Harness · Architecture · Productivityhttps://danielbenner.de/enhttps://danielbenner.de/articles/causal-graph-as-ai-memory/https://danielbenner.de/articles/causal-graph-as-ai-memory/Why I replaced my context.md with a DOT graph that the AI maintains — and why flat files stop working.Sun, 05 Apr 2026 00:00:00 GMT<p>In a <a href="https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff">previous post</a>, I described using a <span><code><span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span> file as the AI’s working memory — a flat list of open threads split into “In Flight,” “Blocked,” and “Needs Attention.” Each entry was a one-liner: what it is plus current status.</p> <p>It worked for about two months. Then it stopped working.</p> <h2 id="where-flat-context-breaks">Where Flat Context Breaks</h2> <p>The problem isn’t that a markdown list can’t hold enough items. It’s that it can’t express <em>how things are connected</em>.</p> <p>Say you notice code quality problems across the team. That observation spawns several threads: a CI pipeline overhaul, a hiring push for a backend engineer, structured 1:1s, and a decision to restrict an AI auto-fix tool that was generating bad PRs. The CI pipeline enables trunk-based development. The hire leads to onboarding. The 1:1s surface a performance issue with one developer, and give another the space to build a bug triage skill. The AI auto-fix restriction evolves into a proper agent-ticket integration.</p> <p>In <span><code><span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span>, these are separate bullet points:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">## In Flight</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> CI pipeline — live, main is default branch</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Backend engineer — hired, onboarding in progress</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> 1:1s — running across team</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Dev A — performance improvement plan</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Bug triage skill — config-vs-code classifier</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Project management migration — agent integration next</span></span> <span><span style="color:#EEF0F9">...</span></span></code></pre></figure> <p>Every session, the AI reads this list and knows <em>what’s happening</em>. But it doesn’t know <em>why</em>. It can’t see that the CI pipeline exists because of quality problems, that the bug triage skill emerged from the 1:1s with one developer, or that the project management migration is what unblocks the agent-ticket integration. The backstory gets re-explained in conversations. The file doesn’t carry it.</p> <p>The second problem is decay. Flat lists don’t have a natural cleanup lifecycle. Resolved items sit there until someone removes them. “Someone” in practice means me, and I have better things to do than gardening a markdown file. So stale items linger, and the AI treats them as active.</p> <h2 id="the-graph">The Graph</h2> <p>The replacement is a directed graph in DOT format. One file — <span><code><span><span style="color:#4BF3C8">compass</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">index</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">dot</span></span></code></span> — maintained entirely by the AI. I never edit it.</p> <p>Nodes are inflection points. Not routine progress, not daily updates — moments where something actually changed: a decision was made, something shipped, a thread got blocked, or a new workstream spawned from an existing one.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span>n_20260115_quality_problems [</span></span> <span><span> label="Code quality problems observed across team",</span></span> <span><span> timestamp="2026-01-15",</span></span> <span><span> status="resolved",</span></span> <span><span> detail="Sloppy code getting through, bugs in production.</span></span> <span><span> Triggered multiple improvement tracks."</span></span> <span><span>]</span></span> <span> </span> <span><span>n_20260129_ci_decision [</span></span> <span><span> label="Decided: trunk-based dev for new product,</span></span> <span><span> keep old branching model for legacy",</span></span> <span><span> timestamp="2026-01-29",</span></span> <span><span> status="resolved",</span></span> <span><span> detail="New product needs fast iteration.</span></span> <span><span> Legacy needs stability."</span></span> <span><span>]</span></span> <span> </span> <span><span>n_20260205_ci_live [</span></span> <span><span> label="CI pipeline live — main is default branch",</span></span> <span><span> timestamp="2026-02-05",</span></span> <span><span> status="resolved",</span></span> <span><span> detail="Develop branch deleted.</span></span> <span><span> Features must work when merged."</span></span> <span><span>]</span></span></code></pre></figure> <p>Edges encode causation:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span>n_20260115_quality_problems -&gt; n_20260129_ci_decision [type="led_to"]</span></span> <span><span>n_20260129_ci_decision -&gt; n_20260205_ci_live [type="led_to"]</span></span> <span><span>n_20260205_ci_live -&gt; n_20260223_stacked_prs [type="enabled"]</span></span></code></pre></figure> <p>Five edge types cover most relationships: <span><code><span><span style="color:#4BF3C8">led_to</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">spawned</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">enabled</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">blocked_by</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">invalidated</span></span></code></span>. Subgraphs cluster related nodes into workstreams. Cross-thread edges connect workstreams when they interact — a hire in one thread enables a capability in another.</p> <p>The convention that makes it work: <strong>leaves are the current state</strong>. A node with no outgoing edges to other active nodes is where things stand right now. Trace backwards from any leaf, and you get the causal chain of how it got there.</p> <h2 id="what-gets-a-node">What Gets a Node</h2> <p>Not everything. This was the hardest convention to get right.</p> <p>A node is an <strong>inflection point</strong> — a moment that changed the trajectory of a workstream. Specifically:</p> <ul> <li>A decision was made</li> <li>Something shipped or went live</li> <li>A thread got blocked or unblocked</li> <li>A new thread was spawned from an existing one</li> <li>New information changed the picture</li> </ul> <p>“Made progress on feature X” is not a node. “Feature X shipped” is. “Had a good conversation with Y” is not a node. “Y accepted the role change” is. The graph captures the shape of what happened, not the texture.</p> <p>The AI makes this judgment call on its own, and it’s right about 90% of the time. The other 10% is usually over-persisting — creating a node for something that was really just routine progress. That’s the easier error to correct.</p> <h2 id="pruning-and-archiving">Pruning and Archiving</h2> <p>This is where the flat-list decay problem gets solved.</p> <p>When all leaves of a subgraph are resolved or abandoned, and the subgraph is older than roughly three weeks, it gets collapsed: the full graph moves to an archive file, and a single summary node stays in the index.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span>n_archive_agent_pipeline [</span></span> <span><span> label="Agent pipeline — proven and working in production",</span></span> <span><span> timestamp="2026-02-08 to 2026-03-19",</span></span> <span><span> status="resolved",</span></span> <span><span> detail="Research, state machine, QA agent.</span></span> <span><span> Pipeline working hands-off.</span></span> <span><span> See compass/context/archive/agent-pipeline.dot"</span></span> <span><span>]</span></span></code></pre></figure> <p>The archive is still there if the AI needs to trace deep history. But the working graph stays focused on what’s active. Currently I have eight archived subgraphs compressed into summary nodes, and the index stays under 300 lines.</p> <p>The cleanup is natural — it follows from the status conventions rather than requiring manual gardening.</p> <h2 id="why-dot">Why DOT</h2> <p>People ask why not JSON or YAML. A few reasons.</p> <p>DOT is scannable. Open the file and the structure is immediately visible — nodes, edges, subgraphs, labels. JSON would be a wall of nested objects. YAML would be fragile about indentation.</p> <p>Claude reasons well about DOT. It can parse the graph structure, follow edges, identify leaves, and produce valid updates without a schema definition or parsing library. The format is simple enough that an LLM handles it natively.</p> <p>It renders. If you ever want to visualize the graph, <span><code><span><span style="color:#4BF3C8">dot</span><span style="color:#EEF0F9"> -</span><span style="color:#4BF3C8">Tpng</span><span style="color:#4BF3C8"> index</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">dot</span><span style="color:#EEF0F9"> -</span><span style="color:#4BF3C8">o</span><span style="color:#4BF3C8"> graph</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">png</span></span></code></span> works. I rarely do this, but it’s useful for debugging when subgraphs get tangled.</p> <p>And it has just enough structure without being rigid. Nodes have attributes (label, timestamp, status, detail) but the format doesn’t enforce a schema. If I need a new attribute, I add it. No migrations.</p> <h2 id="what-it-enables">What It Enables</h2> <p>The graph changes what the AI can do at session start. Instead of reading a flat list and knowing <em>what’s happening</em>, it reads a causal narrative and knows <em>the story</em>.</p> <p>This matters most for advice and planning. When I ask about a workstream, the AI doesn’t just report status — it can explain the causal chain, point to decisions that constrained the current state, and notice when threads that should be connected aren’t.</p> <p>It also makes session handoffs sharper. The previous post described <span><code><span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span> as “briefing notes for an incoming shift.” The graph is more like handing over a case file — not just the current situation, but the chain of events that produced it.</p> <p>Two specific things it catches that flat files miss:</p> <p><strong>Stale threads.</strong> A node sitting at <span><code><span><span style="color:#4BF3C8">active</span></span></code></span> status with no recent children is visibly stale — there’s been no inflection point in weeks. The graph makes this structural rather than requiring someone to notice a dusty bullet point.</p> <p><strong>Cross-thread dependencies.</strong> When one workstream blocks or enables another, that edge exists in the graph. The AI can surface it: “the project management migration you’ve been putting off is what unblocks the bug triage workflow.” In a flat list, those are just two unrelated bullet points.</p> <h2 id="tradeoffs">Tradeoffs</h2> <p><strong>It’s an AI-only file.</strong> I don’t read or edit the graph. This is by design — the AI maintains it as part of session wrap-up, and I review the effects (better session starts, better advice) rather than the artifact. But it means the memory system is opaque to me. If the AI misrepresents something, I might not notice until it gives bad advice.</p> <p><strong>Inflection point judgment is imperfect.</strong> The AI tends to over-persist rather than under-persist. A weekly conversation that was really just a status check sometimes gets a node. The fix is easy — delete or merge the node — but it requires noticing.</p> <p><strong>DOT gets big.</strong> Without the archiving lifecycle, the graph would grow indefinitely. Even with archiving, a busy quarter can produce a 400-line index. The subgraph structure keeps it navigable, but there’s a complexity ceiling.</p> <p><strong>It requires the session-end hook.</strong> The graph doesn’t maintain itself — it’s updated by a background agent that runs after each session. If that hook fails or isn’t configured, the graph goes stale. The system has a dependency on infrastructure that a markdown file doesn’t.</p> <h2 id="the-evolution">The Evolution</h2> <p>The progression was: no context → flat markdown list → causal graph. Each step solved a real problem with the previous approach.</p> <p>The flat list solved cold starts — AI stopped asking “what are you working on?” every session. The graph solved narrative loss — AI stopped asking “why are you doing it this way?” and “what happened with X?”</p> <p>Whether you need the graph depends on how many concurrent threads you’re managing and how long they live. If you’re tracking three things over two weeks, <span><code><span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span> is fine. If you’re tracking twenty things over three months with causal dependencies between them, the flat file will eventually fail you the same way it failed me.</p> <p>The building blocks haven’t changed from the <a href="https://danielbenner.de/articles/minimal-ai-friendly-notes">original system</a>: plain text, simple conventions, full transparency. The graph is just a better data structure for the job.</p>AIProductivityToolshttps://danielbenner.de/books/the-art-of-action/https://danielbenner.de/books/the-art-of-action/The core argument is strong and immediately practical — the three gaps framework and leading with intent over instructions clicked right away. But the book is way too long for what it has to say. You get the idea early, and then it's variations on the same theme for another 200 pages.Sun, 29 Mar 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Three Gaps</h2> <div class="text-sm leading-relaxed"> <p>Execution breaks down in three distinct ways:</p><ul> <li><strong>Knowledge gap</strong> — between plans and outcomes. What we know vs what we’d need to know.</li> <li><strong>Alignment gap</strong> — between plans and actions. What we intend vs what people do.</li> <li><strong>Effects gap</strong> — between actions and outcomes. What we do vs what results we get.</li> </ul><p>Organizations instinctively reach for the wrong lever: more information for the knowledge gap, more detailed instructions for alignment, tighter controls for effects. Each response tries to eliminate uncertainty rather than navigate it — and makes things worse.</p><p>The appropriate responses: accept uncertainty and build adaptive capacity (knowledge), clarify intent not instructions (alignment), tighter feedback loops not more reporting (effects).</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Detail Is Not Clarity</h2> <div class="text-sm leading-relaxed"> <p>More detail in instructions doesn’t make them clearer. It makes them more brittle. Every detail bakes in an assumption about the environment. When conditions change — and they will — some details become irrelevant, some impossible, some actively counterproductive.</p><p>The alternative: communicate intent. What are we trying to achieve? Why does it matter? What constraints must be respected? Then let people closest to the work figure out how. They have information the planner doesn’t, and they can adapt as conditions change.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Simplicity Precedes Clarity</h2> <div class="text-sm leading-relaxed"> <p>To make something clear, you first have to make it simple. A complex message delivered with perfect articulation is still complex. People won’t misunderstand because you were unclear — they’ll misunderstand because there was too much to parse.</p><p>This reframes the leader’s job: it’s not a communication problem, it’s a thinking problem. The hard work is deciding what to leave out. The clarity follows.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Briefing and Backbriefing</h2> <div class="text-sm leading-relaxed"> <p>The protocol that makes intent-based leadership actually work. A brief passes down three things: the context and what the level above is trying to achieve, your own intent (the what and why, not how), and the boundaries that must be respected.</p><p>The key move: share your superior’s intent <em>and</em> your own. People understand not just what you want but what the layer above wants — so they can make intelligent decisions when your specific intent becomes irrelevant.</p><p>Backbriefing closes the loop. The receiver explains back what they understood, how they plan to achieve it, and what risks they see. Misunderstandings surface before execution. If their plan differs from what you imagined but achieves the intent — you shut up and let them do it. You don’t correct the how if the what and why are right.</p> </div> </div>Bookshttps://danielbenner.de/books/the-choice/https://danielbenner.de/books/the-choice/The core ideas are strong — inherent simplicity, the thinking traps around compromise and blame. But for a book that's supposed to be about life, it leans almost entirely on business cases. The argument is that if it works for complex organizations it works for simpler ones too. Fair enough, but then show me.Tue, 10 Mar 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Inherent Simplicity</h2> <div class="text-sm leading-relaxed"> <p>Goldratt’s foundational claim: complex systems are governed by very few root causes. The more interconnected the parts, the fewer degrees of freedom — everything constrains everything else, which paradoxically reduces the system to a small number of governing variables.</p><p>This isn’t optimism. It’s a structural argument about interdependent systems. The simplicity is hidden — you have to work through the complexity to find it. But it’s there.</p><p>Implications: if your fix requires orchestrating dozens of changes, you probably haven’t found the real cause. Complex solutions signal incomplete understanding.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Humble and Arrogant</h2> <div class="text-sm leading-relaxed"> <p>Two stances, held simultaneously:</p><ul> <li><strong>Humble toward reality</strong> — your current model is incomplete. Don’t defend your assumptions.</li> <li><strong>Arrogant toward your capability</strong> — reality is knowable. The complexity can be understood.</li> </ul><p>Most people invert this: arrogant about their understanding (defending their current view) and humble about their capability (believing the problem is too complex to solve).</p><p>This also reframes luck. Opportunities exist everywhere, but you only spot them when you perceive reality clearly rather than through the fog of assumptions. Luck = preparedness + opportunity.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Compromise as a Thinking Trap</h2> <div class="text-sm leading-relaxed"> <p>Accepting that conflicts require compromise is itself a barrier to clear thinking. When you settle for a compromise, you stop looking for the false assumption that created the apparent conflict in the first place.</p><p>It feels mature — pragmatic, reasonable. But it’s intellectual surrender. You’re accepting a constraint without verifying it exists.</p><p>The alternative isn’t naive win-win optimism. It’s disciplined questioning: <em>what assumption would have to be false for both sides to get what they need?</em></p><p>Every compromise narrows the solution space for future decisions. You optimize within boundaries that were never real.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">From Complexity to Blame</h2> <div class="text-sm leading-relaxed"> <p>The belief that reality is inherently complex doesn’t just produce worse solutions — it poisons relationships. The chain:</p><ol> <li><strong>Assume complexity</strong> — no clean answer exists</li> <li><strong>Accept zero-sum framing</strong> — your gain is my loss</li> <li><strong>Settle for compromise</strong> — we each give up something</li> <li><strong>Blame when it fails</strong> — I sacrificed and it didn’t work, because of you</li> </ol><p>Each step feels reasonable in isolation. Together, they create a cycle of resentment. In a finite-cake world, compromise means loss — and when the outcome is bad, someone must be responsible for your loss.</p><p>Flip the first assumption — believe in inherent simplicity — and the whole chain unravels. You stop treating others as adversaries and start looking for root causes together.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Complexity Assumption Trap</h2> <div class="text-sm leading-relaxed"> <p>Assuming a problem is irreducibly complex becomes self-fulfilling. You stop looking too early, never find the root cause, and the persistent mess confirms your belief that it was complex all along.</p><p>What gets lost: root causes stay hidden, leverage points go unused, effort scatters across non-constraints, and repeated failure erodes confidence — reinforcing the belief the problem is unsolvable.</p><p>The fix is methodological: assume the few root causes exist and keep looking. This doesn’t guarantee you’ll find them — but assuming complexity guarantees you won’t.</p> </div> </div>Bookshttps://danielbenner.de/books/turn-the-ship-around/https://danielbenner.de/books/turn-the-ship-around/Good storytelling — the submarine setting makes it more engaging than yet another business book. The core ideas are true and valuable, but shallow. The whole model assumes highly trained experts who just lack ownership. In most real companies, the harder problem is competence gaps, not motivation gaps.Sun, 15 Feb 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Information Locality and Decision Rights</h2> <div class="text-sm leading-relaxed"> <p>Decisions require information. You have two options:</p><ol> <li><strong>Centralize information</strong> — move data up to where decisions are made</li> <li><strong>Decentralize decisions</strong> — move authority down to where information exists</li> </ol><p>Centralizing information is slow, lossy, and expensive. By the time context reaches the top, it’s stale. Nuance gets compressed. You build bureaucracy just to shuttle information around.</p><p>Pushing decisions to the edge is more efficient — no transmission delay, no compression loss. But it only works when people are competent enough to decide well, and aligned enough that distributed decisions don’t fragment.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Three Pillars of Decentralized Decisions</h2> <div class="text-sm leading-relaxed"> <p>Decentralizing authority without supporting conditions creates chaos. Three pillars must hold together:</p><ul> <li><strong>Control</strong> — actual authority to decide</li> <li><strong>Competence</strong> — capability to decide well</li> <li><strong>Clarity</strong> — shared intent so decisions align</li> </ul><p>Missing any one breaks the system. Control without competence produces mistakes. Control without clarity produces fragmentation. Competence and clarity without control is wasted potential — people who could decide but aren’t allowed to.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Inverting the Direction of Initiative</h2> <div class="text-sm leading-relaxed"> <p>Traditional leadership pushes down: leader gives orders, subordinate executes. The alternative flips the active party.</p><p>Instead of leaders extracting information upward and pushing decisions down, subordinates surface decisions in ready-to-validate form: <em>“I intend to…”</em> The leader’s role shifts from directing to enabling — intervening only when needed.</p><p>This is more efficient because the person with the information packages it themselves. No lossy compression, no waiting for the next status meeting.</p> </div> </div>Bookshttps://danielbenner.de/articles/skills-over-tools/https://danielbenner.de/articles/skills-over-tools/A markdown file that explains a CLI is more flexible than a fixed tool definition or a whole MCP server.Sat, 14 Feb 2026 00:00:00 GMT<p>The standard approach to giving AI agents capabilities is tool definitions — fixed function signatures with typed parameters. MCP servers formalize this further: a dedicated process that exposes a set of tools over a protocol.</p> <p>Both work. Both are also unnecessarily rigid. There’s a simpler pattern that’s more flexible and requires less infrastructure: a skill file that teaches the agent how to use an existing CLI tool.</p> <h2 id="the-three-approaches">The Three Approaches</h2> <p><strong>Fixed tools</strong> are function signatures baked into the agent’s configuration. A browser tool might expose <span><code><span><span style="color:#00DAEF">navigate</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">url</span><span style="color:#EEF0F9">)</span></span></code></span>, <span><code><span><span style="color:#00DAEF">click</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">selector</span><span style="color:#EEF0F9">)</span></span></code></span>, <span><code><span><span style="color:#00DAEF">extract_text</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">selector</span><span style="color:#EEF0F9">)</span></span></code></span>. Each action is a separate tool call with a defined schema.</p> <p><strong>MCP servers</strong> package these tools into a standalone process. The agent discovers available tools via the protocol, calls them with structured JSON, gets structured JSON back. It’s tools-as-a-service.</p> <p><strong>Skills</strong> are instruction files — markdown documents that describe how to use a CLI tool via the agent’s existing shell access. No protocol, no server, no schema. Just documentation the agent reads and follows.</p> <h2 id="what-a-skill-looks-like">What a Skill Looks Like</h2> <p>I built <a href="https://github.com/devbydaniel/bb">bb</a>, a browser automation CLI. Instead of wrapping it in an MCP server, I wrote a skill file — a markdown document that explains the commands:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8"># Browse</span></span> <span> </span> <span><span style="color:#EEF0F9">Browse the web using </span><span style="color:#FFD493">`bb`</span><span style="color:#EEF0F9">, a browser automation CLI</span></span> <span><span style="color:#EEF0F9">that drives a persistent headless Chrome instance.</span></span> <span> </span> <span><span style="color:#4BF3C8">## Quick reference</span></span> <span> </span> <span><span style="color:#EEF0F9">bb open https://example.com # navigate and read</span></span> <span><span style="color:#EEF0F9">bb text ".article-body" # extract specific content</span></span> <span><span style="color:#EEF0F9">bb click "button.load-more" # interact</span></span> <span><span style="color:#EEF0F9">bb wait ".results" # wait for dynamic content</span></span> <span><span style="color:#EEF0F9">bb screenshot page.png # capture</span></span> <span><span style="color:#EEF0F9">bb stop # clean up</span></span></code></pre></figure> <p>The file covers the most common commands and patterns — not all of them. It doesn’t have to. If the agent needs a command that isn’t in the skill file, it runs <span><code><span><span style="color:#4BF3C8">bb</span><span style="color:#EEF0F9"> --</span><span style="color:#4BF3C8">help</span></span></code></span> and figures it out. The skill provides the fast path; the CLI’s own documentation covers everything else.</p> <h2 id="why-this-works-better">Why This Works Better</h2> <h3 id="no-capability-ceiling">No Capability Ceiling</h3> <p>Fixed tools define a finite set of operations. If the tool definition doesn’t include “wait for network idle then extract text from a specific selector,” the agent can’t do it. Someone has to anticipate every useful combination and define a tool for each.