api design – Is it a bad practice to have one API route that can serve both private and public resources conditionally with an optional authorization?

Let’s say I’m making a platform like Linkedin. The platform let you upload your business detail.

All public visitors can go to your business page and view public information such as name and description.
But, if you are the owner, you can also see additional private information such as your Sales figure, Invitations, etc on that same page

To do that, I make a route which gets the detail of a particular business (GET /businesses/:id)

This API has a authorization middleware that, for example, check whether you have a valid JWT to prove your identity.

If the JWT is incorrect or absent, the API only fetches and returns public information of that business.
However, if the JWT is correct, it fetches additional information including all public and private detail of that business.

So, my question is, how serious are the disadvantages of using the same API route with conditional authorization? (maintainability/testability/security?)

Do I need to separate this into two different routes?

deletion – Does certutil -delkey actually delete the certificate and private key?

I am trying to delete a certificate and it’s private key using certutil -csp "Microsoft Enhanced Cryptographic Provider v1.0" -delkey "the key container". This gave me a command completed successfully message. I then check what is in the store again with certutil -store,
this still lists the certificate. When i then try to delete again, it gives me KeySet does not exists.
Can someone explain what the -delkey option and why it still appears in the output?

load balancing – Use ALB to publish a service using EKS with nodes in private subnet WITHOUT a NAT Gateway

I am using eksctl to provision an EKS cluster in my AWS account. It works fine, but I noticed it creates a NAT Gateway, which is somewhat expensive.

Is there a way to have nodes in private subnets expose HTTP services through an ALB (could also be an NLB or ELB in my specific case), without a NAT Gateway?

My services don’t need internet access (i.e, outbound connections).

Thanks

Deploy Virtual Private Server In Under 5 Minute. Swiss-VPS.

Every Virtual Private Servers we offer includes full root access, enabling you to run whatever you wish whenever you want to.
Easy payments methods!
Best Cheap VPS Server for your online resource! What will you choose: VPS or Shared Hosting? High quality Best Cheap VPS Hosting!
Try now, 100% win-win program

VPS Server Features

-Choose VPS Server Location
-ISPmanager or cPanel
-Linux VPS SSH
-SolusVM Control Panel
-Support Quality
-Windows or Linux OS
-Guaranteed Dedicated RAM
-Instant Setup
-Windows VPS RDP


# 1 Cheap hosting PHP, MySQL and FTP sites

Low price and high quality – inexpensive premium hosting exists! Thanks to our cloud hosting technology, today cheap website hosting with MySQL, FTP and PHP offers more features. Let us help you create and run quality websites while saving money. Almost unlimited cheap website hosting. Try our free hosting service if you are still new to website development.

SSD VPS Hosting:swiss-vps.com/ssd-vps-hosting/


SSDVPS2

$9.95/ month
CPU 1хE5-2680
Dedicated RAM 2 GB
Virtualization KVM
Disk Space SSD 20GB
RAID -10 Yes
Setup Fee Free
Bandwidth 2 TB per Month
Port/Uplink 1 Gbit/s
RDP – mstsc.exe Yes
SolusVM Yes
Reboot, Reinstall Yes

SSDVPS4

$19.95/ month
CPU 2хE5-2680
Dedicated RAM 4 GB
Virtualization KVM
Disk Space SSD 30GB
RAID -10 Yes
Setup Fee Free
Bandwidth 4 TB per Month
Port/Uplink 1 Gbit/s
RDP – mstsc.exe Yes
SolusVM Yes
Reboot, Reinstall Yes

Dedicated Server: swiss-vps.com/dedicated-servers/

Server E5-2670

$79/ month
CPU Intel® Xeon E5-2670
Dedicated RAM 16 GB
Disk Space SSD 100GB
IP IP’s 1
Bandwidth 10 TB per Month
Location
Switzerland, Zurich
Port/Uplink 1 Gbit/s

Windows VPS Hosting:swiss-vps.com/windows-vps-hosting/

WinVps1

$11.99/ month
CPU 2хE5-2680
Dedicated RAM 1 GB
Virtualization XEN
Disk Space HDD 25GB
RAID -10 Yes
Setup Fee Free
Bandwidth 1 TB per Month
Port/Uplink 1 Gbit/s
RDP – mstsc.exe Yes
SolusVM Yes
Reboot, Reinstall Yes

