« Of all human activities, only labor, and neither action nor work, is unending, progressing automatically in accordance with life itself and outside the range of willful decisions or humanly meaningful purposes. »
Hannah Arendt
I provide services
API security consulting, audit & training
In the past years, I had a wide range of experiences with OAuth 2.0, OpenID Connect and satellites specifications for their implementation and applications in different contexts, both on server and client sides. I can help to manage user identities, provide authentication, authorization, access control management while being compliant with regulations like the GDPR.
Investigating new ways of digital identity management, I implemented Decentralized identity specifications and participated to some experimentations for its integration in real world use cases. Those gave me some understandings I suggest to share in a training following the european union framework incorporated by eIDAS 2.0.
From an architectural point of view, I designed quite a few setups leveraging Identity and Access Management solutions to centralize user information and manage access controls within infrastructures. From monoliths to microservice backed APIs, I know how to be pragmatic and incremental in the security approach of web services.
craftsmanship coaching
Throughout my career, I was always keen on learning the best practices and worked in environments that encouraged this growth, both from a methodological and a technical point of view. Following that path, I leveraged my knowledge and skills, improved them until being able to share part of them in a lean way. Teams I was in could benefit from those always going upward time ongoing.
I can bring ways for helping part of your assets to not only scale in conventional axes, horizontal, vertical, and sharding but on a human axis. The point being to look forward to the codebase healthiness going further at a long run pace.
My insights gave me the keys to better work in companies, providing them a bottom up approach of improvement for their practices with agile principles in mind. That led me to create a training about agile interactions to share what I could have learned along my career.
« The craft of programming begins with empathy, not formatting or languages or tools or algorithms or data structures. »
Kent Beck
polyglot programming
My experience helped me to have a wide range of technical skills and, as a full-stack developer, I have a T-shaped skillset focusing on backend services. Giving importance to the core concepts in Object Oriented and Functional Programming paradigms (design patterns included) helped me to be proficient in Elixir, JavaScript/Typescript, Ruby, and Python even knowing more programming languages.
I also worked in various domains continuously learning new techniques in new areas of expertise. I can fast adapt to the need of a project or product to bring value adapting to the existing practices and being force of proposal for improvements.
how do I work?
lean & agile
Taking steps back on what I do as a daily routine to get better continuously gives me growth in my skills and my behaviors.
Iterate in a pragmatical way gives better insights for the stakeholders and bring convergence in the deliverables having in mind that perfection is only a goal, not an end.
communicating is the way
Express your ideas in a clear way help to be efficient in the time you give. Besides creating a caring atmosphere that improves psychological safety, if you give the right feedback in the right way, you can pull up team-work and induce growth.
animation & facilitation
Giving life to an idea, a concept, or a design is a collective process according to me. Using animation techniques and good posture create room for innovation.
Defining a target is a process of convergence that follow paths from a diverged state. Finding a collective track to achieve a goal is a must-have for collective work.
« If you want to go fast, go alone, if you want to go far, go together »
African proverb
leverage boruta
boruta is an authorization server providing OAuth 2.0 and OpenID Connect, but also decentralized identity to your services. As an open-source Identity and Access Management solution, it helps centralize authorization and identity related issues within your infrastructures. boruta stands as a server managing identities providing authentication, authorization, and access control management to your HTTP services (APIs) enabling better security.
boruta is composed of an authorization server, an administration interface, an identity provider and a gateway centralizing all API security related needs for a serivce composed of one or more backends.
Have a look at the project on GitHub and its documentation, all feedback is very welcome.
who am I?
Pascal Knoth (@patatoid)
With an academic background, I saw many places producing code to create digital products. It helped me grow and learn various hard but also soft skills with continuous improvement in mind.
Throughout my career, I have been focusing on the API and API security fields mostly evolving on the identity side of the products I have been working on.
My library is full of tech books that gave me rich insights and culture about the IT world like thoughts about craftsmanship, architecture, or technology.
I love to chat about IT, do not hesitate to reach out if you wanna discuss any technical-oriented subjects.
tech acculturated - flexitarian - minimalist