</p> <p>With a CLI, the agent composes commands freely:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">bb</span><span style="color:#FFD493"> open</span><span style="color:#FFD493"> https://example.com</span></span> <span><span style="color:#00DAEF">bb</span><span style="color:#FFD493"> wait</span><span style="color:#FFD493"> ".results"</span></span> <span><span style="color:#00DAEF">bb</span><span style="color:#FFD493"> text</span><span style="color:#FFD493"> ".results .item:first-child"</span></span></code></pre></figure> <p>No one had to define a <span><code><span><span style="color:#4BF3C8">navigate_wait_and_extract_first_item</span></span></code></span> tool. The agent read the available commands and composed them to fit the task.</p> <h3 id="commands-chain-naturally">Commands Chain Naturally</h3> <p>CLI tools compose with pipes and subshells. A single line can do what would take multiple round-trip tool calls:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">bb</span><span style="color:#FFD493"> text</span><span style="color:#FFD493"> ".item"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">grep</span><span style="color:#FFD493"> "in stock"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">wc</span><span style="color:#FFD493"> -l</span></span></code></pre></figure> <p>Count of in-stock items, one command. With fixed tools, this is three separate calls: extract text, filter results, count matches — each one a full round trip through the tool interface.</p> <p>The agent already knows bash. Piping, redirection, <span><code><span><span style="color:#4BF3C8">grep</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">jq</span></span></code></span>, <span><code><span><span style="color:#4BF3C8">awk</span></span></code></span> — these aren’t features anyone needs to build. They’re already there, and they work with any CLI that outputs plain text.</p> <h3 id="no-server-to-run">No Server to Run</h3> <p>MCP servers are processes. They need to start, stay running, handle connections, manage state. That’s operational overhead for what amounts to “let the agent click buttons in a browser.”</p> <p>A CLI is already running infrastructure. <span><code><span><span style="color:#4BF3C8">bb</span></span></code></span> auto-starts Chrome on first use and persists state in <span><code><span><span style="color:#EEF0F9">~</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">.</span><span style="color:#EEF0F9">bb</span><span style="color:#FFD493">/</span></span></code></span>. The agent calls it like any other command. No daemon to manage, no protocol to speak.</p> <h3 id="the-agent-already-has-a-shell">The Agent Already Has a Shell</h3> <p>This is the part that gets overlooked. Agents that can execute bash commands already have the most flexible tool interface possible. A shell command can do anything a tool definition can do, plus everything else.</p> <p>Adding an MCP server for browser automation means: install the server, configure the connection, handle the protocol overhead — all to give the agent capabilities it could have through <span><code><span><span style="color:#4BF3C8">bb</span><span style="color:#4BF3C8"> open</span><span style="color:#EEF0F9"> https:</span><span style="color:#EEF0F98F;font-style:italic">//example.com</span></span></code></span>.</p> <h3 id="skill-files-are-self-documenting">Skill Files Are Self-Documenting</h3> <p>A tool definition is a schema. A skill file is documentation. The agent doesn’t just know <em>what</em> it can call — it knows <em>when</em> and <em>how</em> to use each command effectively.</p> <p>From the <span><code><span><span style="color:#4BF3C8">bb</span></span></code></span> skill:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">## Tips</span></span> <span> </span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Start with </span><span style="color:#FFD493">`bb open`</span><span style="color:#EEF0F9"> — it navigates and extracts readable</span></span> <span><span style="color:#EEF0F9"> content in one step.</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> For SPAs, use </span><span style="color:#FFD493">`bb open &lt;url&gt;`</span><span style="color:#EEF0F9"> then </span><span style="color:#FFD493">`bb wait &lt;selector&gt;`</span></span> <span><span style="color:#EEF0F9"> before extracting.</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Use </span><span style="color:#FFD493">`bb ax-tree`</span><span style="color:#EEF0F9"> when you need to understand page structure</span></span> <span><span style="color:#EEF0F9"> without reading raw HTML.</span></span></code></pre></figure> <p>This kind of contextual guidance doesn’t fit in a tool schema. In an MCP server, it lives in description fields that are often too short to be genuinely useful. In a skill file, there’s no length limit. Write whatever the agent needs to know.</p> <h3 id="updates-are-trivial">Updates Are Trivial</h3> <p>Adding a new command to <span><code><span><span style="color:#4BF3C8">bb</span></span></code></span> means updating the skill file — a markdown edit. No schema changes, no server redeployment, no version negotiation. The agent reads the updated file next time it needs to browse.</p> <h2 id="when-tools-and-mcp-servers-make-sense">When Tools and MCP Servers Make Sense</h2> <p>This isn’t universal. Fixed tools work well when:</p> <ul> <li><strong>The agent doesn’t have shell access.</strong> Web-based agents or sandboxed environments need structured tool interfaces.</li> <li><strong>You need strict input validation.</strong> Tool schemas enforce types and required fields at the protocol level.</li> <li><strong>Multiple agents share the same server.</strong> MCP’s discovery protocol helps when you have many consumers.</li> </ul> <p>But for a coding agent that already runs in a terminal — which is most of them — skills over CLIs are simpler, more flexible, and require less maintenance.</p> <h2 id="the-pattern">The Pattern</h2> <ol> <li>Build the capability as a CLI with plain-text output.</li> <li>Write a skill file that documents usage, patterns, and tips.</li> <li>Let the agent read the skill and call the CLI through bash.</li> </ol> <p>The agent gets full access to the tool’s capabilities without anyone having to predict which combinations of operations it might need. The CLI handles the complexity. The skill file provides the context. The shell connects them.</p> <p>No servers. No schemas. No protocol overhead. Just commands and documentation.</p>AICLIArchitecturehttps://danielbenner.de/articles/automated-meeting-processing/https://danielbenner.de/articles/automated-meeting-processing/A CLI tool records meetings, transcribes them, and an AI agent processes the results into my operating system — no manual notes required.Tue, 10 Feb 2026 00:00:00 GMT<p>I stopped taking meeting notes. Not because I got lazy — because I automated the entire chain from raw audio to structured action items, decisions logged, and references updated.</p> <p>The setup has two parts: a Go CLI tool called <span><code><span><span style="color:#4BF3C8">meetingcli</span></span></code></span> that handles recording and transcription, and an AI agent skill that processes the transcript into my <a href="https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff">personal operating system</a>. End to end, a one-hour meeting goes from audio to fully processed in about a minute after I hang up.</p> <h2 id="the-recording-problem">The Recording Problem</h2> <p>Meeting notes are lossy. You’re either paying attention or writing things down — rarely both. And even good notes miss nuance, exact phrasing, and the stuff you didn’t realize was important until later.</p> <p>The alternative is recording, but most tools dump you with a giant audio file or a mediocre transcript locked inside some SaaS platform. I wanted something local, private, and plugged into my existing workflow.</p> <h2 id="meetingcli">meetingcli</h2> <p><a href="https://danielbenner.de/products/meetingcli"><span><code><span><span style="color:#4BF3C8">meetingcli</span></span></code></span></a> is a Go CLI that does three things: record, transcribe, and summarize. One command, no UI.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">meeting</span><span style="color:#FFD493"> start</span><span style="color:#FFD493"> --name</span><span style="color:#FFD493"> "product-sync"</span></span> <span><span style="color:#EEF0F98F;font-style:italic"># talk for an hour</span></span> <span><span style="color:#EEF0F98F;font-style:italic"># Ctrl+C to stop</span></span> <span><span style="color:#EEF0F98F;font-style:italic"># → transcription and summary happen automatically</span></span></code></pre></figure> <h3 id="dual-audio-capture">Dual Audio Capture</h3> <p>The tricky part of meeting recording on macOS is capturing both sides of the conversation. <span><code><span><span style="color:#4BF3C8">meetingcli</span></span></code></span> runs two audio streams in parallel:</p> <ol> <li> <p><strong>System audio</strong> via Apple’s ScreenCaptureKit — this captures whatever’s coming out of your speakers or headphones. It taps directly into the OS audio mixer, so it works with Bluetooth headphones, external DACs, whatever. The implementation is Objective-C bridged into Go via cgo.</p> </li> <li> <p><strong>Microphone audio</strong> via ffmpeg from the default input device.</p> </li> </ol> <p>Both streams record to separate WAV files, then get merged into a single <span><code><span><span style="color:#4BF3C8">recording</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">wav</span></span></code></span> using ffmpeg’s <span><code><span><span style="color:#4BF3C8">amix</span></span></code></span> filter. The system audio capture does real-time downsampling from 48kHz stereo float32 to 16kHz mono int16 — keeps file sizes reasonable without losing speech clarity.</p> <p>Each meeting lands in its own timestamped folder:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F9">~/</span><span style="color:#4BF3C8">meetings</span><span style="color:#EEF0F9">/</span><span style="color:#FFD493">2026</span><span style="color:#EEF0F9">-</span><span style="color:#FFD493">02</span><span style="color:#EEF0F9">-</span><span style="color:#FFD493">06_14</span><span style="color:#EEF0F9">-</span><span style="color:#FFD493">00</span><span style="color:#EEF0F9">-00</span><span style="color:#4BF3C8">_product</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">sync</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">recording</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">wav</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">merged</span><span style="color:#4BF3C8"> audio</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">system</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">wav</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">system</span><span style="color:#00DAEF"> audio</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">raw</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">mic</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">wav</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">mic</span><span style="color:#00DAEF"> audio</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">raw</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">transcript</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">diarized</span><span style="color:#4BF3C8"> transcript</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">summary</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#ACAFFF">AI</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">generated</span><span style="color:#4BF3C8"> summary</span></span></code></pre></figure> <h3 id="transcription">Transcription</h3> <p>The merged audio gets sent to Mistral’s Voxtral API with speaker diarization enabled. The transcript comes back with speaker labels, so you get a readable conversation rather than a wall of text:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#FFD493">**Speaker 0:**</span></span> <span><span style="color:#EEF0F9">We need to decide on the auth model before shipping the API redesign.</span></span> <span> </span> <span><span style="color:#FFD493">**Speaker 1:**</span></span> <span><span style="color:#EEF0F9">I think JWT with refresh tokens is the way to go. OAuth adds complexity we don't need yet.</span></span></code></pre></figure> <p>Voxtral handles multilingual audio well — useful when half your meetings are in German and the other half in English.</p> <h3 id="summary">Summary</h3> <p>After transcription, the full text goes to Claude Haiku 4.5 for summarization. This produces a quick-reference summary with key topics, decisions, and action items. Useful for a glance, but the real value comes from what happens next.</p> <h2 id="processing-transcripts-into-the-system">Processing Transcripts Into the System</h2> <p>Recording and transcribing is table stakes. The interesting part is what happens to the transcript after.</p> <p>I have an AI agent skill called <span><code><span><span style="color:#4BF3C8">process</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">meetings</span></span></code></span> that reads transcripts and updates my entire operating system accordingly. When I run it, it spawns a parallel sub-agent for each meeting recorded that day. Each sub-agent reads the transcript and does six things:</p> <h3 id="1-creates-a-meeting-note">1. Creates a Meeting Note</h3> <p>A concise summary goes into the relevant project folder — participants, key topics, decisions, action items with owners. Not a rehash of the transcript, but the stuff that matters a week from now.</p> <h3 id="2-updates-the-compass">2. Updates the Compass</h3> <p>The <a href="https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff">compass</a> is my AI’s memory system. The agent updates <span><code><span><span style="color:#4BF3C8">decisions</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span> when significant decisions were made, updates the context graph when project status changed, and captures any preferences I expressed.</p> <p>If I said “let’s drop the OAuth requirement and go with API keys” in a meeting, that decision gets logged with reasoning. Next time AI helps me with the auth system, it knows what was decided and why.</p> <h3 id="3-updates-references">3. Updates References</h3> <p>Project briefs, people files, and other reference documents get updated when durable understanding changes. New team member mentioned? Their file gets created. Project scope shifted? The brief gets updated.</p> <h3 id="4-flags-tasks">4. Flags Tasks</h3> <p>This one is deliberately conservative. The agent only creates tasks that are directly my responsibility — not things assigned to other team members, not things I just need to be aware of. It checks existing tasks first to avoid duplicates.</p> <h3 id="5-updates-collections">5. Updates Collections</h3> <p>If I mentioned a restaurant I liked or a hike worth doing, it gets added to my collections. Small thing, but it means casual mentions don’t get lost.</p> <h3 id="6-zettelkasten-connections">6. Zettelkasten Connections</h3> <p>Occasionally a meeting surfaces a genuinely interesting concept or pattern. The agent checks if it connects to existing notes in my knowledge base. Most meetings don’t produce anything here — that’s by design.</p> <h2 id="the-full-pipeline">The Full Pipeline</h2> <p>Here’s what a typical day looks like:</p> <ol> <li>Join a meeting. Run <span><code><span><span style="color:#4BF3C8">meeting</span><span style="color:#4BF3C8"> start</span></span></code></span>. Talk.</li> <li>Hang up. Ctrl+C. Transcription and summary happen automatically.</li> <li>At the end of the day (or whenever), run the process-meetings skill.</li> <li>Sub-agents process each meeting in parallel. My compass, references, tasks, and notes all get updated.</li> </ol> <p>Total manual effort: typing <span><code><span><span style="color:#4BF3C8">meeting</span><span style="color:#4BF3C8"> start</span></span></code></span> and pressing Ctrl+C.</p> <h2 id="why-this-works">Why This Works</h2> <p>Three design choices make the difference:</p> <p><strong>Local-first recording.</strong> The audio files live on my machine. No uploading hour-long recordings to some startup’s servers. The only thing that leaves my machine is the audio going to Mistral for transcription and the text going to Anthropic for summarization.</p> <p><strong>Separation of capture and processing.</strong> <span><code><span><span style="color:#4BF3C8">meetingcli</span></span></code></span> does one job well: turn audio into text. The AI agent does the interpretation. This means I can improve either side independently. Better transcription model? Swap the API call. Better processing logic? Update the skill prompt.</p> <p><strong>Transparent output.</strong> Everything is markdown files in known locations. No database, no proprietary format. The meeting folders are just folders. The compass updates are just file edits. I can inspect, override, or correct anything.</p> <h2 id="building-meetingcli">Building meetingcli</h2> <p>The tool is open source and installable via Homebrew:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">brew</span><span style="color:#FFD493"> install</span><span style="color:#FFD493"> devbydaniel/tap/meeting</span></span></code></pre></figure> <p>The Go codebase follows hexagonal architecture — the recording, transcription, and summarization are separate use cases with clean interfaces. The macOS audio capture is the most interesting piece technically: an Objective-C implementation of ScreenCaptureKit bridged into Go, handling real-time audio format conversion in the capture callback.</p> <p>If you’re curious about the implementation or want to adapt it for your own workflow, the <a href="https://github.com/devbydaniel/meetingcli">source is on GitHub</a>.</p> <h2 id="whats-missing">What’s Missing</h2> <p>Speaker identification. Voxtral gives you “Speaker 0” and “Speaker 1,” not names. I could map these manually or build a voice fingerprinting step, but honestly the context usually makes it obvious who said what.</p> <p>The summary step inside <span><code><span><span style="color:#4BF3C8">meetingcli</span></span></code></span> is redundant with the agent processing. I might remove it or make it optional — the agent produces better, more contextualized output anyway.</p> <p>And the processing skill currently requires me to trigger it manually. It could watch the meetings directory and process automatically when a new transcript appears. Haven’t needed that yet — running it once at end of day works fine.</p>AIProductivityToolsGohttps://danielbenner.de/articles/building-a-personal-ai-agent-with-raspberry-pi-and-telegram/https://danielbenner.de/articles/building-a-personal-ai-agent-with-raspberry-pi-and-telegram/You don't need OpenClaw. A Raspberry Pi, a Telegram bot, and git hooks get you a persistent AI assistant you actually understand.Sun, 08 Feb 2026 00:00:00 GMT<p>OpenClaw is everywhere right now. 145,000 GitHub stars, CNBC coverage, AI agents posting on their own social network. It manages your emails, browses the web, schedules your calendar, shops for you — “the AI that actually does things.”</p> <p>It’s also a mass of dependencies you’ll never fully understand, running on your operating system with access to your private data. Palo Alto Networks called it a “lethal trifecta” of security risks. The creator himself says it’s not ready for non-technical users.</p> <p>Here’s my counterproposal: build it yourself. Not because OpenClaw is bad — the ambition is right. But because personal AI infrastructure is <em>personal</em>. You want to understand every piece. And the architecture is simpler than you’d think.</p> <h2 id="the-setup">The Setup</h2> <p>A Raspberry Pi. A Telegram bot. Git hooks. That’s the stack.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F9">┌─────────────┐ ┌──────────────────┐</span></span> <span><span style="color:#EEF0F9">│ </span><span style="color:#4BF3C8">Telegram</span><span style="color:#EEF0F9"> │◄─────►│ </span><span style="color:#4BF3C8">Raspberry</span><span style="color:#4BF3C8"> Pi</span><span style="color:#EEF0F9"> │</span></span> <span><span style="color:#EEF0F9">│ (</span><span style="color:#4BF3C8">you</span><span style="color:#EEF0F9">) │ │ │</span></span> <span><span style="color:#EEF0F9">└─────────────┘ │ ┌──────────────┐ │</span></span> <span><span style="color:#EEF0F9"> │ │ </span><span style="color:#4BF3C8">Telegram</span><span style="color:#4BF3C8"> Bot</span><span style="color:#EEF0F9"> │ │</span></span> <span><span style="color:#EEF0F9"> │ │ ↕ │ │</span></span> <span><span style="color:#EEF0F9"> │ │ </span><span style="color:#ACAFFF">AI</span><span style="color:#4BF3C8"> Agent</span><span style="color:#EEF0F9"> │ │</span></span> <span><span style="color:#EEF0F9"> │ │ ↕ │ │</span></span> <span><span style="color:#EEF0F9"> │ │ </span><span style="color:#4BF3C8">Git</span><span style="color:#4BF3C8"> Repo</span><span style="color:#EEF0F9"> │ │</span></span> <span><span style="color:#EEF0F9"> │ │ (</span><span style="color:#4BF3C8">notes</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">tasks</span><span style="color:#EEF0F9">/ │ │</span></span> <span><span style="color:#EEF0F9"> │ │ </span><span style="color:#4BF3C8">compass</span><span style="color:#EEF0F9">/) │ │</span></span> <span><span style="color:#EEF0F9"> │ └──────────────┘ │</span></span> <span><span style="color:#EEF0F9"> └──────────────────┘</span></span></code></pre></figure> <p>The Pi runs 24/7. The Telegram bot is your interface — from your phone, your laptop, anywhere. The git repo is the agent’s memory: your notes, context, tasks, and workflows, synced via git push/pull at session boundaries.</p> <h2 id="why-a-raspberry-pi">Why a Raspberry Pi</h2> <p>Three reasons.</p> <p><strong>It’s always on.</strong> Unlike your laptop, it doesn’t sleep. An agent that can check your calendar at 7am and send you a briefing needs a host that’s running at 7am.</p> <p><strong>It’s yours.</strong> Your data stays on hardware you own, on your network. No cloud provider reading your emails, no SaaS with a terms-of-service change waiting to happen.</p> <p><strong>It’s cheap.</strong> A Pi 5 costs €80. Running an LLM through an API costs a few dollars a month. Compare that to the compute overhead of OpenClaw’s full stack.</p> <h2 id="the-session-model">The Session Model</h2> <p>The interesting architectural decision is how the agent maintains state across conversations.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">Session</span><span style="color:#EEF0F9"> start:</span></span> <span><span style="color:#FFD493"> 1.</span><span style="color:#4BF3C8"> git</span><span style="color:#00DAEF"> pull</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">get</span><span style="color:#4BF3C8"> latest</span><span style="color:#4BF3C8"> notes</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">compass</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#FFD493"> 2.</span><span style="color:#4BF3C8"> Read</span><span style="color:#4BF3C8"> compass</span><span style="color:#EEF0F9">/ </span><span style="color:#00DAEF">files</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">rehydrate</span><span style="color:#4BF3C8"> memory</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#FFD493"> 3.</span><span style="color:#4BF3C8"> Ready</span><span style="color:#4BF3C8"> to</span><span style="color:#4BF3C8"> work</span></span> <span> </span> <span><span style="color:#4BF3C8">Session</span><span style="color:#EEF0F9"> end:</span></span> <span><span style="color:#FFD493"> 1.</span><span style="color:#4BF3C8"> Update</span><span style="color:#4BF3C8"> compass</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">context</span><span style="color:#54B9FF"> with</span><span style="color:#4BF3C8"> what</span><span style="color:#4BF3C8"> happened</span></span> <span><span style="color:#FFD493"> 2.</span><span style="color:#4BF3C8"> Log</span><span style="color:#4BF3C8"> decisions</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">preferences</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">follow</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">ups</span></span> <span><span style="color:#FFD493"> 3.</span><span style="color:#4BF3C8"> git</span><span style="color:#00DAEF"> push</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">persist</span><span style="color:#4BF3C8"> everything</span><span style="color:#EEF0F9">)</span></span></code></pre></figure> <p>This is the same model I described in <a href="https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff">From Markdown Notes to AI Chief of Staff</a>, but with a key difference: the session start and end aren’t me opening and closing a terminal. They’re the Telegram bot receiving a message and going idle.</p> <p>Git gives you version history for free. Every state change is a commit. You can diff what the agent changed, revert bad updates, see how context evolved over weeks. Try getting that from OpenClaw’s “persistent memory.”</p> <h2 id="the-telegram-bot">The Telegram Bot</h2> <p>Telegram’s Bot API is one of the better-designed APIs out there. A minimal bot that forwards messages to an AI agent and returns responses is maybe 100 lines of Python. Add command handlers for specific workflows:</p> <ul> <li><span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">morning</span></span></code></span> — run the morning kickoff routine</li> <li><span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">tasks</span></span></code></span> — show today’s tasks</li> <li><span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">email</span></span></code></span> — triage inbox</li> <li><span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">prep</span><span style="color:#4BF3C8"> John</span></span></code></span> — briefing before a meeting with John</li> </ul> <p>Each command maps to a skill — a markdown file describing a multi-step workflow. The bot reads the skill, passes it to the LLM along with the relevant context files, and executes the steps.</p> <p>The critical insight: the Telegram bot isn’t the agent. It’s a thin shell. The intelligence lives in the LLM, the context lives in git, and the workflows live in markdown files. The bot just connects them.</p> <h2 id="what-you-get-that-openclaw-doesnt-give-you">What You Get That OpenClaw Doesn’t Give You</h2> <p><strong>Comprehension.</strong> Every component is something you built or configured. When something breaks — and it will — you know where to look. OpenClaw has hundreds of contributors and a codebase that’s growing faster than anyone can review. That’s fine for a web framework. It’s uncomfortable for something with access to your email.</p> <p><strong>Control.</strong> You decide exactly what the agent can access. Want it to read your calendar but not send emails? Don’t give it the email tool. With OpenClaw, you’re trusting that the permission model works as advertised across a plugin ecosystem built by strangers.</p> <p><strong>Simplicity.</strong> The entire system is a Telegram bot, a handful of CLI tools, and a git repo of markdown files. There’s no plugin registry, no social network for AI agents, no cryptocurrency tokens. It does what you need and nothing else.</p> <p><strong>Learning.</strong> This is the one people underestimate. Building your own agent teaches you how LLMs actually work in production — context windows, tool use, prompt design, state management, failure modes. Using OpenClaw teaches you how to configure OpenClaw.