my options once again, I gave another chance to Microsoft and switched back to an all-in-one solution for leisure, development, engineering as well as creative work. The amount of improvement on the hardware and software integration on the Microsoft ecosytem is undeniable. Specially with mobile chips. AMD Ryzen processors are just insanely fast, and the NVIDIA GPUs can work wonders with games and graphic work. At such a lower cost of what Apple demands, now I'm finally leveraging the most out of Windows and its now a very stable ecosystem. I have to admit, things change so quickly over time. I'm glad I gave it another chance. New setup: Lenovo Legion 5 AMD Ryzen 7 5000 series, NVIDIA GeForce RTX 3060, 32GB DDR4, 512 V-NAND SSD. What a beast.

02/04/2021

Copy Pasting Enginering

02/11/2020

A new journey of discovery awaits. Swift UI
https://developer.apple.com/tutorials/swiftui