Moin! 🖖 My name is Sebastian.

Recent posts

• Component Creator: A Visual Builder for Diagram Nodes

  Apr 11, 2026 · 2 min read · 277 words
  Whenever I put together an architecture diagram, I end up needing the same kind of visual element: a small labelled box with an icon that clearly signals what kind of service or system it represents. Keeping consistent sizing, border treatment, and colour coding across a whole diagram is tedious when you’re assembling things by hand. I built Component Creator to solve that — think of it as a button generator, but for diagram nodes.

• Self-Hosted Google Fonts with nginx

  Apr 10, 2026 · 4 min read · 657 words
  Google Fonts routes your visitors’ IPs through fonts.googleapis.com and fonts.gstatic.com on every page load — there’s no opt-out if you use the hosted CSS directly. I built a small nginx Docker image that sits in front of Google’s font infrastructure, rewrites the CSS on the fly, and serves everything from your own domain — visitors never connect to Google directly.

• bunsy: Sync Local Folders to Bunny CDN Storage

  Apr 9, 2026 · 4 min read · 669 words
  I run this website and a few other projects on Bunny CDN: the production setup is a Storage Zone for hosting all assets and a Pull Zone for CDN services. After each build I need the same loop over and over — walk the local output tree, compare it to what Bunny already has, upload what changed, and optionally remove objects that no longer exist locally. That workflow is second nature with aws s3 sync; for Bunny’s HTTP storage API I wanted something equally boring and reliable, not a one-off shell script.

• keffeine: Learning Journey of building an iOS App with AI

  Feb 23, 2026 · 9 min read · 1,582 words
  I’ve been tinkering on a project that’s been both challenging and rewarding: building a native iOS app in Swift to control my KEF speakers. It started with a simple need — a clearer view of what’s playing — but quickly turned into a deep dive into debugging, APIs, and SwiftUI. Here I’ll share what I learned and the moments that made it worthwhile.

• Deploy Serverless Containers to Scaleway with OpenTofu

  Dec 5, 2025 · 5 min read · 760 words
  After building multiarch Docker containers for Rust applications, you want to deploy them somewhere. Scaleway’s serverless container platform offers a straightforward way to run containers without managing infrastructure, and OpenTofu provides the infrastructure-as-code tooling. This guide walks through deploying Docker containers to Scaleway using the OpenTofu provider, from setting up the registry to running your container.

• Multiarch Docker Containers with Rust

  Dec 5, 2025 · 3 min read · 411 words
  This guide shows how to build multiarch Docker containers for Rust applications using cargo zigbuild for cross-compilation and Docker build commands for architecture-specific or multiarch container images. Based on the example for Building a Rust API with Rocket and JWT Authentication, this guide provides the next steps.

• Building a Rust API with Rocket and JWT Authentication

  Dec 5, 2025 · 11 min read · 1,959 words
  When building backend APIs, JWT authentication is a common requirement. In Rust, you’ve got several web frameworks to choose from, and Rocket is one that makes request handling feel natural with its request guard system. Combining Rocket with JWTiny for JWT validation and JWKServe as a local identity provider gives you a complete setup for development and testing without external dependencies.

• JWTiny: Minimal JWT Validation for Rust

  Dec 4, 2025 · 8 min read · 1,384 words
  I was learning Rust with an example project that needed JWT validation. The popular jsonwebtoken crate depends on serde, but I wanted miniserde instead. That constraint led me to build my own validator — handling signature verification, claims validation, and remote key fetching, designed for reuse across requests. JWTiny is the result.

• JWKServe: A Fake JWT Authentication Service for Local Development

  Dec 4, 2025 · 6 min read · 1,047 words
  When writing backend services that validate JWT access tokens, you run into a frustrating problem: you need a real identity provider just to test your authentication logic. With Cognito, Auth0, or other OpenID Connect providers, spinning up an authentication service for local development or CI pipelines adds unnecessary complexity. You need valid signatures and correct claims, not the provider itself. That’s where JWKServe comes in.

• Static Website Hosting in Europe with Free Services

  Jun 10, 2025 · 2 min read · 321 words
  The AWS European Sovereign Cloud is maybe the most interesting developments of the current cloud computing era; having AWS create a dedicated branch for european workloads is the next big move. But, how do you run a static website without using US vendors at all?