</p> <h2 id="what-openclaw-gets-right">What OpenClaw Gets Right</h2> <p>Credit where it’s due: the vision of an AI agent that operates across your entire digital life is correct. The idea that it should be open-source is correct. The emphasis on persistent memory is correct.</p> <p>The disagreement is about approach. OpenClaw tries to be everything for everyone, which means it’s complex, hard to secure, and impossible to fully understand. The alternative is to build exactly what you need, understand every piece, and extend it when your needs change.</p> <h2 id="the-architecture-concretely">The Architecture, Concretely</h2> <p>Here’s what runs on the Pi:</p> <ol> <li><strong>Telegram bot</strong> (Python, ~200 lines) — receives messages, routes commands, returns responses</li> <li><strong>Agent orchestration</strong> — something like <a href="https://github.com/badlogic/pi-mono/tree/main/packages/coding-agent">pi</a> works well here. It’s a coding agent with tool use, extensions, and skill support that you can drive programmatically via its SDK. The Telegram bot spawns a pi session per conversation, hands it the context from the git repo, and lets it execute tool calls. Lightweight, hackable, and you can read the entire source.</li> <li><strong>CLI tools</strong> — small scripts for email (IMAP/SMTP), calendar (CalDAV), tasks, web search</li> <li><strong>Git repo</strong> — notes, compass files, skill definitions, references</li> <li><strong>Cron jobs</strong> — morning briefing, inbox check, follow-up reminders</li> </ol> <p>That’s it. No Docker orchestration, no plugin framework, no vector database, no agent-to-agent social network. Each piece is simple enough to hold in your head.</p> <h2 id="getting-started">Getting Started</h2> <p>If you’ve been following along with the <a href="https://danielbenner.de/articles/minimal-ai-friendly-notes">note-taking system</a> and <a href="https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff">operational layer</a>, you already have the hard part: structured context that AI can work with.</p> <p>The remaining steps:</p> <ol> <li>Set up a Pi with SSH access</li> <li>Clone your notes repo</li> <li>Create a Telegram bot via BotFather</li> <li>Write a minimal bot that forwards messages to an LLM API</li> <li>Add git pull/push hooks around sessions</li> <li>Add CLI tools one at a time as you need them</li> </ol> <p>Start small. A bot that can answer questions about your notes and tasks is already useful. Add email access when you trust the setup. Add calendar integration when you need it. Each addition is a small, understandable increment.</p> <h2 id="the-point">The Point</h2> <p>OpenClaw proves there’s demand for personal AI agents. But it also demonstrates the standard industry pattern: take a fundamentally simple idea, add every feature anyone might want, and ship a system that no single person can understand or secure.</p> <p>Personal infrastructure should be personal. You should be able to read every line of code that has access to your email. You should know exactly what gets persisted and where. You should be able to explain the entire architecture in a five-minute conversation.</p> <p>A Raspberry Pi, a Telegram bot, and git hooks. That’s not a limitation — that’s the design.</p>AIProductivityToolshttps://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff/https://danielbenner.de/articles/from-markdown-notes-to-ai-chief-of-staff/What happens when you keep extending a transparent system: it stops being notes and starts running your day.Sun, 01 Feb 2026 00:00:00 GMT<p>A couple months ago I wrote about <a href="https://danielbenner.de/articles/minimal-ai-friendly-notes">a note-taking system built on plain markdown and 50 lines of bash</a>. The thesis: when your entire system is transparent to AI, it can write whatever tooling you need. No plugins, no APIs — just files and scripts.</p> <p>That thesis was correct. But it undersold what happens when you keep going.</p> <p>The system isn’t notes anymore. It’s an operational layer. AI agents run morning routines, process meeting transcripts, triage inboxes, maintain their own memory across sessions, and flag when I’ve dropped a commitment. The same markdown files, the same transparency principle — but the ceiling turned out to be much higher than “better notes.”</p> <h2 id="the-cold-start-problem">The Cold Start Problem</h2> <p>The original system had a gap. Every conversation with AI started from zero. It didn’t know what I was working on, what I’d decided last week, or what mattered to me. I’d spend the first few messages re-establishing context, or worse — get advice that contradicted a decision I’d already made.</p> <p>Notes existed, but they were organized for <em>me</em> to find things. Not for AI to orient itself.</p> <p>The fix was a folder called <span><code><span><span style="color:#4BF3C8">compass</span><span style="color:#EEF0F9">/</span></span></code></span> with four files:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">compass</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">goals</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">What</span><span style="color:#ACAFFF"> I</span><span style="color:#FFD493">'m trying to achiev</span><span style="color:#FFFFFF">e</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">context</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">What</span><span style="color:#FFD493">'s in flight right no</span><span style="color:#FFFFFF">w</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">preferences</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">How</span><span style="color:#ACAFFF"> I</span><span style="color:#4BF3C8"> work</span><span style="color:#4BF3C8"> and</span><span style="color:#4BF3C8"> communicate</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">decisions</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">What</span><span style="color:#FFD493">'s been decided and wh</span><span style="color:#FFFFFF">y</span></span></code></pre></figure> <h3 id="contextmd--the-session-handoff">context.md — the session handoff</h3> <p>This is the most important file. It’s a queue of open threads — not a project wiki, not a journal. Three sections: In Flight, Blocked/Waiting, Needs Attention. Each entry is a one-liner: what it is plus current status.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">## In Flight</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> API redesign — open question on auth model blocks shipping</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Onboarding flow rewrite — new design approved, implementation started</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Hiring — backend role, two candidates in pipeline</span></span> <span> </span> <span><span style="color:#4BF3C8">## Blocked / Waiting</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Enterprise pilot — blocked on their internal security review</span></span> <span> </span> <span><span style="color:#4BF3C8">## Needs Attention</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Monitoring gaps — no alerting on payment failures, needs setup</span></span></code></pre></figure> <p>When AI reads this at the start of a session, it knows what I’m dealing with. It can prioritize, notice conflicts, and avoid suggesting things I’ve already rejected. The file acts as a handoff between sessions — like briefing notes for an incoming shift.</p> <h3 id="preferencesmd--behavioral-memory">preferences.md — behavioral memory</h3> <p>When I tell AI “don’t do X” or “I prefer Y,” that correction lasts exactly one session. Next time, same mistake. <span><code><span><span style="color:#4BF3C8">preferences</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></span> makes corrections permanent:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">## Communication</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Prefers brief, direct answers — no filler, no excessive caveats</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> No emojis unless asked</span></span> <span> </span> <span><span style="color:#4BF3C8">## Decision Making</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Pragmatic over perfect — "good enough now" beats "ideal later"</span></span> <span> </span> <span><span style="color:#4BF3C8">## Behavioral Corrections</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> 2026-01-15: "Don't summarize what I just said back to me" — context</span></span></code></pre></figure> <p>The AI reads this file, adjusts its behavior, and the correction sticks. Over time the file becomes a fairly accurate profile of how you work.</p> <h3 id="decisionsmd--the-decision-log">decisions.md — the decision log</h3> <p>This one prevents the most insidious problem: re-litigating settled questions. When a significant decision gets made, it’s logged with reasoning and alternatives considered. Two weeks later when I’m second-guessing a technical or business decision, the AI can point to the entry and say “here’s why you decided this.”</p> <h2 id="references-stable-context">References: Stable Context</h2> <p>Notes are dated and temporal. But some context is durable — it applies across sessions and doesn’t change with each meeting.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">references</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">professional</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">self</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">Who</span><span style="color:#ACAFFF"> I</span><span style="color:#4BF3C8"> am</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">background</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">products</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span><span style="color:#EEF0F9"> # </span><span style="color:#4BF3C8">Product</span><span style="color:#4BF3C8"> descriptions</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">projects</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Living</span><span style="color:#4BF3C8"> project</span><span style="color:#4BF3C8"> briefs</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">people</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9"> ├── </span><span style="color:#4BF3C8">internal</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Team</span><span style="color:#4BF3C8"> members</span></span> <span><span style="color:#EEF0F9"> ├── </span><span style="color:#4BF3C8">partners</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">External</span><span style="color:#4BF3C8"> partners</span></span> <span><span style="color:#EEF0F9"> ├── </span><span style="color:#4BF3C8">candidates</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Hiring</span><span style="color:#4BF3C8"> pipeline</span></span> <span><span style="color:#EEF0F9"> └── </span><span style="color:#4BF3C8">customers</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Customer</span><span style="color:#4BF3C8"> accounts</span></span></code></pre></figure> <p>Project briefs get updated in place as understanding evolves — architecture decisions, shifted strategy, changed ownership. They’re not notes about a project. They’re the canonical source of truth for what the project <em>is</em>.</p> <p>People files are the same idea. When I’m about to meet someone, the AI can read their file and tell me: here’s who they are, here’s what we discussed last time, here’s what’s pending between us. No prep work on my part.</p> <h2 id="skills-workflows-as-markdown">Skills: Workflows as Markdown</h2> <p>This is where it gets interesting.</p> <p>A “skill” is a markdown file that teaches AI a multi-step workflow. Not code. Not a plugin. Just instructions that reference tools.</p> <p>Here’s the structure of the morning kickoff skill:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8"># Morning Kickoff</span></span> <span> </span> <span><span style="color:#EEF0F9">Create a daily "today" page with an overview of the day ahead.</span></span> <span> </span> <span><span style="color:#4BF3C8">## Steps</span></span> <span> </span> <span><span style="color:#4BF3C8">1.</span><span style="color:#EEF0F9"> Get today's date and determine the day of week</span></span> <span><span style="color:#4BF3C8">2.</span><span style="color:#EEF0F9"> Create the daily file at </span><span style="color:#FFD493">`daily/YYYYMMDD--dayofweek.md`</span></span> <span><span style="color:#4BF3C8">3.</span><span style="color:#EEF0F9"> Gather information using the relevant skills:</span></span> <span><span style="color:#4BF3C8"> -</span><span style="color:#EEF0F9"> Check work calendar and personal calendar</span></span> <span><span style="color:#4BF3C8"> -</span><span style="color:#EEF0F9"> Check today's tasks, upcoming tasks, deadlines</span></span> <span><span style="color:#4BF3C8"> -</span><span style="color:#EEF0F9"> Check email for anything unread or requiring attention</span></span> <span><span style="color:#4BF3C8">4.</span><span style="color:#EEF0F9"> Read all compass files to fully load context</span></span></code></pre></figure> <p>That’s it. The AI reads this, follows the steps, calls the appropriate tools (email, calendar, task manager), and produces a daily briefing. No code to maintain. No API integration to debug.</p> <p>I have about 20 of these now:</p> <ul> <li><strong>Morning kickoff</strong> — daily briefing with calendar, tasks, emails, and rehydrated context</li> <li><strong>Weekly review</strong> — audit progress against goals, clean up stale threads, identify stuck items</li> <li><strong>Inbox triage</strong> — process work email, personal email, and task inbox in sequence</li> <li><strong>Process meetings</strong> — pull transcripts from Notion, extract tasks, create meeting notes, flag Zettelkasten connections</li> <li><strong>People prep</strong> — briefing about a specific person before a 1:1</li> <li><strong>Follow-ups</strong> — scan notes and emails for commitments that aren’t tracked as tasks</li> <li><strong>Wrap-up</strong> — end-of-session routine that saves context and logs decisions</li> </ul> <p>The realization that made this click: most operational work is a checklist. And checklists are exactly what AI is good at following — especially when the tools and context are transparent.</p> <p>Why markdown instead of code? Because I can edit a workflow in 30 seconds. Adding a step, changing the order, adjusting what gets checked — it’s just editing a text file. And the AI reads it natively. No parsing, no compilation, no framework.</p> <h2 id="the-session-end-hook">The Session-End Hook</h2> <p>The skills above all require me to invoke them. The session-end hook doesn’t.</p> <p>It’s an extension that fires automatically when a session ends. It spawns a background AI agent that reads the session transcript and decides what’s worth persisting. It updates compass files, project briefs, and people references — without me asking.</p> <p>The prompt for this agent is specific about what to look for:</p> <ol> <li><strong>Status changes</strong> — did a project move forward, get blocked, or resolve?</li> <li><strong>Decisions</strong> — was something significant decided?</li> <li><strong>Preferences</strong> — did I correct the AI’s behavior?</li> <li><strong>People info</strong> — did new context surface about someone I work with?</li> </ol> <p>And specific about what to ignore: routine debugging, trivial file edits, implementation details.</p> <p>This closes a loop that matters: the system maintains itself. I don’t have to remember to update context after each session. I don’t have to decide whether something was worth logging. The agent handles triage, and I review the results.</p> <h2 id="a-typical-day">A Typical Day</h2> <p><strong>Morning.</strong> I run <span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">morning</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">kickoff</span></span></code></span>. AI checks both calendars, pulls tasks and deadlines, scans email for anything urgent, reads compass files to rehydrate context. Produces a daily page I can glance at over coffee.</p> <p><strong>During work.</strong> When I ask for advice — on priorities, architecture decisions, how to handle a conversation — the AI already knows what I’m working on, what’s been decided, and how I prefer to operate. The advice is grounded, not generic.</p> <p><strong>After meetings.</strong> <span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">process</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">meetings</span></span></code></span> pulls transcripts from Notion, creates summary notes, extracts follow-up tasks, and checks them against my task manager. If a discussion maps to an existing Zettelkasten concept, it flags the connection.</p> <p><strong>End of day.</strong> Either I run <span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">wrap</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">up</span></span></code></span> explicitly, or the session-end hook captures context automatically. Open threads get updated. Decisions get logged. Nothing falls through the cracks — or at least, fewer things do.</p> <p><strong>Weekly.</strong> <span><code><span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">weekly</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">review</span></span></code></span> compares what actually happened against goals. Cleans up stale context. Surfaces stuck items I’ve been unconsciously avoiding.</p> <h2 id="the-principle">The Principle</h2> <p>The original post argued that transparency enables tooling. That’s still true, but it’s the small version. The bigger version: transparency enables delegation.</p> <p>When AI can see the full system, has persistent memory, and has procedures to follow — it’s not a chat assistant anymore. It’s an operational layer. It maintains its own context. It runs routines. It catches things you’d miss.</p> <p>The building blocks are the same: plain text, simple conventions, no proprietary formats. But the capability ceiling is determined by what you teach it to do, not by what the tool vendor ships.</p> <h2 id="tradeoffs">Tradeoffs</h2> <p>Same ones as before, plus a few new ones:</p> <ul> <li><strong>Terminal-native.</strong> If you don’t live in a terminal, there’s friction. I’m building a Telegram bot to extend this outside the IDE, but it’s not there yet.</li> <li><strong>Designing for AI is a skill.</strong> You’re not just organizing notes for yourself anymore. You’re thinking about what context an AI agent needs, how to structure handoffs, what’s worth persisting. It’s a different discipline.</li> <li><strong>Trust calibration.</strong> The session-end hook updates files autonomously. Mostly it’s accurate. Occasionally it overpersists or misreads significance. You need to review its work, especially early on.</li> <li><strong>Tool surface area.</strong> This works because I have CLI tools for email, calendar, tasks, and meeting transcripts. Each new integration is a new tool to build or configure. The system is only as capable as its access.</li> </ul> <h2 id="whats-next">What’s Next</h2> <p>The gap I’m most interested in closing: proactive behavior. Right now, AI acts when I invoke it. The morning kickoff runs because I type the command. But the information is all there — calendar, tasks, deadlines, commitments. An agent could notice that I have a meeting in an hour with someone I haven’t prepped for, or that a deadline is approaching with no progress on the task.</p> <p>Moving from “AI that helps when asked” to “AI that notices when something needs attention” is the next step. The foundation — transparent files, persistent memory, structured workflows — is already in place. The trigger just needs to shift from manual to event-driven.</p> <p>Fifty lines of bash was the starting point. The system it grew into is unrecognizable from those origins. But the principle hasn’t changed: keep everything transparent, and AI will surprise you with what it can do.</p>AIProductivityToolshttps://danielbenner.de/books/the-middle-passage/https://danielbenner.de/books/the-middle-passage/Enjoyed this a lot. The perspective and argument are basically identical to Falling Upward, but without being religious — which made it land harder for me. I could relate to many of the arguments in a way that felt immediate rather than abstract.Sun, 01 Feb 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Provisional Personality</h2> <div class="text-sm leading-relaxed"> <p>The identity you build in the first half of life isn’t really yours. It’s assembled from parental imprinting, cultural scripts, and adaptive strategies you developed as a child to stay safe, loved, and accepted. People-pleasing, overachieving, withdrawal, control — these survival mechanisms crystallize into personality traits you mistake for who you are.</p><p>The key point: this personality <em>works</em>. It gets you through childhood, school, career, relationships. It’s functional. But it’s a collage of other people’s expectations and your adaptive responses to them. The middle passage begins when this provisional self starts breaking down — when the strategies that got you here stop working, and the life you built feels hollow despite looking right from the outside.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Midlife Crisis as Summons</h2> <div class="text-sm leading-relaxed"> <p>Hollis reframes the midlife crisis not as a breakdown but as a summons. The provisional personality produces diminishing returns. Achievement fails to satisfy. The shadow — everything you repressed to maintain the functional self — accumulates pressure until it forces its way into consciousness.</p><p>The crisis presents a fork. Refuse the summons: double down on old strategies, numb out, chase a younger version of the same life. New car, new partner, same patterns. Or accept the summons: let the provisional personality collapse, endure the disorientation, and begin asking who you actually are beneath the scripts.</p><p>Depression and anxiety aren’t pathology here — they’re signals. The psyche saying the life you’re living is too small for the person you’ve become.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Individuation</h2> <div class="text-sm leading-relaxed"> <p>Jung’s term for the process of becoming who you actually are. Not self-improvement — not optimizing the provisional personality — but dismantling it to find what’s underneath.</p><p>This means confronting your shadow (the repressed parts running your life from the basement), withdrawing projections (recognizing that what triggers you in others is often your own unowned material), and differentiating from complexes (the emotionally charged patterns like “I’m not good enough” that hijack behavior).</p><p>Whatever you sacrificed to maintain the provisional personality now demands its due. The creative impulse you buried, the values you suppressed, the way of being you abandoned to fit in. It’s grueling work, never complete. The unconscious is inexhaustible. The point is the ongoing relationship with it, not arrival.</p> </div> </div>Bookshttps://danielbenner.de/books/falling-upward/https://danielbenner.de/books/falling-upward/Genuinely learned something interesting about Christianity and the spiritual journey — wouldn't have expected that from a book this explicitly religious. The core ideas are worth knowing. But Rohr repeats and rephrases the same arguments endlessly. Could be 60% shorter. Might work better for readers who need the repetition to let it sink in.Sun, 25 Jan 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Transcend and Include</h2> <div class="text-sm leading-relaxed"> <p>Genuine development doesn’t replace earlier stages — it builds on and contains them. If you’ve authentically moved to a more mature perspective, you’ve necessarily passed through the earlier ones. They live within you.</p><p>This makes judgment structurally incoherent. You’d be condemning a version of yourself.</p><p>Flip side: if someone is superior or dismissive about their “advanced” views, that’s evidence they haven’t actually integrated the earlier stage. They’ve bypassed rather than transcended. True development brings humility automatically.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Teachings as Scaffolding</h2> <div class="text-sm leading-relaxed"> <p>Religious teachings are entry points, not destinations. They get you “in the right ballpark” but eventually need to be transcended through contemplation.</p><p>The distinction:</p><ul> <li><strong>Kataphatic</strong> — what we <em>can</em> say about God (doctrines, images, concepts)</li> <li><strong>Apophatic</strong> — what we <em>cannot</em> say, the mystery beyond language</li> </ul><p>This isn’t modern revisionism. It’s the older contemplative tradition — Desert Fathers, Meister Eckhart, John of the Cross. The conceptual frameworks eventually become obstacles if you cling to them.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Pushed vs Pulled</h2> <div class="text-sm leading-relaxed"> <p>What motivates us shifts between the two halves of life:</p><ul> <li><strong>First half</strong>: pushed from behind — by ego, wounds, fear, the need to prove yourself</li> <li><strong>Second half</strong>: pulled from ahead — by soul, meaning, calling</li> </ul><p>Early-life drive isn’t bad, but it’s often compensatory — proving worth, escaping shame. Second-half motivation feels different: less frantic, arising from abundance rather than lack.</p> </div> </div>Bookshttps://danielbenner.de/books/high-output-management/https://danielbenner.de/books/high-output-management/The first third felt more descriptive than actionable. The planning chapter was solid, and I got real value from the concepts around hybrid organization, dual reporting, and task-relevant maturity. But compared to Goldratt's books, far less practical — more management philosophy than concrete toolkit.Mon, 19 Jan 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Hybrid Organization</h2> <div class="text-sm leading-relaxed"> <p>Neither pure functional (group by expertise) nor pure mission-oriented (group by objective) structures work at scale. Grove argues for combining both:</p><ul> <li><strong>Mission-oriented units</strong> handle customer-facing work — speed and autonomy to respond to markets</li> <li><strong>Functional units</strong> provide centralized services where scale matters — HR, legal, specialized expertise</li> </ul><p>The question isn’t “which structure?” but “which structure for which work?”</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Dual Reporting</h2> <div class="text-sm leading-relaxed"> <p>The hybrid creates matrix management — individuals reporting to both a functional manager (expertise, standards, career) and a mission manager (priorities, delivery, outcomes).</p><p>This friction is a feature. It forces trade-off conversations to happen explicitly rather than letting one priority silently dominate. The matrix doesn’t eliminate conflict — it institutionalizes it. The alternative isn’t harmony, it’s hidden dysfunction.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Task-Relevant Maturity</h2> <div class="text-sm leading-relaxed"> <p>Adjust management style based on someone’s experience with a <em>specific task</em> — not their general seniority.</p><ul> <li><strong>Low TRM</strong>: Structured, directive. Tell them what, when, how. Monitor closely.</li> <li><strong>Medium TRM</strong>: Coaching. Two-way communication, set goals together, regular but less intensive monitoring.</li> <li><strong>High TRM</strong>: Delegative. Set objectives and constraints, then step back. Monitor at milestones.</li> </ul><p>A senior engineer might need high TRM style for backend architecture but low TRM style for their first people management responsibility. Mismatching style to TRM fails in both directions.