More

efortis · 2026-04-01T20:30:52 1775075452

HTTP mock servers

I’m working on mockaton, which is mainly a filename convention based router.

https://github.com/ericfortis/mockaton

efortis · 2026-03-31T22:50:56 1774997456

I edited a proportional for coding, I’ve been using it for 10 years and it’s great except for tabular alignment.

So it would be nice if IDEs rich-rendered regions column aligned.

eg, object literals in JS, in which space separator are as a wide as needed to align the values.

JetBrains MPS has a decision table rendering for DSLs, which is similar to what I described.

noisem4ker · 2026-04-01T08:23:33 1775031813

> tabular alignment

Check out "elastic tabstops":

https://nick-gravgaard.com/elastic-tabstops/

efortis · 2026-04-01T10:22:03 1775038923

Are you Nick?

noisem4ker · 2026-04-01T10:49:20 1775040560

efortis · 2026-04-02T03:05:22 1775099122

Thank you anyway, that gave me an idea for implementing it.

Here's the prototype https://x.com/efortis/status/2039539455128686677

efortis · 2026-03-30T19:32:57 1774899177

If you prefer proportional fonts, here's one that pads a 1/3 of a space before uppercase letters, so it makes camelCase more legible.

https://github.com/ericfortis/verdanacamel

oneneptune · 2026-03-30T19:36:35 1774899395

This is very cool.

Anecdotal solely to me, very unnerving and even with formatting marks enabled makes me feel uneasy seeing a space without a space formatting mark.

efortis · 2026-03-30T19:48:25 1774900105

yep, sometimes I switch to mono before sharing my screen

efortis · 2026-03-10T13:14:28 1773148468

  man security

on FreeBSD

https://man.freebsd.org/cgi/man.cgi?query=security

efortis · 2026-03-03T10:06:13 1772532373

  Location: Puerto Rico

  Remote: Yes

  Willing to relocate: Yes

  Technologies: React, Three, JS, TS, CSS, HTML

  Résumé/CV: https://ericfortis.com

  Email: efortis@gmail.com

efortis · 2026-02-22T13:06:48 1771765608

A two-server networking setup with VNET Jails:

https://ericfortis.com/blog/freebsd-jails-network-setup

efortis · 2026-02-16T18:05:17 1771265117

I just refactored my colors to use the light-dark function:

https://github.com/ericfortis/mockaton/commit/acf21803480412...

…and it deduplicated autocomplete suggestions in WebStorm

efortis · 2026-02-12T22:59:24 1770937164

I’ve used (and wrote) https://mockaton.com for this. It has a browser extension, which downloads all API responses in your flow.

then you can run mockaton with those mocks. you’ll manually have to anonymize sensitive parts though.

also, you can compile your Frontend(s) and copy their assets, so yo can deploy a standalone demo server. see the last section of: https://mockaton.com/motivation

mocks don’t have to be fully static, it supports function mocks, which are http handlers.

for demoing, the dashboard has a feature for bulk selecting mocks by a comment tag.

legitimate_key · 2026-02-13T11:18:04 1770981484

Thanks for the Mockaton suggestion! I like the API mocking approach - that handles the backend data cleanly.

The challenge I kept running into was the frontend side during live screen shares. Even with mocked APIs, I'd have credentials visible in browser tabs, notifications popping up with client names, or sidebar elements showing sensitive info.

Did you find Mockaton solved the full screen-share exposure problem, or did you combine it with other approaches?

efortis · 2026-02-13T16:31:04 1771000264

I’d need more details, but here are few guesses:

1. If Frontend is directly fetching from a third-party API. Maybe, you could add an env var with the base URL, so it points to the mock server.

2. If it’s a third-party auth service

2a. If the auth service sets a cookie with a JWT, you could inject that cookie with Mockaton like this: https://github.com/ericfortis/mockaton/blob/354d97d6ea42088b...

2b. If it doesn't set a cookie (some SSO providers set it in `sessionStorage`), and assuming it’s a React app with an <AuthProvider>, you might need to refactor the entry component (<App/>) so you can bypass it. e.g.:

  SKIP_AUTH // env var
   ? <MyApp/> 
   : <AuthProvider><MyApp/></AuthProvider>

Then, instead of using the 3rd party hook directly (e.g., useAuth). Create a custom hook, that fallbacks to a mocked obj when there's no AuthContext. Something like:

  function useUser() {
    const context = useContext(AuthContext)

    if (!context) 
      return {
       id_token: 'aa',
       profile: { name: 'John' }
      }

    return {
      id_token: context.id_token ?? '',
      profile: context.profile ?? {},
    } 
  }

efortis · 2026-02-12T21:07:14 1770930434

Related. A few days ago I found two broken links that had `-` instead of `-`.

https://github.com/ericfortis/ericfortis/commit/88be84b77834...

efortis · 2026-01-24T23:12:59 1769296379

Since this works

  const style = document.createElement('style')
  style.textContent = `* { font-family: Arial }`
  document.head.appendChild(style)

I'd say the `data:` URL of the font is violating the Content-Security-Policy, which should show an error in the Console.

Their CSP has `default-src 'self'` and has no font-src, so font-src is 'self' too (it would need `data:` as well)

lupire · 2026-01-25T01:36:52 1769305012

A custom browser can set its own CSP, right?

bangaladore · 2026-01-25T02:50:48 1769309448

CSP is inherently a client-side browser security feature, so yes.