(twitter.com)

475 points danielstocks | 1 comments | 27 May 21 10:28 UTC | HN request time: 0s | source

Show context

shaan7 ◴[27 May 21 15:22 UTC] No.27304181[source]▶

Ha, one time I was debugging an issue that only happened to a particular user. Lazy as I was, I hardcoded his auth token in the code "just to test". Having found the bug quickly, I was excited and did not realize I checked-in the auth token too. Bypassed reviews, pushed to prod and then reports started coming in "Hey, users are saying they are all logged in to this random guy's account".

Lessons learned the hard way ;)

replies(1): >>27309512 #

lupire ◴[27 May 21 22:43 UTC] No.27309512[source]▶

>>27304181 #

Did you compensate the victim of your personal and corporate negligence?

replies(2): >>27310379 #>>27310591 #

1. ◴[28 May 21 00:29 UTC] No.27310379[source]▶

>>27309512 #

↑

Klarna users are being signed in to random accounts