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Pairing Indicators</h2> <div class="text-sm leading-relaxed"> <p>Any single metric creates incentive to game it. Pair complementary indicators that create natural tension:</p> <table><thead><tr><th>Quantity</th><th>Quality</th></tr></thead><tbody><tr><td>Units produced</td><td>Defect rate</td></tr><tr><td>Tickets resolved</td><td>Reopened rate</td></tr><tr><td>Features shipped</td><td>Bug count</td></tr></tbody></table><p>Neither metric can be gamed in isolation because optimizing one at the expense of the other becomes immediately visible.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Checkpoint vs Outcome KRs</h2> <div class="text-sm leading-relaxed"> <p>Grove’s original Key Results were <strong>checkpoints</strong> — concrete milestones. Modern OKR literature reframes them as <strong>outcome measurements</strong> — metrics indicating progress.</p><p>Different failure modes:</p><ul> <li>Checkpoints force sequencing discipline but can become output-focused without asking if it mattered</li> <li>Outcomes keep focus on impact but are harder to pace against</li> </ul><p>Execution mode (known path) favors checkpoints. Innovation mode (still searching) favors outcomes. Mismatch between style and context is why most OKR implementations fail.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Tension with Theory of Constraints</h2> <div class="text-sm leading-relaxed"> <p>Grove measures productivity at the individual work unit level — improving any unit’s productivity improves the whole.</p><p>Goldratt would disagree. In any system with dependencies, only the constraint determines throughput. Optimizing non-constraints creates waste: inventory piles up, WIP increases, resources consumed producing things that can’t flow through.</p><p>Grove’s indicator pairing partially guards against this, but he never asks “is this work unit even the bottleneck?” before optimizing it.</p> </div> </div>Bookshttps://danielbenner.de/books/the-sleep-solution/https://danielbenner.de/books/the-sleep-solution/Read this because of my insomnia. Turns out I just needed to get my shit together. It's already working. Fact-based, no exaggerated attention-grabbing nonsense.Sun, 18 Jan 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Sleep State Misperception</h2> <div class="text-sm leading-relaxed"> <p>Many people who believe they “don’t sleep” are actually sleeping more than they realize. Light sleep and brief awakenings can feel like being awake, creating a gap between perceived and actual sleep time.</p><p>The test: if you feel reasonably functional the next day, you slept more than you think. True sleep deprivation makes functioning nearly impossible.</p><p>The anxiety about insomnia often causes more harm than the actual sleep loss.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Vigilance vs Sleepiness</h2> <div class="text-sm leading-relaxed"> <p>Vigilance and sleepiness are separate neural systems, not opposites on a single spectrum.</p><p>Sleepiness is a homeostatic pressure that builds the longer you’re awake. Vigilance is an alerting response triggered by stimuli — novelty, stress, checking your phone, getting frustrated in bed.</p><p>“I’m not tired anymore” often means vigilance temporarily kicked in. The underlying sleep pressure is still there. Wait it out.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Insomnia ≠ Sleep Deprivation</h2> <div class="text-sm leading-relaxed"> <p>Insomnia is difficulty sleeping when and how you want to. Sleep deprivation is actually getting very little sleep. They’re conflated constantly, but they’re fundamentally different.</p><p>True sleep deprivation (like lab studies where subjects are kept awake) causes severe impairment. Most people with insomnia are still getting meaningful sleep — the distress and preoccupation around sleep is often the core problem, not the sleep itself.</p><p>Importing scary research about sleep deprivation into your insomnia amplifies anxiety, which makes sleep harder, which increases anxiety.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Insomniac Identity Trap</h2> <div class="text-sm leading-relaxed"> <p>Building an identity around being “a bad sleeper” creates a self-reinforcing cycle:</p><ol> <li>Experience some sleep difficulty</li> <li>Absorb alarming media about sleep deprivation consequences</li> <li>Develop anxiety and hypervigilance around sleep</li> <li>Anxiety disrupts sleep further</li> <li>Adopt “insomniac” identity as explanation</li> <li>Identity reinforces belief that good sleep isn’t possible</li> <li>Return to step 3</li> </ol><p>Breaking it requires separating what you’re experiencing from who you are.</p> </div> </div>Bookshttps://danielbenner.de/books/its-not-luck/https://danielbenner.de/books/its-not-luck/The Thinking Processes are genuinely useful — I've already applied them at work. The presentation is awkward though, especially the family dialogues, and some trees get rushed over without enough detail. Less entertaining than The Goal, but the concepts are highly applicable. Still very worth the read.Tue, 06 Jan 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Thinking Processes</h2> <div class="text-sm leading-relaxed"> <p>While <em>The Goal</em> gave us the Five Focusing Steps for physical constraints, <em>It’s Not Luck</em> introduces the Thinking Processes — a logical toolkit for solving complex problems, especially policy constraints and conflicts.</p><p>Five tools, five questions:</p><ol> <li><strong>Current Reality Tree</strong> — What to change?</li> <li><strong>Evaporating Cloud</strong> — What to change to?</li> <li><strong>Future Reality Tree</strong> — Will it work?</li> <li><strong>Prerequisite Tree</strong> — What’s in the way?</li> <li><strong>Transition Tree</strong> — What actions?</li> </ol><p>Each produces output that feeds the next. Skip steps and you fail in predictable ways.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Why Known Problems Persist</h2> <div class="text-sm leading-relaxed"> <p>If you know about a problem and it persists, something is stopping you from solving it. That something is almost always a perceived trade-off.</p><p>The interesting question shifts from “why does this exist?” to “why haven’t we solved it?”</p><p>Most answers reduce to: <em>“I believe I can’t have X without losing Y.”</em> That belief is either a valid constraint or an assumption worth challenging.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Evaporating Cloud</h2> <div class="text-sm leading-relaxed"> <p>Most conflicts aren’t real — they rest on hidden assumptions. The cloud makes them visible.</p><figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F9"> A: </span><span style="color:#4BF3C8">Common</span><span style="color:#4BF3C8"> Objective</span></span> <span><span style="color:#EEF0F9"> │</span></span> <span><span style="color:#EEF0F9"> ┌──────────┴──────────┐</span></span> <span><span style="color:#EEF0F9"> │ │</span></span> <span><span style="color:#4BF3C8"> v</span><span style="color:#4BF3C8"> v</span></span> <span><span style="color:#EEF0F9"> B: </span><span style="color:#4BF3C8">Requirement</span><span style="color:#EEF0F9"> C: </span><span style="color:#4BF3C8">Requirement</span></span> <span><span style="color:#EEF0F9"> │ │</span></span> <span><span style="color:#4BF3C8"> v</span><span style="color:#4BF3C8"> v</span></span> <span><span style="color:#EEF0F9"> D: </span><span style="color:#4BF3C8">Position</span><span style="color:#EEF0F9"> ◄── </span><span style="color:#4BF3C8">conflict</span><span style="color:#EEF0F9"> ──► </span><span style="color:#ACAFFF">D</span><span style="color:#FFD493">': Positio</span><span style="color:#FFFFFF">n</span></span></code></pre></figure><p>Both sides want the same objective (A) but believe they need contradictory things (D vs D’). Surface the assumptions behind each arrow. Invalidate one, and the conflict evaporates.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">CRT to EC: The Handoff</h2> <div class="text-sm leading-relaxed"> <p>The Current Reality Tree maps cause-effect chains from symptoms to root cause. But finding the root cause isn’t enough — you need to understand why it persists.</p><p>Root causes persist because of perceived conflicts. The EC structures that conflict. CRT answers <em>what</em>, EC answers <em>why we haven’t fixed it</em>.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Future Reality Tree</h2> <div class="text-sm leading-relaxed"> <p>The FRT is a flight simulator for your solution. Take the injection from the EC, trace its effects forward through cause-effect logic.</p><p>Two things to check:</p><ul> <li>Does it eliminate the undesirable effects from the CRT?</li> <li>Does it create new problems (negative branch reservations)?</li> </ul><p>For every “what could go wrong,” either add a preventive injection or modify the solution. Critics become contributors — they’re stress-testing your logic, not attacking your idea.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">From Objectives to Actions</h2> <div class="text-sm leading-relaxed"> <p>The Prerequisite Tree captures obstacles (“we can’t because…”) and converts each into an intermediate objective — a state that overcomes the obstacle. Not actions, states.</p><p>The Transition Tree then breaks each intermediate objective into concrete action sequences with explicit cause-effect logic: given reality and need, if we do X, then Y results.</p><p>PRT answers “what conditions must exist.” TT answers “what exactly do we do.”</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Full Sequence</h2> <div class="text-sm leading-relaxed"> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#ACAFFF">CRT</span><span style="color:#EEF0F9"> ──► </span><span style="color:#ACAFFF">EC</span><span style="color:#EEF0F9"> ──► </span><span style="color:#ACAFFF">FRT</span><span style="color:#EEF0F9"> ──► </span><span style="color:#ACAFFF">PRT</span><span style="color:#EEF0F9"> ──► </span><span style="color:#ACAFFF">TT</span><span style="color:#EEF0F9"> ──► </span><span style="color:#4BF3C8">Implementation</span></span> <span><span style="color:#EEF0F9"> │ │ │ │ │</span></span> <span><span style="color:#EEF0F9"> │ │ │ │ └─ </span><span style="color:#4BF3C8">What</span><span style="color:#4BF3C8"> actions</span><span style="color:#54B9FF">?</span></span> <span><span style="color:#EEF0F9"> │ │ │ └───────── </span><span style="color:#4BF3C8">What</span><span style="color:#FFD493">'s in the way</span><span style="color:#FFFFFF">?</span></span> <span><span style="color:#EEF0F9"> │ │ └───────────────── </span><span style="color:#4BF3C8">Will</span><span style="color:#4BF3C8"> it</span><span style="color:#4BF3C8"> work</span><span style="color:#54B9FF">?</span></span> <span><span style="color:#EEF0F9"> │ └───────────────────────── </span><span style="color:#4BF3C8">What</span><span style="color:#4BF3C8"> to</span><span style="color:#4BF3C8"> change</span><span style="color:#4BF3C8"> to</span><span style="color:#54B9FF">?</span></span> <span><span style="color:#EEF0F9"> └───────────────────────────────── </span><span style="color:#4BF3C8">What</span><span style="color:#4BF3C8"> to</span><span style="color:#4BF3C8"> change</span><span style="color:#54B9FF">?</span></span></code></pre></figure><p>Skip CRT: solve the wrong problem. Skip EC: fight symptoms. Skip FRT: solution creates new problems. Skip PRT: get stuck on obstacles. Skip TT: vague plan, inconsistent execution.</p> </div> </div>Bookshttps://danielbenner.de/books/the-phoenix-project/https://danielbenner.de/books/the-phoenix-project/The story was more gripping than I'd like to admit. Unlike Critical Chain, this one hit home — insane projects with management attention, too much knowledge stuck in one person's head. I can directly apply most of what's in here.Sat, 03 Jan 2026 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Three Ways</h2> <div class="text-sm leading-relaxed"> <p>Three principles for high-performing IT:</p><ul> <li><strong>First Way (Flow)</strong> — Optimize the whole system, not local work centers</li> <li><strong>Second Way (Feedback)</strong> — Fast, peer-to-peer feedback along the value stream</li> <li><strong>Third Way (Learning)</strong> — Continual improvement through experimentation and failure</li> </ul><p>The First Way establishes left-to-right flow. The Second Way adds right-to-left feedback. The Third Way creates conditions for improvement. Without flow, chaos. Without feedback, no course correction. Without learning, stagnation.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The First Way: Flow</h2> <div class="text-sm leading-relaxed"> <p>Optimize work movement through the entire system — Dev through Ops to customer.</p><p>Local optimizations destroy system throughput. A faster upstream just builds bigger queues at the bottleneck. “Important” means business value, not what IT finds technically interesting.</p><p>Never pass defects downstream. Stopping to fix at the source is faster than letting problems propagate. It feels slower. It isn’t.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Second Way: Feedback</h2> <div class="text-sm leading-relaxed"> <p>Information flowing right to left so upstream learns consequences.</p><p>The emphasis: fast, direct feedback between work centers. Not via management noticing patterns. This is Toyota’s andon cord — worker sees defect, pulls cord, production stops. Local actors, immediate response.</p><p>Feedback value is inversely proportional to delay. Finding out your code breaks production three weeks later is useless — context is gone. Finding out in minutes lets you fix it while you still remember what you did.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Third Way: Learning</h2> <div class="text-sm leading-relaxed"> <p>Creating conditions where improvement happens.</p><p>Two forms: experimentation (trying things, accepting some will fail) and failure practice (incident response, blameless post-mortems, building resilience).</p><p>Both require time and safety. Time because improvement work needs protected capacity. Safety because people won’t surface problems or try risky ideas if failure means punishment.</p><p>The goal isn’t a system that never fails. It’s a system that learns faster than the competition.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Brent Problem</h2> <div class="text-sm leading-relaxed"> <p>When Brent takes on work “only Brent can do,” Brent gets smarter and everyone else misses an opportunity to catch up.</p><p>Every time the expert takes on work:</p><ol> <li>Expert gets better (more context, deeper understanding)</li> <li>Everyone else stays where they are</li> </ol><p>The gap widens. More work flows to the expert. They become more irreplaceable. More work flows to them. Vicious cycle.</p><p>“Only Brent can do this” usually means “Brent can do this fastest right now.” The question: optimizing for this week or this year?</p><p>Breaking the cycle means letting others struggle. Slower throughput now for higher capacity later. Treating knowledge transfer as real work, not overhead.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Man, Machine, Method, Metric</h2> <div class="text-sm leading-relaxed"> <p>The 4 Ms — what’s necessary for any work center to function:</p><ul> <li><strong>Man</strong> — Person with right skills and availability</li> <li><strong>Machine</strong> — Tools and resources needed</li> <li><strong>Method</strong> — Documented process</li> <li><strong>Metric</strong> — How you measure and track</li> </ul><p>When work isn’t flowing: Do we have someone? Do they have tools? Is there a clear process? Can we measure what’s happening?</p><p>People assume the constraint is the person. Often it’s process or tooling.</p> </div> </div>Bookshttps://danielbenner.de/articles/small-dependency-surface-use-cases/https://danielbenner.de/articles/small-dependency-surface-use-cases/Use case architecture keeps dependency surfaces minimal, preventing circular dependencies as your app scales.Fri, 02 Jan 2026 00:00:00 GMT<p>Every time you add a method to a service, you expand the dependency surface for everyone who uses it. A <span><code><span><span style="color:#4BF3C8">TaskService</span></span></code></span> with 20 methods means every consumer depends on all 20 — even if they only need one. As your application grows, this coupling compounds. Then the circular dependencies appear.</p> <h2 id="services-grow-surfaces-expand">Services Grow, Surfaces Expand</h2> <p>The traditional service pattern starts clean:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> TaskService</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> repo</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">TaskRepository</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">title</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) (</span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Task</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9">) { ... }</span></span></code></pre></figure> <p>Then requirements arrive. Tasks need projects. Tasks need areas. Tasks need tags, recurrence, completion logic. The service grows:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> TaskService</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> repo</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">TaskRepository</span></span> <span><span style="color:#4BF3C8"> projectService</span><span style="color:#ACAFFF"> ProjectService</span></span> <span><span style="color:#4BF3C8"> areaService</span><span style="color:#ACAFFF"> AreaService</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Create</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Complete</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">SetProject</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">SetArea</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">AddTag</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TaskService</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">SetRecurrence</span><span style="color:#EEF0F9">(...) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> { ... }</span></span> <span><span style="color:#EEF0F98F;font-style:italic">// ... 15 more methods</span></span></code></pre></figure> <p>Each new method potentially adds cross-domain dependencies. Every consumer of <span><code><span><span style="color:#4BF3C8">TaskService</span></span></code></span> now implicitly depends on <span><code><span><span style="color:#4BF3C8">ProjectService</span></span></code></span> and <span><code><span><span style="color:#4BF3C8">AreaService</span></span></code></span> — even if they only call <span><code><span><span style="color:#4BF3C8">Create</span></span></code></span>.</p> <h2 id="when-surfaces-collide">When Surfaces Collide</h2> <p>This gets worse when bounded contexts need each other. Consider:</p> <ul> <li>Creating a task requires validating the project exists</li> <li>Completing a project requires completing all its tasks</li> </ul> <p>The traditional approach:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> TaskService</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> projectService</span><span style="color:#ACAFFF"> ProjectService</span><span style="color:#EEF0F98F;font-style:italic"> // Need to validate project</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> ProjectService</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> taskService</span><span style="color:#ACAFFF"> TaskService</span><span style="color:#EEF0F98F;font-style:italic"> // Need to complete child tasks</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Circular import. The compiler refuses.</p> <p>The frustrating part: <span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> only needs project <em>lookup</em>. <span><code><span><span style="color:#4BF3C8">CompleteProject</span></span></code></span> only needs task <em>completion</em>. These operations don’t overlap. But because both are bundled into monolithic services, the entire service becomes the dependency unit.</p> <h2 id="use-case-architecture">Use Case Architecture</h2> <p>The fix: make each operation its own struct with exactly the dependencies it needs.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> ProjectLookup</span><span style="color:#54B9FF"> interface</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#00DAEF"> Execute</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">name</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) (</span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Task</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> CreateTask</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> Repo</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">TaskRepository</span></span> <span><span style="color:#4BF3C8"> ProjectLookup</span><span style="color:#ACAFFF"> ProjectLookup</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">c </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">CreateTask</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Execute</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">title</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">opts</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">CreateOptions</span><span style="color:#EEF0F9">) (</span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Task</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> opts</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ProjectName</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">""</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> p</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> c</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ProjectLookup</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Execute</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">opts</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ProjectName</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // assign task to project</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // ... create the task</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>The interface is defined <em>by the consumer</em>, not the project domain. <span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> doesn’t depend on everything projects can do — just on “something that can look up a project by name.”</p> <h2 id="solving-circular-dependencies">Solving Circular Dependencies</h2> <p>With use case architecture, the circular dependency disappears:</p> <ul> <li><span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> needs <span><code><span><span style="color:#4BF3C8">ProjectLookup</span></span></code></span> (interface) → satisfied by <span><code><span><span style="color:#4BF3C8">GetProjectByName</span></span></code></span></li> <li><span><code><span><span style="color:#4BF3C8">CompleteProject</span></span></code></span> needs <span><code><span><span style="color:#4BF3C8">TaskCompleter</span></span></code></span> (interface) → satisfied by <span><code><span><span style="color:#4BF3C8">CompleteTasks</span></span></code></span></li> </ul> <p>No circular imports because:</p> <ol> <li>Neither domain knows the other’s full API</li> <li>Interfaces are consumer-defined, not provider-defined</li> <li>Each use case declares exactly what it needs</li> </ol> <p>The dependency graph stays a DAG. Always.</p> <h2 id="the-wiring">The Wiring</h2> <p>Dependencies resolve in a neutral location—a composition root:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> New</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">db</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">database</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">DB</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">App</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> taskRepo</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> task</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">db</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> areaRepo</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> area</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">db</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#4BF3C8"> getAreaByName</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> &amp;</span><span style="color:#ACAFFF">areausecases</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">GetAreaByName</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">Repo</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">areaRepo</span><span style="color:#EEF0F9">}</span></span> <span><span style="color:#4BF3C8"> getProjectByName</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> &amp;</span><span style="color:#ACAFFF">taskusecases</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">GetProjectByName</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">Repo</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">taskRepo</span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#4BF3C8"> createTask</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> &amp;</span><span style="color:#ACAFFF">taskusecases</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">CreateTask</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> Repo</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">taskRepo</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> ProjectLookup</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">getProjectByName</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> AreaLookup</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">getAreaByName</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#54B9FF"> return</span><span style="color:#54B9FF"> &amp;</span><span style="color:#ACAFFF">App</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> CreateTask</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">createTask</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> GetProjectByName</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">getProjectByName</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // ... other use cases</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Each use case gets exactly what it needs. <span><code><span><span style="color:#4BF3C8">GetProjectByName</span></span></code></span> satisfies the <span><code><span><span style="color:#4BF3C8">ProjectLookup</span></span></code></span> interface that <span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> defined. No service layer coordinates everything—use cases compose directly.</p> <h2 id="trade-offs">Trade-offs</h2> <p>This pattern has costs:</p> <p><strong>More files.</strong> One file per operation. A domain with 10 operations has 10 use case files instead of one service file.</p> <p><strong>Verbose wiring.</strong> The composition root grows as use cases multiply. In a real application, <span><code><span><span style="color:#4BF3C8">app</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">go</span></span></code></span> might wire 30+ use cases.</p> <p><strong>Requires discipline.</strong> Use cases must stay focused. The temptation to add “just one more dependency” defeats the purpose.</p> <p>The benefits:</p> <p><strong>Easy to test.</strong> Mock only the interfaces a use case declares. <span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> tests mock <span><code><span><span style="color:#4BF3C8">ProjectLookup</span></span></code></span> and <span><code><span><span style="color:#4BF3C8">AreaLookup</span></span></code></span>—nothing else.</p> <p><strong>Easy to understand.