WinVps8

$89.99/ month
CPU 2хE5-2680
Dedicated RAM 8 GB
Virtualization XEN
Disk Space HDD 150GB
RAID -10 Yes
Setup Fee Free
Bandwidth 6 TB per Month
Port/Uplink 1 Gbit/s
RDP – mstsc.exe Yes
SolusVM Yes
Reboot, Reinstall Yes

Full list of fares: swiss-vps.co

Our contacts:

Website: swiss-vps.com

.

key management – How does a Certificate get associated to the private key pair?

I am new to SSL certs and trying to understanding once the certificate is imported into the Certificate Store (in Windows), how does the certificate get associated with the private key pair? Is that by creating a pfx that would contain the certificate and private key and import that pfx into Certificate Store? We intent to use the TPM to store the private key (but not using it to generate the keypair). How do we tell the certificate store where the associated private key is to a certificate?

key management – How does a Certificate bind to the private key?

I am new to SSL certs and trying to understanding once the certificate is imported into the Certificate Store (in Windows), how does the private key get binded to that certificate that holds the public key of the keypair? Is that by creating a pfx that would contain the certificate and private key and import that pfx into Certificate Store? We intent to use the TPM to store the private key (but not using it to generate the keypair). How do we tell the certificate store where the private key is?

recover private key – is there a way to find the wallet that my address goes to ?//

I two years ago had a cash out from a casino and i went to myapp store and downloaded what I was coinbase wallet which it was the cold storage wallet that really has no ties beside a wallet connect to coinbase I later figured out. I was brand new to btc and knew nothing about 12 words that i was to immediately write down. I did make an account at wallet.coinbase.com/kristymoser2018 is what I thought was it. I later on saw the money come into my wallet from the casino and at that point it shut my phone down and erased eveything.. when I came back online I found out that I no longer had an account at wallet under the credentials I thought were right

I guess what I am asking is there any other way to figure out where the wallet is cause it still has the money in it and is there any program I can use that may help me figure out where it is and if my private key is in cloud storage?

I have tried to recreate the same scenarfio and have never been ABLE TO understand this

private key – Can Bitcoin be recovered from a child key alone?

I have a question regarding BIP-32 and keys.

Imagine a scenario in which a user creates a new Bitcoin wallet with a seed phrase. He then generates a new address and sends 1 BTC to this address.

Under the covers, my understanding is that a master private/public key will be created from the seed phrase. Then, a child key is created under the parent key for the address.

Now, suppose this user completely loses their seed phrase / master keys, BUT they somehow have a copy of the child key pair that contains their Bitcoin.

Is it possible to recover their Bitcoin from that child key alone? If so, what is the process? Are individual child keys just the same as normal (non BIP-32) key/pairs?

Thanks!

How do many public keys correspond to one private key?

I have read online that hardware wallets can generate new public keys to facilitate transactions. Ie if someone has BTC on an exchange and they want to send that BTC in different installments to a single private key/hardware wallet, that hardware wallet can generate a different public key for each transaction. I’m a bit confused on how this works? Would the ledger not indicate that each of those installments now belongs to a different address? Or is it simply that each time a new public key is generated, the private key in the hardware wallet has the ability to sign for all of those? (Thus creating a persistent, growing list of public keys associated with one private key?).

Additionally, what is displayed on the ledger if that hardware wallet, after multiple installments with different public keys, now wants to send BTC elsewhere? Which of the previous public keys is used? Does it create a new one? Wouldn’t this show up on the ledger as a public key sending more BTC than it ever acquired?

security – Storing private keys in cloud providers enviroment variables

Is it ok to store private keys in cloud provider (such as AWS, Firebase) secrets (enviroment variables) in cloud functions (such as lambdas or firebase cloud functions)?

I understand I would be trusting the safety of the funds in that address to the cloud provider, but I can’t see another solution since I am building an application that has to sign bitcoin transactions from that address.