Sign In

Sign in with your preferred provider:

About

About Me

Welcome to my website! I'm passionate about technology, software development, and sharing knowledge through writing and code.

About This Website

This website is built with Astro, a modern web framework for building fast, content-focused websites. It's deployed on Cloudflare Workers, providing global edge performance and reliability.

Here you'll find articles about technology, software development practices, and insights from my journey as a developer. I also maintain a bookshelf of books I've read and recommend.

Content Features

  • Articles: Markdown-based articles with MDX support, featuring content on technology, software development, and more
  • Bookshelf: Book reviews and recommendations with detailed reviews and reading status
  • Search: Full-text search across articles and book reviews

Sitemap

This website includes an automatically generated sitemap to help search engines discover and index all pages. The sitemap is updated automatically whenever new content is published.

  • Sitemap Index: Available at /sitemap-index.xml - Contains references to all sitemap files
  • Individual Sitemaps: Generated automatically by Astro's sitemap integration, including all articles, book reviews, and pages
  • SEO Benefits: Helps search engines efficiently crawl and index the site, improving discoverability

Interactive Tools

  • Network Tools: Unified interface for network diagnostics (ping, lookup, traceroute, netmap) and connection information at /scripts/network-tools
  • IP Endpoint: Simple endpoint that returns only your IP address at /ip

User Experience

  • Light/Dark Mode: Theme toggle with automatic system preference detection
  • Curl-Friendly: Plain text output for curl requests - try curl https://vikan.cloud
  • Responsive Design: Mobile-friendly layout with hamburger menu for smaller screens
  • Fast Performance: Optimized for speed with minimal JavaScript and edge deployment
  • SEO Optimized: Structured data (JSON-LD), meta tags, and semantic HTML

Security Features

  • Content-Security-Policy (CSP): Comprehensive CSP headers to protect against XSS and other attacks
  • HTTP Strict Transport Security (HSTS): Enforces HTTPS connections with 1-year max-age
  • Additional Security Headers: X-Frame-Options, X-Content-Type-Options, Referrer-Policy, and more
  • IP Anonymization: Visitor IPs are anonymized (last octet removed) for privacy protection

Cookies and Data Storage

This website uses cookies only for essential functionality—specifically, user authentication. All cookies are strictly necessary for the website to function properly and are exempt from cookie consent requirements under GDPR and ePrivacy regulations.

Essential Cookies Used

  • Session Cookie (session): Stores your authentication session token when you sign in. This cookie is HttpOnly (not accessible to JavaScript), Secure (HTTPS only in production), and expires after 7 days. It is essential for maintaining your logged-in state.
  • OAuth State Cookie (oauth_state): Temporary cookie used during the OAuth sign-in process for CSRF protection. Expires after 10 minutes and is automatically cleared after authentication completes.
  • OAuth Callback Cookie (oauth_callback): Temporary cookie that stores the redirect URL during OAuth sign-in. Expires after 10 minutes and is automatically cleared after authentication completes.

What's NOT Stored in Cookies

  • Theme Preference: Stored in browser localStorage (not cookies), so it's not sent to the server with every request. This is a client-side preference only.
  • Tracking or Analytics: No tracking cookies, analytics cookies, advertising cookies, or third-party cookies are used.
  • Personal Data: Cookies only contain session tokens—no personal information, preferences, or tracking data.

Cookie Security

All cookies use industry-standard security measures:

  • HttpOnly: Prevents JavaScript access, protecting against XSS attacks
  • Secure: Only transmitted over HTTPS in production, protecting against man-in-the-middle attacks
  • SameSite=Lax: Provides CSRF protection by restricting when cookies are sent with cross-site requests
  • Automatic Expiration: Cookies expire automatically (session: 7 days, OAuth: 10 minutes)

No Cookie Consent Required

Under GDPR (General Data Protection Regulation) and ePrivacy Directive, cookies that are "strictly necessary" for a service requested by the user do not require consent. All cookies used on this website are essential for authentication functionality and fall under this exemption. Therefore, no cookie consent banner is displayed.

If you choose not to use the authentication features, no cookies will be set. The website functions fully without authentication—cookies are only used when you sign in to access your profile.

Technical Features

  • TypeScript: Full type safety throughout the codebase
  • CI/CD Pipeline: Automated testing, type checking, and deployment checks via GitHub Actions
  • SBOM Generation: Software Bill of Materials for dependency tracking and security auditing
  • Static Analysis: Integrated SAST tools including npm audit, Semgrep, ESLint, and Trivy
  • Content Management: Templates, validation, linting, indexing, and search tools for content
  • Database: Cloudflare D1 (SQLite) for visitor tracking and ping logging

Tech Stack

  • Framework: Astro 5.16.2
  • Deployment: Cloudflare Workers (global edge network)
  • Database: Cloudflare D1 (serverless SQLite)
  • Content: Markdown & MDX with type-safe content collections
  • Styling: CSS with CSS Variables for theming