</strong> Open a file, see one operation. No scrolling through a 500-line service to find the method you care about.</p> <p><strong>Changes stay isolated.</strong> Modifying <span><code><span><span style="color:#4BF3C8">CreateTask</span></span></code></span> doesn’t affect <span><code><span><span style="color:#4BF3C8">CompleteTasks</span></span></code></span>. Different operations can evolve independently.</p> <p><strong>No circular dependency risk.</strong> The architecture makes cycles impossible by construction.</p> <h2 id="the-core-insight">The Core Insight</h2> <p>The unit of dependency should match the unit of operation. Services bundle unrelated operations, creating artificial coupling between consumers and producers. Use cases keep dependencies minimal and directional—each operation depends only on what it actually needs.</p> <p>As your application grows, the dependency surface stays proportional to individual operations, not to the sum of everything each domain can do.</p>GoArchitectureDDDhttps://danielbenner.de/books/the-critical-chain/https://danielbenner.de/books/the-critical-chain/Seeing the five steps from The Goal applied to project management was useful — helps the framework stick. Worth the read if you're managing large-scale projects. Less relevant for me, and the solutions felt less concrete than in the original.Wed, 31 Dec 2025 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Critical Chain vs Critical Path</h2> <div class="text-sm leading-relaxed"> <p>Critical Path considers task dependencies. Critical Chain considers task dependencies <em>and</em> resource dependencies.</p><figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">Critical</span><span style="color:#00DAEF"> Path</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">ignores</span><span style="color:#4BF3C8"> resources</span><span style="color:#EEF0F9">):</span></span> <span> </span> <span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> A</span><span style="color:#EEF0F9"> ──────┐</span></span> <span><span style="color:#EEF0F9"> ├──→ </span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> C</span></span> <span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> B</span><span style="color:#EEF0F9"> ──────┘</span></span> <span> </span> <span><span style="color:#EEF0F9">Duration: </span><span style="color:#00DAEF">max</span><span style="color:#EEF0F9">(</span><span style="color:#ACAFFF">A</span><span style="color:#EEF0F9">, </span><span style="color:#ACAFFF">B</span><span style="color:#EEF0F9">) + </span><span style="color:#ACAFFF">C</span></span> <span> </span> <span> </span> <span><span style="color:#4BF3C8">Critical</span><span style="color:#00DAEF"> Chain</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8">same</span><span style="color:#4BF3C8"> person</span><span style="color:#4BF3C8"> does</span><span style="color:#ACAFFF"> A</span><span style="color:#4BF3C8"> and</span><span style="color:#ACAFFF"> B</span><span style="color:#EEF0F9">):</span></span> <span> </span> <span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> A</span><span style="color:#EEF0F9"> ──────→ </span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> B</span><span style="color:#EEF0F9"> ──────→ </span><span style="color:#4BF3C8">Task</span><span style="color:#ACAFFF"> C</span></span> <span> </span> <span><span style="color:#EEF0F9">Duration: </span><span style="color:#ACAFFF">A</span><span style="color:#EEF0F9"> + </span><span style="color:#ACAFFF">B</span><span style="color:#EEF0F9"> + </span><span style="color:#ACAFFF">C</span></span></code></pre></figure><p>Critical Path gives you an optimistic fiction. Critical Chain gives you what will actually happen.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Five Steps Applied to Projects</h2> <div class="text-sm leading-relaxed"> <ol> <li><strong>Identify</strong> — Find the critical chain: the longest path through both task and resource dependencies.</li> <li><strong>Exploit</strong> — Strip hidden safety from estimates. Eliminate multitasking on critical chain tasks. Never let critical chain resources wait for inputs.</li> <li><strong>Subordinate</strong> — Everything else serves the chain. Feeding work delivers before it’s needed. Resources prioritize chain work over everything.</li> <li><strong>Elevate</strong> — Add resources, parallelize, cut scope. Only after exploitation is maxed out.</li> <li><strong>Repeat</strong> — The chain shifts. Back to step 1.</li> </ol> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Buffer System</h2> <div class="text-sm leading-relaxed"> <p>Instead of hiding safety in each task, consolidate it:</p><ul> <li><strong>Project Buffer</strong> — End of the critical chain. Protects the delivery date.</li> <li><strong>Feeding Buffer</strong> — Where non-critical paths join the chain. Protects against delays in feeding work.</li> <li><strong>Resource Buffer</strong> — Alerts key resources their task is coming. Not time, just a heads-up.</li> </ul><p>Same total safety time, dramatically different outcomes.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Why Consolidated Buffers Work</h2> <div class="text-sm leading-relaxed"> <p>Three reasons distributed safety fails:</p><p><strong>Statistical aggregation.</strong> Uncertainties don’t all materialize. Pooled buffers let variations cancel out. A 10-day project buffer protects better than 10 × 1-day task buffers. Insurance math.</p><p><strong>Behavioral effects.</strong> Parkinson’s Law: work expands to fill available time. Student Syndrome: people delay until pressure builds. Built-in safety gets consumed whether needed or not. Consolidated buffers are only touched when actually required.</p><p><strong>Visibility.</strong> Distributed safety hides problems until too late. Consolidated buffers give you “60% consumed with 40% done” — a clear signal to act.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Late Start Principle</h2> <div class="text-sm leading-relaxed"> <p>Starting late is better than starting early. Counterintuitive, but the math checks out.</p><p>Early start problems:</p><ul> <li>Student Syndrome means early start just moves procrastination earlier</li> <li>Parkinson’s Law means extra time gets used whether needed or not</li> <li>Early finishes never get passed on — people polish, delay reporting, or start something else</li> <li>More WIP means more context switching and resource collisions</li> </ul><p>Late start with buffers:</p><ul> <li>Minimizes work-in-progress</li> <li>Reduces resource contention</li> <li>Avoids premature work on requirements that might change</li> <li>Buffer provides protection without the behavioral problems</li> </ul><p>The rule: start as late as possible while buffers absorb variation. Starting early feels safer. Starting late with buffers <em>is</em> safer.</p> </div> </div>Bookshttps://danielbenner.de/books/the-goal/https://danielbenner.de/books/the-goal/Came at exactly the right time. I was stressed about our delivery process — too much to do, nothing getting done. The book brought clarity and order to the messy problem I'd been wrangling with in my head.Sun, 28 Dec 2025 00:00:00 GMT<div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">The Core Insight</h2> <div class="text-sm leading-relaxed"> <p>System throughput is determined by the bottleneck. Improving anything else is an illusion of progress.</p><figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F9">[</span><span style="color:#4BF3C8">Wide</span><span style="color:#EEF0F9">] → [</span><span style="color:#4BF3C8">Wide</span><span style="color:#EEF0F9">] → [</span><span style="color:#ACAFFF">NARROW</span><span style="color:#EEF0F9">] → [</span><span style="color:#4BF3C8">Wide</span><span style="color:#EEF0F9">] → </span><span style="color:#4BF3C8">Output</span></span></code></pre></figure><p>Widening the wide sections changes nothing. This is obvious when drawn as pipes, yet organizations constantly pour resources into non-constraints and wonder why output doesn’t improve.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Five Focusing Steps</h2> <div class="text-sm leading-relaxed"> <ol> <li><strong>Identify</strong> — Find the bottleneck.</li> <li><strong>Exploit</strong> — Squeeze every drop of capacity from it without spending money.</li> <li><strong>Subordinate</strong> — Everything else serves the constraint. Deliberately hold back non-bottlenecks.</li> <li><strong>Elevate</strong> — Now invest. Only after exploitation is maxed out.</li> <li><strong>Repeat</strong> — A new constraint emerges. Back to step 1.</li> </ol><p>Step 3 is where most organizations fail. Holding resources back feels wasteful. It isn’t.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Finding Bottlenecks</h2> <div class="text-sm leading-relaxed"> <p>Look for where inventory piles up. The constraint is always busy while downstream resources are starved. Follow the queues.</p><p>The constraint isn’t always a machine or person. It can be a policy, a skill (only one person knows how to do X), or the market itself.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Activation vs Utilization</h2> <div class="text-sm leading-relaxed"> <p>Keeping everyone busy is not the same as being productive. A worker upstream of the bottleneck running at 100% just builds piles of WIP. A worker downstream starves regardless.</p><p>Idle time at non-bottlenecks isn’t waste. It’s the point.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Drum-Buffer-Rope</h2> <div class="text-sm leading-relaxed"> <p>The hiking analogy: put the slowest kid (Herbie) at the front and tie a rope to him. The whole group moves at his pace without spreading apart.</p><ul> <li><strong>Drum</strong> — The bottleneck sets the pace</li> <li><strong>Buffer</strong> — Inventory in front of the constraint so it never starves</li> <li><strong>Rope</strong> — Ties input to bottleneck capacity</li> </ul><p>Only regulate what enters the system. If the bottleneck processes 10 units/hour, release 10 units/hour at the start. Everything in between will sort itself out.</p> </div> </div> <div class="my-6 border-l-2 border-accent pl-6 py-2"> <h2 class="text-sm font-bold uppercase tracking-widest mb-2" style="color:var(--color-accent)">Throughput Accounting</h2> <div class="text-sm leading-relaxed"> <p>Traditional cost accounting rewards overproduction — inventory is an asset on the balance sheet. Managers game this.</p><p>TOC flips it:</p><ul> <li><strong>Throughput (T)</strong> — Revenue minus truly variable costs</li> <li><strong>Inventory (I)</strong> — Money stuck in the system</li> <li><strong>Operating Expense (OE)</strong> — Money spent to turn I into T</li> </ul><p>Net Profit = T - OE. ROI = (T - OE) / I.</p><p>The priority for decisions: increase throughput first (biggest leverage), reduce inventory second (frees cash), reduce operating expense last (often counterproductive if it touches the constraint).</p> </div> </div>Bookshttps://danielbenner.de/articles/minimal-ai-friendly-notes/https://danielbenner.de/articles/minimal-ai-friendly-notes/When your entire system is 50 lines of bash, AI can write whatever tooling you need.Thu, 11 Dec 2025 00:00:00 GMT<p>Obsidian, Notion, Roam — there’s no shortage of good note-taking apps. But I wanted something where AI could not just read my notes, but write tooling for them. So I built a system that’s about 50 lines of bash, and AI can extend it trivially.</p> <h2 id="the-idea">The Idea</h2> <p>This isn’t anti-Obsidian. Obsidian is great, and it uses markdown too. The difference is what happens when you want a new feature.</p> <p>In most apps, you either wait for it, find a plugin, or learn the plugin API and build it yourself. In a system that’s just files and scripts, you ask Claude “write me a script that does X” and it works. No plugins to learn, no API to integrate—just scripts that operate on files.</p> <p>When the whole system is transparent, AI can reason about it completely.</p> <h2 id="the-structure">The Structure</h2> <p>Notes are plain markdown files with date-prefixed names:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#FFD493">20251210</span><span style="color:#EEF0F9">--</span><span style="color:#4BF3C8">project</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">kickoff</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span> <span><span style="color:#FFD493">20251211</span><span style="color:#EEF0F9">--</span><span style="color:#4BF3C8">api</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">design</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">notes</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">md</span></span></code></pre></figure> <p>Organized in folders by project or area:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">notes</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">active</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">client</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">project</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">side</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">project</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">personal</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">archive</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">scripts</span><span style="color:#EEF0F9">/</span></span></code></pre></figure> <p>Active projects live in <span><code><span><span style="color:#4BF3C8">active</span><span style="color:#EEF0F9">/</span></span></code></span>. When a project wraps up, it moves to <span><code><span><span style="color:#4BF3C8">archive</span><span style="color:#EEF0F9">/</span></span></code></span>. The <span><code><span><span style="color:#4BF3C8">scripts</span><span style="color:#EEF0F9">/</span></span></code></span> folder holds the tooling.</p> <p>Dependencies: <span><code><span><span style="color:#4BF3C8">fzf</span></span></code></span> for fuzzy selection, <span><code><span><span style="color:#4BF3C8">bat</span></span></code></span> for syntax-highlighted previews, <span><code><span><span style="color:#4BF3C8">ripgrep</span></span></code></span> for fast search. Standard Unix tools.</p> <h2 id="five-scripts-i-found-useful">Five Scripts I Found Useful</h2> <p>These are the actions I needed. Your list might be different — that’s the point.</p> <h3 id="nn--new-note">nn — New Note</h3> <p>Pick a folder, enter a title, creates a dated markdown file and opens it.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">#!/bin/bash</span></span> <span> </span> <span><span style="color:#4BF3C8">NOTES_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"/Users/daniel/notes"</span></span> <span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/active"</span></span> <span><span style="color:#4BF3C8">PICKER</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"fzf"</span></span> <span> </span> <span><span style="color:#4BF3C8">folders</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">find</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> -mindepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -maxdepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -type</span><span style="color:#FFD493"> d</span><span style="color:#FFD493"> -exec</span><span style="color:#FFD493"> basename</span><span style="color:#FFD493"> {}</span><span style="color:#EEF0F9"> \; | </span><span style="color:#00DAEF">sort</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folders found in </span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">folder</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --prompt="Select folder: "</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folder selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#EEF0F9">read </span><span style="color:#FFD493">-p</span><span style="color:#FFD493"> "Title: "</span><span style="color:#FFD493"> title</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$title</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"Title cannot be empty"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">date_stamp</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">date</span><span style="color:#FFD493"> +%Y%m%d</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8">slug</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$title</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> '[:upper:]'</span><span style="color:#FFD493"> '[:lower:]'</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> ' '</span><span style="color:#FFD493"> '-'</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> -cd</span><span style="color:#FFD493"> 'a-z0-9-'</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8">filename</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"${</span><span style="color:#4BF3C8">date_stamp</span><span style="color:#FFD493">}--${</span><span style="color:#4BF3C8">slug</span><span style="color:#FFD493">}.md"</span></span> <span><span style="color:#4BF3C8">filepath</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"${</span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#FFD493">}/${</span><span style="color:#4BF3C8">folder</span><span style="color:#FFD493">}/${</span><span style="color:#4BF3C8">filename</span><span style="color:#FFD493">}"</span></span> <span> </span> <span><span style="color:#EEF0F9">echo </span><span style="color:#FFD493">"# ${</span><span style="color:#4BF3C8">title</span><span style="color:#FFD493">}"</span><span style="color:#EEF0F9"> &gt; </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9">echo </span><span style="color:#FFD493">""</span><span style="color:#EEF0F9"> &gt;&gt; </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span> <span> </span> <span><span style="color:#EEF0F9">echo </span><span style="color:#FFD493">"Created: </span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9">${</span><span style="color:#4BF3C8">EDITOR</span><span style="color:#EEF0F9">:-</span><span style="color:#4BF3C8">vim</span><span style="color:#EEF0F9">} </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span></code></pre></figure> <h3 id="nf--find-note">nf — Find Note</h3> <p>Fuzzy-find notes by filename with preview. Use <span><code><span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">p</span></span></code></span> to pick a specific folder first.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">#!/bin/bash</span></span> <span> </span> <span><span style="color:#4BF3C8">NOTES_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"/Users/daniel/notes"</span></span> <span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/active"</span></span> <span><span style="color:#4BF3C8">PICKER</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"fzf"</span></span> <span> </span> <span><span style="color:#4BF3C8">pick_folder</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">false</span></span> <span><span style="color:#54B9FF">for</span><span style="color:#4BF3C8"> arg</span><span style="color:#54B9FF"> in</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8;font-style:italic">$@</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9">; </span><span style="color:#54B9FF">do</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#4BF3C8"> $arg</span><span style="color:#54B9FF"> in</span></span> <span><span style="color:#EEF0F9"> -p</span><span style="color:#EEF0F9">|</span><span style="color:#EEF0F9">--pick</span><span style="color:#EEF0F9">) </span><span style="color:#4BF3C8">pick_folder</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">true</span><span style="color:#EEF0F9"> ;;</span></span> <span><span style="color:#54B9FF"> esac</span></span> <span><span style="color:#54B9FF">done</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> $pick_folder</span><span style="color:#EEF0F9">; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#4BF3C8"> folders</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">find</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> -mindepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -maxdepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -type</span><span style="color:#FFD493"> d</span><span style="color:#FFD493"> -exec</span><span style="color:#FFD493"> basename</span><span style="color:#FFD493"> {}</span><span style="color:#EEF0F9"> \; | </span><span style="color:#00DAEF">sort</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folders found in </span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF"> fi</span></span> <span> </span> <span><span style="color:#4BF3C8"> folder</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --prompt="Select folder: "</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folder selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF"> fi</span></span> <span> </span> <span><span style="color:#4BF3C8"> search_dir</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span></span> <span><span style="color:#54B9FF">else</span></span> <span><span style="color:#4BF3C8"> search_dir</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">notes</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">find</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$search_dir</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> -name</span><span style="color:#FFD493"> "*.md"</span><span style="color:#FFD493"> -type</span><span style="color:#FFD493"> f</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">sort</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$notes</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No notes found"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">filepath</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$notes</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --prompt="Select note: "</span><span style="color:#FFD493"> --preview="bat --color=always --style=plain {}"</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No note selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#EEF0F9">${</span><span style="color:#4BF3C8">EDITOR</span><span style="color:#EEF0F9">:-</span><span style="color:#4BF3C8">vim</span><span style="color:#EEF0F9">} </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span></code></pre></figure> <h3 id="ns--search-content">ns — Search Content</h3> <p>Full-text search across all notes. Opens at the matching line.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">#!/bin/bash</span></span> <span> </span> <span><span style="color:#4BF3C8">NOTES_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"/Users/daniel/notes"</span></span> <span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/active"</span></span> <span><span style="color:#4BF3C8">PICKER</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"fzf"</span></span> <span> </span> <span><span style="color:#4BF3C8">pick_folder</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">false</span></span> <span><span style="color:#54B9FF">for</span><span style="color:#4BF3C8"> arg</span><span style="color:#54B9FF"> in</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8;font-style:italic">$@</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9">; </span><span style="color:#54B9FF">do</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#4BF3C8"> $arg</span><span style="color:#54B9FF"> in</span></span> <span><span style="color:#EEF0F9"> -p</span><span style="color:#EEF0F9">|</span><span style="color:#EEF0F9">--pick</span><span style="color:#EEF0F9">) </span><span style="color:#4BF3C8">pick_folder</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">true</span><span style="color:#EEF0F9"> ;;</span></span> <span><span style="color:#54B9FF"> esac</span></span> <span><span style="color:#54B9FF">done</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> $pick_folder</span><span style="color:#EEF0F9">; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#4BF3C8"> folders</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">find</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> -mindepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -maxdepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -type</span><span style="color:#FFD493"> d</span><span style="color:#FFD493"> -exec</span><span style="color:#FFD493"> basename</span><span style="color:#FFD493"> {}</span><span style="color:#EEF0F9"> \; | </span><span style="color:#00DAEF">sort</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folders found in </span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF"> fi</span></span> <span> </span> <span><span style="color:#4BF3C8"> folder</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --prompt="Select folder: "</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folder selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF"> fi</span></span> <span> </span> <span><span style="color:#4BF3C8"> search_dir</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span></span> <span><span style="color:#54B9FF">else</span></span> <span><span style="color:#4BF3C8"> search_dir</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">result</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">rg</span><span style="color:#FFD493"> --line-number</span><span style="color:#FFD493"> --color=always</span><span style="color:#FFD493"> .</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$search_dir</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --ansi</span><span style="color:#FFD493"> --prompt="Search content: "</span><span style="color:#FFD493"> --preview="bat --color=always --style=plain --highlight-line {2} {1}"</span><span style="color:#FFD493"> --delimiter=:</span><span style="color:#FFD493"> --preview-window=+</span><span style="color:#EEF0F9">{</span><span style="color:#00DAEF">2}-10</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$result</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No match selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">filepath</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$result</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">cut</span><span style="color:#FFD493"> -d:</span><span style="color:#FFD493"> -f1</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8">line</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$result</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">cut</span><span style="color:#FFD493"> -d:</span><span style="color:#FFD493"> -f2</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F9">${</span><span style="color:#4BF3C8">EDITOR</span><span style="color:#EEF0F9">:-</span><span style="color:#4BF3C8">vim</span><span style="color:#EEF0F9">} </span><span style="color:#FFD493">"+</span><span style="color:#4BF3C8">$line</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$filepath</span><span style="color:#FFD493">"</span></span></code></pre></figure> <h3 id="np--new-project">np — New Project</h3> <p>Create a new folder in <span><code><span><span style="color:#4BF3C8">active</span><span style="color:#EEF0F9">/</span></span></code></span>.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">#!/bin/bash</span></span> <span> </span> <span><span style="color:#4BF3C8">NOTES_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"/Users/daniel/notes"</span></span> <span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/active"</span></span> <span> </span> <span><span style="color:#EEF0F9">read </span><span style="color:#FFD493">-p</span><span style="color:#FFD493"> "Folder name: "</span><span style="color:#FFD493"> folder</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"Folder name cannot be empty"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">slug</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> '[:upper:]'</span><span style="color:#FFD493"> '[:lower:]'</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> ' '</span><span style="color:#FFD493"> '-'</span><span style="color:#EEF0F9"> | </span><span style="color:#00DAEF">tr</span><span style="color:#FFD493"> -cd</span><span style="color:#FFD493"> 'a-z0-9-'</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#00DAEF">mkdir</span><span style="color:#FFD493"> -p</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">$slug</span><span style="color:#FFD493">"</span></span> <span> </span> <span><span style="color:#EEF0F9">echo </span><span style="color:#FFD493">"Created: </span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">$slug</span><span style="color:#FFD493">"</span></span></code></pre></figure> <h3 id="na--archive-project">na — Archive Project</h3> <p>Move a folder from <span><code><span><span style="color:#4BF3C8">active</span><span style="color:#EEF0F9">/</span></span></code></span> to <span><code><span><span style="color:#4BF3C8">archive</span><span style="color:#EEF0F9">/</span></span></code></span>.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">#!/bin/bash</span></span> <span> </span> <span><span style="color:#4BF3C8">NOTES_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"/Users/daniel/notes"</span></span> <span><span style="color:#4BF3C8">ACTIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/active"</span></span> <span><span style="color:#4BF3C8">ARCHIVE_DIR</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$NOTES_DIR</span><span style="color:#FFD493">/archive"</span></span> <span><span style="color:#4BF3C8">PICKER</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"fzf"</span></span> <span> </span> <span><span style="color:#4BF3C8">folders</span><span style="color:#EEF0F9">=$(</span><span style="color:#00DAEF">find</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> -mindepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -maxdepth</span><span style="color:#FFD493"> 1</span><span style="color:#FFD493"> -type</span><span style="color:#FFD493"> d</span><span style="color:#FFD493"> -exec</span><span style="color:#FFD493"> basename</span><span style="color:#FFD493"> {}</span><span style="color:#EEF0F9"> \; | </span><span style="color:#00DAEF">sort</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folders found in </span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#4BF3C8">folder</span><span style="color:#EEF0F9">=$(echo </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folders</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> | </span><span style="color:#4BF3C8">$PICKER</span><span style="color:#FFD493"> --prompt="Select folder to archive: "</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">if</span><span style="color:#EEF0F9"> [ -z </span><span style="color:#FFD493">"</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#EEF0F9"> ]; </span><span style="color:#54B9FF">then</span></span> <span><span style="color:#EEF0F9"> echo </span><span style="color:#FFD493">"No folder selected"</span></span> <span><span style="color:#EEF0F9"> exit </span><span style="color:#FFD493">1</span></span> <span><span style="color:#54B9FF">fi</span></span> <span> </span> <span><span style="color:#00DAEF">mkdir</span><span style="color:#FFD493"> -p</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ARCHIVE_DIR</span><span style="color:#FFD493">"</span></span> <span> </span> <span><span style="color:#00DAEF">mv</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ACTIVE_DIR</span><span style="color:#FFD493">/</span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span><span style="color:#FFD493"> "</span><span style="color:#4BF3C8">$ARCHIVE_DIR</span><span style="color:#FFD493">/"</span></span> <span> </span> <span><span style="color:#EEF0F9">echo </span><span style="color:#FFD493">"Archived: </span><span style="color:#4BF3C8">$folder</span><span style="color:#FFD493">"</span></span></code></pre></figure> <p>I also have Neovim commands that mirror these <span><code><span><span style="color:#EEF0F9">:</span><span style="color:#4BF3C8">NoteNew</span></span></code></span>, <span><code><span><span style="color:#EEF0F9">:</span><span style="color:#4BF3C8">NoteFind</span></span></code></span>, <span><code><span><span style="color:#EEF0F9">:</span><span style="color:#4BF3C8">NoteSearch</span></span></code></span>, and so on. AI generated those too.</p> <h2 id="ai-can-write-the-rest">AI Can Write the Rest</h2> <p>This is the key part. When you need a new feature, you don’t search for plugins or learn an API. You describe what you want.</p> <p>“Write me a script that generates a weekly summary of notes created in the last 7 days.”</p> <p>“Write me a script that finds notes containing a specific phrase and lists them with context.”</p> <p>“Write me a script that exports a project folder to a single markdown file for sharing.”</p> <p>Claude can see the folder structure, understand the naming convention, and write a working script in seconds. No abstractions to navigate, no plugin architecture to satisfy. Just files and bash.</p> <p>You don’t need to anticipate every feature. When you need something, ask.</p> <h2 id="tradeoffs">Tradeoffs</h2> <p>There are real downsides:</p> <ul> <li><strong>No native mobile app.</strong> A simple markdown viewer / editor like 1Writer is enough for me though.</li> <li><strong>No sync built-in.</strong> I use git. Syncthing would also work. But you have to set it up.</li> <li><strong>No graph views.</strong> I never found these useful, but if you did — AI could generate one.</li> <li><strong>Requires terminal comfort.</strong> If fzf and vim aren’t in your vocabulary, there’s friction.</li> </ul> <h2 id="why-this-works">Why This Works</h2> <p>The system isn’t better because it’s minimal. It’s better because it’s transparent.</p> <p>AI works best when it can see and modify the full system. No hidden state, no proprietary formats, no plugin APIs to reverse-engineer. Just files and scripts that do exactly what they say.</p> <p>Five scripts was enough for me. Yours might be different. That’s the point.</p>AIProductivityToolshttps://danielbenner.de/articles/legal-mcp-german-law/https://danielbenner.de/articles/legal-mcp-german-law/German law is publicly available but practically inaccessible. Here's how to fix that with semantic search and MCP.Sat, 29 Nov 2025 00:00:00 GMT<p>German law is technically public. Every federal statute sits on <a href="https://www.gesetze-im-internet.de">gesetze-im-internet.de</a>, maintained by the Federal Ministry of Justice.</p> <p>But “public” doesn’t mean “accessible.” Finding relevant law means knowing which of 6,800+ legal codes to search, which section applies, and how to parse dense legal German. Legal professionals spend years building this mental map.</p> <p>AI assistants could help—if they had structured access to the data. That’s what <a href="https://github.com/ayunis-core/ayunis-legal-mcp">legal-mcp</a> does: it gives AI semantic search over German federal law via the Model Context Protocol.</p> <h2 id="the-problem-german-law-is-a-labyrinth">The Problem: German Law Is a Labyrinth</h2> <h3 id="the-data-source">The Data Source</h3> <p>Gesetze-im-internet.de is Germany’s official legal database. It contains every federal law, ordinance, and regulation—6,852 legal codes as of this writing. The data is structured XML, downloadable as ZIP archives, following a DTD called <span><code><span><span style="color:#4BF3C8">gii</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">norm</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">dtd</span></span></code></span>.</p> <p>This sounds usable. It isn’t.</p> <h3 id="why-its-hard-to-use">Why It’s Hard to Use</h3> <p>The official site offers only exact string matching. No semantic search. This creates a fundamental mismatch between how people think about legal questions and how the system expects them to search.</p> <p>Consider: you want to know about returning a defective product. Is that in the BGB (Civil Code)? The HGB (Commercial Code)? The VVG (Insurance Contract Act)? Even if you know it’s the BGB, do you search § 437 (Buyer’s Rights), § 439 (Subsequent Performance), or § 323 (Withdrawal from Contract)?</p> <p>The answer is all of them, in conjunction. German legal texts are dense with cross-references: ”§ 433 BGB in Verbindung mit § 275 BGB.” The structure assumes you already know the structure.</p> <p>Then there’s Rechtsdeutsch—legal German. It’s precise but archaic, using vocabulary that doesn’t match everyday language. Searching for “return defective product” won’t find “Nacherfüllung” (subsequent performance), even though that’s exactly what you need.</p> <h3 id="the-real-challenge">The Real Challenge</h3> <p>Keyword search fails for legal text because legal precision and natural language operate on different axes.</p> <p>What people ask: “What are my rights if a product is broken?”</p> <p>What the law says: “Der Käufer kann als Nacherfüllung nach seiner Wahl die Beseitigung des Mangels oder die Lieferung einer mangelfreien Sache verlangen.”</p> <p>No shared keywords. Same concept. This is a vector search problem.</p> <h2 id="the-solution-mcp--vector-search">The Solution: MCP + Vector Search</h2> <h3 id="what-mcp-does">What MCP Does</h3> <p>Model Context Protocol is Anthropic’s standard for giving AI structured tool access. Instead of dumping law into prompts (context limits make this impossible anyway), you give AI tools to search on demand.</p> <p>Legal-mcp exposes four tools:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">@mcp</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">tool</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF">async</span><span style="color:#54B9FF"> def</span><span style="color:#00DAEF"> search_legal_texts</span><span style="color:#EEF0F9">(</span></span> <span><span style="color:#FFD493;font-style:italic"> query</span><span style="color:#EEF0F9">: str = </span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">description</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"The search query text"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#FFD493;font-style:italic"> code</span><span style="color:#EEF0F9">: str = </span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">description</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"Legal code identifier (e.g., 'bgb', 'stgb')"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#FFD493;font-style:italic"> limit</span><span style="color:#EEF0F9">: int = </span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">5</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">ge</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">le</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">20</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#FFD493;font-style:italic"> cutoff</span><span style="color:#EEF0F9">: float = </span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">0.7</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">ge</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">0.0</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">le</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">2.0</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#EEF0F9">) -&gt; List[LegalTextResult]:</span></span> <span><span style="color:#FFD493"> """</span></span> <span><span style="color:#FFD493"> Perform semantic search on German legal texts.</span></span> <span> </span> <span><span style="color:#FFD493"> Searches through legal codes using semantic similarity to find relevant</span></span> <span><span style="color:#FFD493"> sections based on the query text. Lower similarity scores indicate better matches.</span></span> <span><span style="color:#FFD493"> """</span></span></code></pre></figure> <p>The others: <span><code><span><span style="color:#4BF3C8">get_legal_section</span></span></code></span> for exact retrieval, <span><code><span><span style="color:#4BF3C8">get_available_codes</span></span></code></span> for discovery, and <span><code><span><span style="color:#4BF3C8">import_legal_code</span></span></code></span> for adding new codes to the database.</p> <h3 id="why-vector-search-matters">Why Vector Search Matters</h3> <p>Vector embeddings capture semantic meaning. The embedding model (Qwen3-Embedding-4B, 2560 dimensions, running locally via Ollama) converts text into high-dimensional vectors where similar concepts cluster together.</p> <p>“What are my rights if a product is broken?” produces a vector that’s geometrically close to vectors for warranty and defect provisions—even without shared words.</p> <p>This transforms legal search from “hope you know the exact terminology” to “describe what you’re looking for.”</p> <h3 id="the-architecture">The Architecture</h3> <pre class="mermaid">flowchart TB mcp["MCP Server&lt;br/&gt;(FastMCP, port 8001)&lt;br/&gt;Tools for AI assistants"] store["Store API&lt;br/&gt;(FastAPI, port 8000)&lt;br/&gt;Search, import, manage legal texts"] pg["Postgres&lt;br/&gt;pgvector"] ollama["Ollama&lt;br/&gt;embed"] scraper["Scraper&lt;br/&gt;XML parse"] mcp --&gt;|HTTP| store store --&gt; pg store --&gt; ollama store --&gt; scraper </pre> <p>Three deployable components. The MCP server is a thin HTTP client that exposes tools. The Store API contains all business logic—search, import, embedding coordination. PostgreSQL with pgvector stores the legal texts and their embeddings.</p> <p>The separation matters. MCP servers should be stateless tool interfaces. The heavy lifting happens elsewhere.</p> <h2 id="parsing-german-legal-xml">Parsing German Legal XML</h2> <p>The <span><code><span><span style="color:#4BF3C8">gii</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">norm</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">dtd</span></span></code></span> format is comprehensive. It’s not just paragraphs—it’s nested structures with specific legal semantics:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#00DAEF">@dataclass</span></span> <span><span style="color:#54B9FF">class</span><span style="color:#ACAFFF"> Metadaten</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#FFD493"> """Represents metadata for a legal norm"""</span></span> <span><span style="color:#EEF0F9"> jurabk: List[str] </span><span style="color:#EEF0F98F;font-style:italic"># Legal abbreviation(s)</span></span> <span><span style="color:#EEF0F9"> amtabk: Optional[str] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F98F;font-style:italic"> # Official abbreviation</span></span> <span><span style="color:#EEF0F9"> ausfertigung_datum: Optional[str] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F98F;font-style:italic"> # Promulgation date</span></span> <span><span style="color:#EEF0F9"> fundstelle: List[Fundstelle] = </span><span style="color:#00DAEF">field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default_factory</span><span style="color:#EEF0F9">=list)</span></span> <span><span style="color:#EEF0F9"> kurzue: Optional[str] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F98F;font-style:italic"> # Short title</span></span> <span><span style="color:#EEF0F9"> langue: Optional[str] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F98F;font-style:italic"> # Long title</span></span> <span><span style="color:#EEF0F9"> gliederungseinheit: Optional[Gliederungseinheit] = </span><span style="color:#FFD493">None</span></span> <span><span style="color:#EEF0F9"> enbez: Optional[str] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F98F;font-style:italic"> # Section designation</span></span> <span><span style="color:#EEF0F9"> titel: Optional[str] = </span><span style="color:#FFD493">None</span></span> <span><span style="color:#EEF0F9"> standangabe: List[Standangabe] = </span><span style="color:#00DAEF">field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default_factory</span><span style="color:#EEF0F9">=list)</span></span> <span> </span> <span> </span> <span><span style="color:#00DAEF">@dataclass</span></span> <span><span style="color:#54B9FF">class</span><span style="color:#ACAFFF"> FormattedText</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#FFD493"> """Represents formatted text with structure preserved"""</span></span> <span><span style="color:#EEF0F9"> content: str</span></span> <span><span style="color:#EEF0F9"> paragraphs: List[str] = </span><span style="color:#00DAEF">field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default_factory</span><span style="color:#EEF0F9">=list)</span></span> <span><span style="color:#EEF0F9"> tables: List[Table] = </span><span style="color:#00DAEF">field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default_factory</span><span style="color:#EEF0F9">=list)</span></span> <span><span style="color:#EEF0F9"> footnote_refs: List[str] = </span><span style="color:#00DAEF">field</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">default_factory</span><span style="color:#EEF0F9">=list)</span></span></code></pre></figure> <p>Multiple title formats (short, long, official). Footnotes that are legally significant. Tables in legislation (yes, really—tax brackets, fee schedules). Status information tracking amendments and repeals.</p> <p>The parser handles about 20 distinct element types across 800 lines of code. Most of that complexity is invisible to end users, but it’s necessary to extract clean, searchable text from the source.</p> <h3 id="extracting-structure">Extracting Structure</h3> <p>German legal texts use a consistent notation: § 1, § 2, and so on. Subsections are marked with parenthetical numbers in the text itself:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">def</span><span style="color:#00DAEF"> _extract_sub_section</span><span style="color:#EEF0F9">(</span><span style="color:#ACAFFF;font-style:italic">self</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493;font-style:italic">section</span><span style="color:#EEF0F9">: str) -&gt; str:</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> # if section number is present, the str begins with (n)</span></span> <span><span style="color:#54B9FF;font-style:italic"> if</span><span style="color:#EEF0F9"> section.</span><span style="color:#00DAEF">startswith</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"("</span><span style="color:#EEF0F9">):</span></span> <span><span style="color:#54B9FF;font-style:italic"> return</span><span style="color:#EEF0F9"> section.</span><span style="color:#00DAEF">split</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"("</span><span style="color:#EEF0F9">)[</span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">].</span><span style="color:#00DAEF">split</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">")"</span><span style="color:#EEF0F9">)[</span><span style="color:#FFD493">0</span><span style="color:#EEF0F9">]</span></span> <span><span style="color:#54B9FF;font-style:italic"> return</span><span style="color:#FFD493"> ""</span></span></code></pre></figure> <p>Simple, but it preserves the granularity that makes legal search useful. You can retrieve § 433 BGB (the whole section on purchase contracts) or § 433 BGB Abs. 1 (just the seller’s obligations).</p> <h2 id="the-embedding-pipeline">The Embedding Pipeline</h2> <h3 id="batch-processing">Batch Processing</h3> <p>Legal codes vary wildly in size. The Grundgesetz (Constitution) has 146 articles. The BGB (Civil Code) has over 2,300 sections. The Sozialgesetzbuch (Social Code) is split across twelve books.</p> <p>Embedding everything at once hits request size limits. The solution is straightforward: process in batches.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">async</span><span style="color:#54B9FF"> def</span><span style="color:#00DAEF"> generate_embeddings</span><span style="color:#EEF0F9">(</span><span style="color:#ACAFFF;font-style:italic">self</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493;font-style:italic">texts</span><span style="color:#EEF0F9">: List[str]) -&gt; Sequence[Sequence[float]]:</span></span> <span><span style="color:#EEF0F9"> all_embeddings: List[Sequence[float]] = []</span></span> <span><span style="color:#EEF0F9"> batch_size = </span><span style="color:#ACAFFF">self</span><span style="color:#EEF0F9">.settings.ollama_batch_size </span><span style="color:#EEF0F98F;font-style:italic"># default: 50</span></span> <span> </span> <span><span style="color:#54B9FF;font-style:italic"> for</span><span style="color:#EEF0F9"> i </span><span style="color:#54B9FF;font-style:italic">in</span><span style="color:#EEF0F9"> range(</span><span style="color:#FFD493">0</span><span style="color:#EEF0F9">, len(texts), batch_size):</span></span> <span><span style="color:#EEF0F9"> batch = texts[i : i + batch_size]</span></span> <span><span style="color:#EEF0F9"> logger.</span><span style="color:#00DAEF">info</span><span style="color:#EEF0F9">(</span></span> <span><span style="color:#54B9FF"> f</span><span style="color:#FFD493">"Generating embeddings for batch </span><span style="color:#FFD493">{</span><span style="color:#EEF0F9">i // batch_size + </span><span style="color:#FFD493">1}</span><span style="color:#FFD493">/"</span></span> <span><span style="color:#54B9FF"> f</span><span style="color:#FFD493">"</span><span style="color:#FFD493">{</span><span style="color:#EEF0F9">(len(texts) + batch_size - </span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">) // batch_size</span><span style="color:#FFD493">}</span><span style="color:#FFD493"> (</span><span style="color:#FFD493">{</span><span style="color:#EEF0F9">len(batch)</span><span style="color:#FFD493">}</span><span style="color:#FFD493"> texts)"</span></span> <span><span style="color:#EEF0F9"> )</span></span> <span> </span> <span><span style="color:#EEF0F9"> response = </span><span style="color:#54B9FF;font-style:italic">await</span><span style="color:#ACAFFF"> self</span><span style="color:#EEF0F9">.client.</span><span style="color:#00DAEF">embed</span><span style="color:#EEF0F9">(</span></span> <span><span style="color:#4BF3C8;font-style:italic"> model</span><span style="color:#EEF0F9">=</span><span style="color:#ACAFFF">self</span><span style="color:#EEF0F9">.model,</span></span> <span><span style="color:#4BF3C8;font-style:italic"> input</span><span style="color:#EEF0F9">=batch,</span></span> <span><span style="color:#EEF0F9"> )</span></span> <span><span style="color:#EEF0F9"> all_embeddings.</span><span style="color:#00DAEF">extend</span><span style="color:#EEF0F9">(response.embeddings)</span></span> <span> </span> <span><span style="color:#54B9FF;font-style:italic"> return</span><span style="color:#EEF0F9"> all_embeddings</span></span></code></pre></figure> <p>Default batch size is 50. Configurable up to 500 for systems with more memory. The tradeoff is straightforward: larger batches are faster but risk 413 errors from nginx or Ollama’s request handling.</p> <h3 id="why-local-inference">Why Local Inference</h3> <p>Using Ollama for embeddings means no API costs and no rate limits. Legal text volumes are substantial—importing the 267 codes relevant for public administration involves embedding tens of thousands of sections.</p> <p>The tradeoff: you need a GPU for reasonable performance. On an M1 Mac, embedding the BGB takes about 10 minutes. On a system with a dedicated GPU, it’s under a minute.</p> <h2 id="search-in-practice">Search in Practice</h2> <p>pgvector stores embeddings as native PostgreSQL columns. Search becomes a query:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">async</span><span style="color:#54B9FF"> def</span><span style="color:#00DAEF"> semantic_search</span><span style="color:#EEF0F9">(</span></span> <span><span style="color:#ACAFFF;font-style:italic"> self</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#FFD493;font-style:italic"> query_embedding</span><span style="color:#EEF0F9">: Sequence[float],</span></span> <span><span style="color:#FFD493;font-style:italic"> code</span><span style="color:#EEF0F9">: str,</span></span> <span><span style="color:#FFD493;font-style:italic"> limit</span><span style="color:#EEF0F9">: int = </span><span style="color:#FFD493">10</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#FFD493;font-style:italic"> cutoff</span><span style="color:#EEF0F9">: Optional[float] = </span><span style="color:#FFD493">None</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F9">) -&gt; List[Tuple[LegalTextDB, float]]:</span></span> <span><span style="color:#FFD493"> """</span></span> <span><span style="color:#FFD493"> Uses cosine distance to find the most similar legal texts.</span></span> <span><span style="color:#FFD493"> Results are filtered by code and ordered by similarity (closest first).</span></span> <span> </span> <span><span style="color:#FFD493"> pgvector's &lt;=&gt; operator returns cosine distance where:</span></span> <span><span style="color:#FFD493"> - 0 means identical vectors</span></span> <span><span style="color:#FFD493"> - smaller values mean more similar</span></span> <span><span style="color:#FFD493"> - 2 means completely opposite vectors</span></span> <span><span style="color:#FFD493"> """</span></span> <span><span style="color:#EEF0F9"> distance_expr = LegalTextDB.text_vector.</span><span style="color:#00DAEF">cosine_distance</span><span style="color:#EEF0F9">(query_embedding)</span></span> <span> </span> <span><span style="color:#EEF0F9"> query = (</span></span> <span><span style="color:#00DAEF"> select</span><span style="color:#EEF0F9">(LegalTextDB, distance_expr.</span><span style="color:#00DAEF">label</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"distance"</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#EEF0F9"> .</span><span style="color:#00DAEF">filter</span><span style="color:#EEF0F9">(LegalTextDB.code == code)</span></span> <span><span style="color:#EEF0F9"> .</span><span style="color:#00DAEF">order_by</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"distance"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> .</span><span style="color:#00DAEF">limit</span><span style="color:#EEF0F9">(limit)</span></span> <span><span style="color:#EEF0F9"> )</span></span> <span> </span> <span><span style="color:#54B9FF;font-style:italic"> if</span><span style="color:#EEF0F9"> cutoff </span><span style="color:#54B9FF">is</span><span style="color:#54B9FF"> not</span><span style="color:#FFD493"> None</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#EEF0F9"> query = query.</span><span style="color:#00DAEF">filter</span><span style="color:#EEF0F9">(distance_expr &lt;= cutoff)</span></span> <span> </span> <span><span style="color:#EEF0F9"> result = </span><span style="color:#54B9FF;font-style:italic">await</span><span style="color:#ACAFFF"> self</span><span style="color:#EEF0F9">.session.</span><span style="color:#00DAEF">execute</span><span style="color:#EEF0F9">(query)</span></span> <span><span style="color:#54B9FF;font-style:italic"> return</span><span style="color:#EEF0F9"> [(row[</span><span style="color:#FFD493">0</span><span style="color:#EEF0F9">], float(row[</span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">])) </span><span style="color:#54B9FF;font-style:italic">for</span><span style="color:#EEF0F9"> row </span><span style="color:#54B9FF;font-style:italic">in</span><span style="color:#EEF0F9"> result.</span><span style="color:#00DAEF">all</span><span style="color:#EEF0F9">()]</span></span></code></pre></figure> <p>The cutoff parameter lets users control precision vs. recall. Lower values (0.3-0.5) return only very similar results. Higher values (0.7-1.0) cast a wider net.</p> <p>Once imported, search is fast. pgvector supports IVFFlat indexing for approximate nearest neighbor search, scaling to millions of vectors without degradation.</p> <h2 id="what-this-enables">What This Enables</h2> <h3 id="example-query-flow">Example Query Flow</h3> <ol> <li>User asks Claude: “What are my warranty rights under German law?”</li> <li>Claude calls <span><code><span><span style="color:#00DAEF">search_legal_texts</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">query</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"warranty rights defect product"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">code</span><span style="color:#EEF0F9">=</span><span style="color:#FFD493">"bgb"</span><span style="color:#EEF0F9">)</span></span></code></span></li> <li>MCP server embeds the query, searches vectors, returns relevant sections</li> <li>Claude synthesizes a response citing § 437, § 439, § 323 BGB</li> </ol> <p>The AI doesn’t need to know German legal structure. It asks in natural language and gets structured results it can reason about.</p> <h3 id="use-cases">Use Cases</h3> <p><strong>Legal research assistance.</strong> “What does German law say about…” questions that would otherwise require knowing which code to search.</p> <p><strong>Compliance checking.</strong> “Does this business practice comply with…” queries that need to find relevant regulations.</p> <p><strong>Public administration.</strong> The repository includes a curated list of 267 legal codes relevant for government work—procurement law, administrative procedure, data protection, and so on.</p> <h2 id="trade-offs-and-limitations">Trade-offs and Limitations</h2> <h3 id="what-this-isnt">What This Isn’t</h3> <p>It’s not legal advice. The system retrieves text; it doesn’t interpret it. Legal interpretation requires understanding context, case law, and scholarly commentary that isn’t in the raw statutes.</p> <p>It’s not comprehensive. Federal law only—no state law, no case law, no EU regulations. Those would require different data sources and parsers.</p> <p>It’s not real-time. You import codes as snapshots. When laws change, you re-import.</p> <h3 id="performance-considerations">Performance Considerations</h3> <p>Initial import is slow. Embedding a large legal code like the BGB involves thousands of API calls to the embedding model. Plan for this during setup, not during queries.</p> <p>Search is fast once indexed. The pgvector IVFFlat index handles similarity search in milliseconds, even with thousands of sections.</p> <p>Local inference trades money for hardware. No API costs, but you need a capable GPU for reasonable import times.</p> <h3 id="why-open-source">Why Open Source</h3> <p>Legal information should be accessible. The data is public; the tooling to use it should be too.</p> <p>Others can extend it. State law, case law, other countries’ legal systems—the pattern (MCP + vector search + domain data) is reusable.</p> <p>The specific implementation matters less than the approach: structure domain knowledge so AI can search it semantically, then expose that capability through a standard protocol.</p> <h2 id="the-pattern">The Pattern</h2> <p>German law is public but not accessible. Semantic search + MCP makes it usable by AI.</p> <p>The same pattern applies anywhere domain expertise gates access to public information. Medical literature. Patent databases. Building codes. Any corpus where keyword search fails because the vocabulary of experts differs from the vocabulary of questions.</p> <p>The repository is at <a href="https://github.com/ayunis-core/ayunis-legal-mcp">github.com/ayunis-core/ayunis-legal-mcp</a>.</p>AIMCPPythonhttps://danielbenner.de/articles/hexagonal-architecture-ai/https://danielbenner.de/articles/hexagonal-architecture-ai/The same structure that makes code maintainable makes it navigable for LLMs.Thu, 20 Nov 2025 00:00:00 GMT<p>The pitch for hexagonal architecture usually centers on testability and flexibility. Swap out your database. Mock your external services. Keep your domain pure.</p> <p>Those arguments are valid. But there’s an underappreciated reason to adopt this pattern: it makes AI coding assistants extremely efficient.</p> <p>I’ve been using Claude and Copilot across various codebases. They’re useful everywhere. But in <a href="https://github.com/ayunis-core/ayunis-core">Ayunis Core</a>—a NestJS backend built on strict hexagonal principles—they’re noticeably faster and more accurate. Less fumbling. Fewer wrong guesses. More code that works on the first try.</p> <p>The structure removes ambiguity. AI spends less time searching for where things live and makes fewer incorrect assumptions about how components interact.</p> <h2 id="hexagonal-architecture-in-60-seconds">Hexagonal Architecture in 60 Seconds</h2> <p>Quick refresher for context.</p> <p><strong>Ports</strong> are interfaces that define what your application needs from the outside world. A repository port defines persistence operations. An email port defines how to send messages.</p> <p><strong>Adapters</strong> implement those interfaces. A PostgreSQL adapter fulfills the repository port. An SMTP adapter fulfills the email port.</p> <p><strong>The domain</strong> sits at the center, containing pure business logic with no knowledge of infrastructure.</p> <p><strong>The dependency rule</strong>: everything points inward. Infrastructure depends on application. Application depends on domain. Never the reverse.</p> <pre class="mermaid">flowchart TB P[Presenters] --&gt; A[Application] A --&gt; D[Domain] I[Infrastructure] --&gt; A I -.-|implements| ports([Ports]) A -.-|defines| ports </pre> <p>That’s the essential mental model.</p> <h2 id="the-ayunis-core-structure">The Ayunis Core Structure</h2> <p>Here’s how this looks in practice. Ayunis Core is a NestJS backend with 1,106 TypeScript files across 47 modules. The structure:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">src</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/ # </span><span style="color:#FFD493">15</span><span style="color:#4BF3C8"> domain</span><span style="color:#4BF3C8"> modules</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">agents</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Example</span><span style="color:#ACAFFF"> module</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Pure</span><span style="color:#4BF3C8"> business</span><span style="color:#4BF3C8"> logic</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Use</span><span style="color:#4BF3C8"> cases</span><span style="color:#EEF0F9"> + </span><span style="color:#4BF3C8">ports</span></span> <span><span style="color:#EEF0F9">│ │ ├── </span><span style="color:#4BF3C8">ports</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ │ └── </span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cases</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">infrastructure</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Adapters</span></span> <span><span style="color:#EEF0F9">│ │ └── </span><span style="color:#4BF3C8">persistence</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">presenters</span><span style="color:#EEF0F9">/ # </span><span style="color:#ACAFFF">HTTP</span><span style="color:#4BF3C8"> layer</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">common</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Cross</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cutting</span><span style="color:#4BF3C8"> infrastructure</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">iam</span><span style="color:#EEF0F9">/ # </span><span style="color:#4BF3C8">Auth</span><span style="color:#EEF0F9"> &amp; </span><span style="color:#4BF3C8">org</span><span style="color:#4BF3C8"> management</span></span></code></pre></figure> <p>Every domain module follows the same four-layer pattern. Every layer has a clear purpose. No exceptions.</p> <p>Some metrics that matter for AI context:</p> <ul> <li>Average domain entity: 67 lines</li> <li>Average use case: 50-100 lines</li> <li>Each use case lives in its own directory with its command/query and tests</li> </ul> <p>Small, focused files. Predictable locations. Explicit contracts everywhere.</p> <h2 id="why-ai-assistants-love-this-structure">Why AI Assistants Love This Structure</h2> <h3 id="the-file-tree-is-documentation">The File Tree Is Documentation</h3> <p>AI can understand the entire system topology from the directory structure alone.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">agents</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cases</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">command</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">case</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">case</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">spec</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></pre></figure> <p>The path <span><code><span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">agents</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cases</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">/</span></span></code></span> tells you exactly what that code does. No searching. No “let me look for where agents are created.” The structure is the documentation.</p> <p>Same principle applies everywhere:</p> <ul> <li><span><code><span><span style="color:#4BF3C8">infrastructure</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">persistence</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">local</span><span style="color:#EEF0F9">/</span></span></code></span> → local database adapter</li> <li><span><code><span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">ports</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> → the contract for agent persistence</li> <li><span><code><span><span style="color:#4BF3C8">presenters</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">dto</span><span style="color:#EEF0F9">/</span></span></code></span> → HTTP request/response shapes</li> </ul> <p>When I ask Claude to add a feature, it reads the directory tree first. In Ayunis Core, that tree provides a complete map. In less structured codebases, the tree is noise—you need to read actual files to understand relationships.</p> <h3 id="small-files-keep-context-lean">Small Files Keep Context Lean</h3> <p>LLMs have context limits. Every token matters. Smaller files mean more relevant code fits in the context window.</p> <p>Compare:</p> <ul> <li><strong>Ayunis Core</strong>: Domain entities average 67 lines. Use cases are single-purpose, 50-100 lines.</li> <li><strong>Typical NestJS</strong>: Service files commonly hit 500+ lines, mixing CRUD operations, business logic, and infrastructure concerns.</li> </ul> <p>When Claude reads <span><code><span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">case</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span>, it gets everything relevant to creating an agent and nothing else. No scrolling past 400 lines of unrelated operations to find the logic that matters.</p> <p>This compounds. When AI can hold more relevant files in context, it reasons better about how they interact.</p> <h3 id="abstract-ports-constrain-the-solution-space">Abstract Ports Constrain the Solution Space</h3> <p>Here’s a port definition from Ayunis Core:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">export</span><span style="color:#54B9FF"> abstract</span><span style="color:#54B9FF"> class</span><span style="color:#ACAFFF"> AgentRepository</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> abstract</span><span style="color:#00DAEF"> create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">agent</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">Promise</span><span style="color:#EEF0F9">&lt;</span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">&gt;;</span></span> <span><span style="color:#54B9FF"> abstract</span><span style="color:#00DAEF"> findOne</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">id</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">UUID</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">userId</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">UUID</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">Promise</span><span style="color:#EEF0F9">&lt;</span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9"> | </span><span style="color:#ACAFFF">null</span><span style="color:#EEF0F9">&gt;;</span></span> <span><span style="color:#54B9FF"> abstract</span><span style="color:#00DAEF"> update</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">agent</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">Promise</span><span style="color:#EEF0F9">&lt;</span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">&gt;;</span></span> <span><span style="color:#54B9FF"> abstract</span><span style="color:#00DAEF"> delete</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">agentId</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">UUID</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">userId</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">UUID</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">Promise</span><span style="color:#EEF0F9">&lt;</span><span style="color:#ACAFFF">void</span><span style="color:#EEF0F9">&gt;;</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>When AI sees this abstract class, it knows exactly what operations exist. It can’t accidentally use a method that doesn’t exist. It can’t hallucinate a <span><code><span><span style="color:#4BF3C8">findByName</span></span></code></span> that was never implemented.</p> <p>The payoff: AI suggests <span><code><span><span style="color:#ACAFFF">this</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">agentRepository</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">)</span></span></code></span> and it’s guaranteed to work. The type system and the port contract together eliminate entire categories of errors.</p> <p>In codebases without clear abstractions, AI frequently suggests methods that don’t exist or calls with wrong signatures. It’s guessing based on common patterns. With explicit ports, there’s nothing to guess.</p> <h3 id="strict-layering-means-predictable-dependencies">Strict Layering Means Predictable Dependencies</h3> <p>The dependency rule isn’t just architectural preference—it’s a constraint AI can observe and follow.</p> <p>When adding a new feature, AI correctly:</p> <ol> <li>Creates the domain entity in <span><code><span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Adds the port in <span><code><span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">ports</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Creates the use case in <span><code><span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cases</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Implements the adapter in <span><code><span><span style="color:#4BF3C8">infrastructure</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Wires everything in the module</li> </ol> <p>It doesn’t try to import TypeORM decorators into a domain entity. It doesn’t call infrastructure code from a use case. The visible structure makes violations obvious.</p> <p>I’ve watched Claude implement features in Ayunis Core with zero guidance on the architecture. It infers the pattern from what exists and follows it. In less structured codebases, the same assistant needs explicit instructions about where to put things—and still makes mistakes.</p> <h3 id="mappers-make-transformations-explicit">Mappers Make Transformations Explicit</h3> <p>Every layer has its own data shapes. Domain entities aren’t the same as database records. DTOs aren’t the same as domain entities. The mappings between them are explicit:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">// Domain ↔ Database</span></span> <span><span style="color:#54B9FF">class</span><span style="color:#ACAFFF"> AgentMapper</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#00DAEF"> toDomain</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">record</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">AgentRecord</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> /* ... */</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#00DAEF"> toRecord</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">agent</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">AgentRecord</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> /* ... */</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic">// Domain ↔ HTTP</span></span> <span><span style="color:#54B9FF">class</span><span style="color:#ACAFFF"> AgentDtoMapper</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#00DAEF"> toDto</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">agent</span><span style="color:#EEF0F9">: </span><span style="color:#ACAFFF">Agent</span><span style="color:#EEF0F9">): </span><span style="color:#ACAFFF">AgentResponseDto</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> /* ... */</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>No magic. No auto-mapping. No implicit conversions that work until they don’t.</p> <p>AI sees exactly what shape data has at each layer. It doesn’t need to guess how a database record becomes a domain entity—the mapper is right there, explicitly named, in a predictable location.</p> <h2 id="a-concrete-example">A Concrete Example</h2> <p>Adding a feature to Ayunis Core with AI assistance.</p> <p><strong>Scenario</strong>: Add “agent templates”—predefined agent configurations users can clone.</p> <p>I describe what I want. Claude:</p> <ol> <li>Reads the <span><code><span><span style="color:#4BF3C8">agents</span><span style="color:#EEF0F9">/</span></span></code></span> module structure</li> <li>Creates <span><code><span><span style="color:#4BF3C8">agent</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">template</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">entity</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> in <span><code><span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Creates <span><code><span><span style="color:#4BF3C8">AgentTemplateRepository</span></span></code></span> port in <span><code><span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">ports</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Creates <span><code><span><span style="color:#4BF3C8">CreateAgentFromTemplate</span></span></code></span> use case</li> <li>Implements <span><code><span><span style="color:#4BF3C8">LocalAgentTemplateRepository</span></span></code></span> in <span><code><span><span style="color:#4BF3C8">infrastructure</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">persistence</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">local</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Adds the controller endpoint in <span><code><span><span style="color:#4BF3C8">presenters</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">/</span></span></code></span></li> <li>Wires the providers in <span><code><span><span style="color:#4BF3C8">agents</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">module</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span></li> </ol> <p>It followed the pattern because the pattern was visible. I didn’t need a prompt explaining hexagonal architecture or a reference document describing where files go. The structure taught the structure.</p> <h2 id="the-trade-offs">The Trade-offs</h2> <p>Being honest: hexagonal architecture has costs.</p> <h3 id="more-files-more-boilerplate">More Files, More Boilerplate</h3> <p>Creating a new use case means at minimum:</p> <ul> <li>The command/query class</li> <li>The use case class</li> <li>A test file</li> <li>Module provider registration</li> </ul> <p>Simple CRUD operations feel over-engineered. For a basic “update user email” feature, you’ll create several files where a single service method might suffice in a simpler architecture.</p> <p>The setup cost is real. Don’t hexagonal-ify a weekend project or a script you’ll run twice.</p> <h3 id="learning-curve">Learning Curve</h3> <p>Developers unfamiliar with the pattern need time. “Where does this go?” is a common question for the first few weeks.</p> <p>But here’s the thing: the structure eventually answers those questions. Once you internalize the four layers and the dependency rule, the answers become obvious. The explicit structure that feels like overhead early becomes self-documenting later.</p> <h3 id="nestjs-friction">NestJS Friction</h3> <p>NestJS wants services. Hexagonal architecture wants use cases. They can coexist, but there’s ceremony:</p> <ul> <li>Abstract classes for ports (to support NestJS DI)</li> <li>Module providers mapping ports to adapters</li> <li>Some awkwardness around request-scoped dependencies</li> </ul> <p>It works. But it’s not what the framework was designed for.</p> <h2 id="getting-started">Getting Started</h2> <p>If you want to try this:</p> <p><strong>Start small.</strong> Pick one module to restructure. Establish the four-layer pattern:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">domain</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">entity</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">application</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ ├── </span><span style="color:#4BF3C8">ports</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ │ └── </span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">cases</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">create</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">├── </span><span style="color:#4BF3C8">infrastructure</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">persistence</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9">│ └── </span><span style="color:#4BF3C8">local</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span> <span><span style="color:#EEF0F9">└── </span><span style="color:#4BF3C8">presenters</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9"> └── </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">/</span></span> <span><span style="color:#EEF0F9"> └── </span><span style="color:#4BF3C8">feature</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">controller</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></pre></figure> <p><strong>Name things consistently:</strong></p> <ul> <li><span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">entity</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> — domain models</li> <li><span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">use</span><span style="color:#EEF0F9">-</span><span style="color:#4BF3C8">case</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> — application logic</li> <li><span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">port</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> or <span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> — abstractions</li> <li><span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">record</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> — database schemas (separate from entities)</li> <li><span><code><span><span style="color:#EEF0F9">*.</span><span style="color:#4BF3C8">mapper</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ts</span></span></code></span> — layer transformations</li> </ul> <p><strong>Add ports for external dependencies.</strong> Any time you’d inject a service that talks to the outside world—database, API, file system—create a port first. Implement the adapter separately.</p> <p><strong>Let it grow organically.</strong> You don’t need to restructure your entire codebase. The pattern pays off module by module.</p> <h2 id="the-argument">The Argument</h2> <p>The traditional case for hexagonal architecture: testability, flexibility, separation of concerns. All valid.</p> <p>The newer case: it maximizes what you get from AI assistants.</p> <p>Structure your code so AI can navigate it efficiently—explicit contracts, small focused files, predictable locations, no magic—and you’ll spend less time correcting its guesses and more time shipping.</p>ArchitectureAIhttps://danielbenner.de/articles/form-validation-go/https://danielbenner.de/articles/form-validation-go/A simple three-step pattern that brings clarity and consistency to your web applications.Sun, 30 Mar 2025 00:00:00 GMT<p>Form validation in Go handlers tends to sprawl. One handler validates immediately, another waits until halfway through the business logic, a third barely validates at all. The inconsistency creates bugs and makes the codebase harder to reason about.</p> <p>The fix is a consistent three-step pattern: Parse → Decode → Validate. Put it at the beginning of every handler, every time.</p> <h2 id="implementation-a-practical-walkthrough">Implementation: A Practical Walkthrough</h2> <h3 id="dtos-as-the-foundation">DTOs as the Foundation</h3> <p>Define a struct for each form. Place it at the top of the handler file - it serves as documentation for what the endpoint accepts:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> taskUpdateForm</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> Title</span><span style="color:#54B9FF"> string</span><span style="color:#FFD493"> `schema:"title" validate:"required,min=1,max=200"`</span></span> <span><span style="color:#4BF3C8"> Status</span><span style="color:#54B9FF"> string</span><span style="color:#FFD493"> `schema:"status" validate:"required,oneof=pending in_progress completed"`</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>The <span><code><span><span style="color:#4BF3C8">schema</span></span></code></span> tags map form field names to struct fields. The <span><code><span><span style="color:#4BF3C8">validate</span></span></code></span> tags enforce constraints: title is required with length limits, status must be one of the allowed values.</p> <h3 id="the-validation-workflow">The Validation Workflow</h3> <h4 id="step-1-parse">Step 1: Parse</h4> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ParseForm</span><span style="color:#EEF0F9">(); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"error parsing form"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Bad request"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Extract form data from the request. Fail early if parsing fails.</p> <h4 id="step-2-decode">Step 2: Decode</h4> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">decoder</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> schema</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewDecoder</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF">var</span><span style="color:#4BF3C8"> form</span><span style="color:#ACAFFF"> taskUpdateForm</span></span> <span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> decoder</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Decode</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">&amp;</span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">PostForm</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"error decoding form"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Bad request"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p><a href="https://github.com/gorilla/schema">Gorilla Schema</a> maps form fields to struct fields, handling type conversions.</p> <h4 id="step-3-validate">Step 3: Validate</h4> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">validate</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> validator</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">New</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> validate</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Struct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"validation error"</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#4BF3C8"> validationErrors</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9">.(</span><span style="color:#ACAFFF">validator</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ValidationErrors</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> make</span><span style="color:#EEF0F9">([]</span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">0</span><span style="color:#EEF0F9">, </span><span style="color:#00DAEF">len</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">validationErrors</span><span style="color:#EEF0F9">))</span></span> <span> </span> <span><span style="color:#54B9FF"> for</span><span style="color:#4BF3C8"> _</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> range</span><span style="color:#4BF3C8"> validationErrors</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> switch</span><span style="color:#4BF3C8"> e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Tag</span><span style="color:#EEF0F9">() {</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#FFD493"> "required"</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"%s is required"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#FFD493"> "oneof"</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"%s must be one of: pending, in_progress, completed"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#54B9FF"> default</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"Invalid value for %s"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">strings</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Join</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">", "</span><span style="color:#EEF0F9">), </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p><a href="https://github.com/go-playground/validator">Go-Playground Validator</a> runs the validation rules from your struct tags. Extract specific error details to return useful messages instead of generic failures.</p> <h3 id="complete-example">Complete Example</h3> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> taskUpdateForm</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> Title</span><span style="color:#54B9FF"> string</span><span style="color:#FFD493"> `schema:"title" validate:"required,min=1,max=200"`</span></span> <span><span style="color:#4BF3C8"> Status</span><span style="color:#54B9FF"> string</span><span style="color:#FFD493"> `schema:"status" validate:"required,oneof=pending in_progress completed"`</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">h </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">HandleTaskUpdate</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> ctx</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Context</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#4BF3C8"> taskID</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> chi</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">URLParam</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"taskID"</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // parse</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ParseForm</span><span style="color:#EEF0F9">(); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"error parsing form"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Bad request"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // decode</span></span> <span><span style="color:#54B9FF"> var</span><span style="color:#4BF3C8"> form</span><span style="color:#ACAFFF"> taskUpdateForm</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">decoder</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Decode</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">&amp;</span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">PostForm</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"error decoding form"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Bad request"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // validate</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">validate</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Struct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> validationErrors</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9">.(</span><span style="color:#ACAFFF">validator</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ValidationErrors</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> make</span><span style="color:#EEF0F9">([]</span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">0</span><span style="color:#EEF0F9">, </span><span style="color:#00DAEF">len</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">validationErrors</span><span style="color:#EEF0F9">))</span></span> <span> </span> <span><span style="color:#54B9FF"> for</span><span style="color:#4BF3C8"> _</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> range</span><span style="color:#4BF3C8"> validationErrors</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> switch</span><span style="color:#4BF3C8"> e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Tag</span><span style="color:#EEF0F9">() {</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#FFD493"> "required"</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"%s is required"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#54B9FF"> case</span><span style="color:#FFD493"> "oneof"</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"%s must be one of: pending, in_progress, completed"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#54B9FF"> default</span><span style="color:#EEF0F9">:</span></span> <span><span style="color:#4BF3C8"> errorMessages</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> append</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">fmt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sprintf</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"Invalid value for %s"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">e</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Field</span><span style="color:#EEF0F9">()))</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">strings</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Join</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">errorMessages</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">", "</span><span style="color:#EEF0F9">), </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // business logic starts here</span></span> <span><span style="color:#4BF3C8"> task</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">taskService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Update</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">ctx</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">taskID</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Title</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">form</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Status</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">log</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Err</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Msg</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"error updating task"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Internal server error"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> render</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">JSON</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">task</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>The structure is always the same: extract context, parse, decode, validate, then business logic. Validation errors never leak into your core logic because invalid requests return early.</p> <h2 id="why-this-works">Why This Works</h2> <p>The pattern does a few things well:</p> <ul> <li><strong>Consistency</strong> - Every handler follows the same structure. Easy to read, easy to modify.</li> <li><strong>Separation</strong> - Validation happens before business logic. Invalid data can’t corrupt state.</li> <li><strong>Testability</strong> - Clear boundaries make unit tests straightforward.</li> </ul> <p>It’s not clever. That’s the point. Simple patterns survive contact with growing codebases.</p>GoWeb Developmenthttps://danielbenner.de/articles/prompt-engineering/https://danielbenner.de/articles/prompt-engineering/A simple structure for system prompts that actually works.Fri, 28 Mar 2025 00:00:00 GMT<p>While building an in-product AI assistant, I went down the prompt engineering rabbit hole. Elaborate role-playing scenarios, complex formatting tricks, instructions so detailed they could pass as legal contracts. Our prompt grew to 2,000 words with nested bullet points three levels deep.</p> <p>The result: the same errors kept happening. Complexity wasn’t solving the fundamental issues.</p> <p>After stripping it back to first principles, a simple four-part structure emerged that worked better than everything we’d tried before:</p> <ol> <li>Context about role and environment</li> <li>Tools and when to use them</li> <li>Common mistakes to avoid</li> <li>General guidelines and boundaries</li> </ol> <p>That’s the entire framework. Here’s how each part works.</p> <h2 id="part-1-context-and-role">Part 1: Context and Role</h2> <p>Orient the AI to its environment and purpose. Answer: What platform is this? Who uses it? What’s the assistant’s role? What problems should it help with?</p> <p>What makes this effective:</p> <p><strong>Factual, not fictional.</strong> Don’t ask the AI to “imagine” it’s something. State reality: “You are the X Assistant, designed to help users do Y.” No elaborate personas.</p> <p><strong>Relevant, not comprehensive.</strong> Don’t explain every feature. Focus on what’s relevant to the assistant’s function.</p> <p><strong>Scope boundaries.</strong> By stating what the assistant helps with, you implicitly define what’s outside scope.</p> <p>Keep this section short—a paragraph of context, 3-4 sentences on supported use cases. Too much detail here is counterproductive. Domain knowledge belongs in tools or a knowledge base, not the system prompt.</p> <h2 id="part-2-tools-and-when-to-use-them">Part 2: Tools and When to Use Them</h2> <p>Most approaches either list tools without context or bury usage guidelines in complex instructions. The key distinction:</p> <ul> <li><strong>Tool definition:</strong> What it does (functionality)</li> <li><strong>System prompt:</strong> When to use it (contextual guidance)</li> </ul> <p>Example tool definition:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F9">Receives resource data as csv file. The output of this tool is the filepath and the csv header.</span></span></code></pre></figure> <p>Same tool in the system prompt:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Use when a user asks about a specific resource to find its ID</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Use to help users find available resources matching certain criteria</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Use to verify if a resource exists before attempting operations on it</span></span></code></pre></figure> <p>The first explains functionality. The second ties it to user scenarios.</p> <p>Without this contextual guidance, the assistant often chose inappropriate tools or failed to use tools when helpful. For example, when asked “Can I book the conference room next Tuesday?”, the assistant would try to create a booking without first checking availability—a clear case for <span><code><span><span style="color:#4BF3C8">GetResourceData</span></span></code></span> followed by <span><code><span><span style="color:#4BF3C8">GetAvailability</span></span></code></span>.</p> <p>Adding contextual usage guidance dramatically improved tool selection. Describe tools not just by what they do, but by the user needs they address.</p> <h2 id="part-3-common-mistakes-to-avoid">Part 3: Common Mistakes to Avoid</h2> <p>A straightforward list of behaviors you’ve observed the assistant doing wrong. Format:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> DON'T [specific behavior]. INSTEAD [correct approach].</span></span></code></pre></figure> <p>Examples:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> DON'T create a booking without checking availability. INSTEAD, use GetAvailability first.</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> DON'T provide generic responses to error reports. INSTEAD, ask for specific error messages.</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> DON'T guess resource IDs or permissions. INSTEAD, use lookup tools to verify.</span></span></code></pre></figure> <p>Why this works:</p> <ul> <li><strong>Direct.</strong> No ambiguity in “DON’T do X.”</li> <li><strong>Specific.</strong> Each item addresses observed behavior, not hypotheticals.</li> <li><strong>Actionable.</strong> Pairing “don’t” with “instead” redirects toward correct approaches.</li> </ul> <p>Issues we struggled to fix through complex prompt adjustments disappeared when explicitly called out in this format. The assistant was guessing at information it didn’t have—we added “DON’T guess how features work, always check the help center first” and the problem vanished.</p> <p>This section grows organically from real usage. Start with 3-4 items addressing the most pressing issues. Ours has grown to about ten.</p> <h2 id="part-4-guidelines-and-boundaries">Part 4: Guidelines and Boundaries</h2> <p>How the assistant should behave across all interactions: tone, boundaries, handling limitations.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Address users formally</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> When uncertain, state limitations rather than guessing</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> If a request falls outside capabilities, explain and offer to connect with support</span></span> <span><span style="color:#4BF3C8">-</span><span style="color:#EEF0F9"> Focus on helpful and accurate over verbose</span></span></code></pre></figure> <p>The critical element: how to handle limitations. Every AI has boundaries. Without explicit guidance, assistants make up answers or overstep their role.</p> <p>Example: our assistant receives questions about municipal regulations that vary by location and change over time. Rather than guess (and provide potentially incorrect information), guidelines instruct it to acknowledge when a question requires specialized knowledge and suggest appropriate resources.</p> <p>This section doesn’t need to be long—5-6 bullet points covering core principles for behavior across all scenarios.</p> <h2 id="why-this-works">Why This Works</h2> <p><strong>Separation of concerns.</strong> Each section addresses one aspect: context, capabilities, pitfalls, behavior. Adding a new tool only touches the tools section. A new mistake only touches the mistakes section.</p> <p><strong>Practical over theoretical.</strong> The “common mistakes” section evolves from observed failures, not hypothetical edge cases.</p> <p><strong>Maintainable.</strong> Clear structure makes it obvious where new information belongs.</p> <p>Results after implementing this:</p> <ul> <li>30% more user requests completed without human intervention</li> <li>60% reduction in incorrect information</li> <li>25% increase in user satisfaction</li> </ul> <p>The simplicity also makes the prompt accessible to the whole team. Customer support notices a problem? They can suggest a specific addition to the mistakes section without needing to understand “prompt engineering.”</p> <h2 id="the-takeaway">The Takeaway</h2> <p>Effective prompting isn’t about complexity—it’s about clarity and structure. Four sections: context, tools, mistakes, guidelines. Update based on observed failures. Keep each section focused on its specific purpose.</p> <p>The best prompt isn’t the one that anticipates every scenario. It’s the one that provides clear guidance and evolves easily as needs change.</p>LLMsAIhttps://danielbenner.de/articles/rbac/https://danielbenner.de/articles/rbac/A lightweight RBAC implementation with no external dependencies.Fri, 21 Mar 2025 00:00:00 GMT<p>Most RBAC implementations are overcomplicated. Hierarchical roles, conditional permissions, attribute-based controls—useful in some contexts, but overkill for many applications.</p> <p>This implementation is minimal: roles and permissions as enums, a map between them, and middleware that checks permissions. No external dependencies. The entire system fits in one file.</p> <h2 id="the-rbac-package">The RBAC Package</h2> <h3 id="roles-and-permissions">Roles and Permissions</h3> <p>Define roles and permissions as typed string constants:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> rbac</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> Role</span><span style="color:#54B9FF"> string</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">r </span><span style="color:#ACAFFF">Role</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">String</span><span style="color:#EEF0F9">() </span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">const</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#ACAFFF"> RoleAdmin</span><span style="color:#ACAFFF"> Role</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "admin"</span></span> <span><span style="color:#ACAFFF"> RoleManager</span><span style="color:#ACAFFF"> Role</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "manager"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> Permission</span><span style="color:#54B9FF"> string</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">p </span><span style="color:#ACAFFF">Permission</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">String</span><span style="color:#EEF0F9">() </span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">p</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">const</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#ACAFFF"> PermissionManageAccess</span><span style="color:#ACAFFF"> Permission</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "manage_access"</span></span> <span><span style="color:#ACAFFF"> PermissionManageReleaseNote</span><span style="color:#ACAFFF"> Permission</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "manage_release_note"</span></span> <span><span style="color:#EEF0F9">)</span></span></code></pre></figure> <h3 id="role-permission-mapping">Role-Permission Mapping</h3> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">// rolePermissions maps roles to their granted permissions</span></span> <span><span style="color:#54B9FF">var</span><span style="color:#4BF3C8"> rolePermissions</span><span style="color:#ACAFFF"> =</span><span style="color:#54B9FF"> map</span><span style="color:#EEF0F9">[</span><span style="color:#ACAFFF">Role</span><span style="color:#EEF0F9">][]</span><span style="color:#ACAFFF">Permission</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> RoleAdmin</span><span style="color:#EEF0F9">: {</span></span> <span><span style="color:#4BF3C8"> PermissionManageAccess</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> PermissionManageReleaseNote</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F9"> },</span></span> <span><span style="color:#4BF3C8"> RoleManager</span><span style="color:#EEF0F9">: {</span></span> <span><span style="color:#4BF3C8"> PermissionManageReleaseNote</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F9"> },</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic">// HasPermission checks if a role has a specific permission</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">r </span><span style="color:#ACAFFF">Role</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">HasPermission</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">p</span><span style="color:#ACAFFF"> Permission</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">bool</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> permissions</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">exists</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> rolePermissions</span><span style="color:#EEF0F9">[</span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">]</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> !</span><span style="color:#4BF3C8">exists</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> false</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#54B9FF"> for</span><span style="color:#4BF3C8"> _</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">permission</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> range</span><span style="color:#4BF3C8"> permissions</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> permission</span><span style="color:#EEF0F9"> == </span><span style="color:#4BF3C8">p</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> true</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> false</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <h3 id="the-middleware">The Middleware</h3> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">// RequirePermission creates middleware that checks if the user has the required permission</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> RequirePermission</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">permission</span><span style="color:#ACAFFF"> Permission</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#54B9FF"> func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">next</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">HandlerFunc</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // Get user role from context (set by auth middleware)</span></span> <span><span style="color:#4BF3C8"> userRole</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">ok</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Context</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">Value</span><span style="color:#EEF0F9">(„</span><span style="color:#4BF3C8">userRole</span><span style="color:#EEF0F9">“).(</span><span style="color:#ACAFFF">Role</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> !</span><span style="color:#4BF3C8">ok</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, „</span><span style="color:#4BF3C8">Unauthorized</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusUnauthorized</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Check if the role has the required permission</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> !</span><span style="color:#4BF3C8">userRole</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">HasPermission</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">permission</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, „</span><span style="color:#4BF3C8">Forbidden</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusForbidden</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // User has permission, proceed to the next handler</span></span> <span><span style="color:#4BF3C8"> next</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ServeHTTP</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> })</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>The middleware extracts the user’s role from the request context (set by auth middleware) and checks if that role has the required permission.</p> <h2 id="using-it-with-chi">Using It with Chi</h2> <h3 id="auth-middleware-integration">Auth Middleware Integration</h3> <p>Your auth middleware needs to add the user’s role to the request context:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#EEF0F98F;font-style:italic">// AuthMiddleware authenticates the user and adds their info to the context</span></span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> AuthMiddleware</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">next</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">HandlerFunc</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // Get token from request (e.g., from cookie or Authorization header)</span></span> <span><span style="color:#4BF3C8"> token</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> getTokenFromRequest</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Validate token and get user info</span></span> <span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> validateToken</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, „</span><span style="color:#4BF3C8">Unauthorized</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusUnauthorized</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Create a new context with the user role</span></span> <span><span style="color:#4BF3C8"> ctx</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> context</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WithValue</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Context</span><span style="color:#EEF0F9">(), „</span><span style="color:#4BF3C8">userRole</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Role</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Call the next handler with the updated context</span></span> <span><span style="color:#4BF3C8"> next</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ServeHTTP</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WithContext</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">ctx</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#EEF0F9"> })</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <h3 id="protecting-routes">Protecting Routes</h3> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> SetupRoutes</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">chi</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Mux</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // Apply authentication middleware to all routes</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Use</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">AuthMiddleware</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Public routes accessible to all authenticated users</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">release</span><span style="color:#54B9FF">-</span><span style="color:#4BF3C8">notes</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ListReleaseNotes</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">profile</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ViewProfile</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Routes that require specific permissions</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Group</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#ACAFFF"> chi</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Router</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // Only users with user management permission can access these routes</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Use</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">rbac</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">RequirePermission</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">rbac</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">PermissionUserManagement</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">users</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ListUsers</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Post</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">users</span><span style="color:#EEF0F9">“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">CreateUser</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Put</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">users</span><span style="color:#54B9FF">/</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">id</span><span style="color:#EEF0F9">}“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">UpdateUser</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Delete</span><span style="color:#EEF0F9">(„</span><span style="color:#54B9FF">/</span><span style="color:#4BF3C8">users</span><span style="color:#54B9FF">/</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">id</span><span style="color:#EEF0F9">}“, </span><span style="color:#4BF3C8">handlers</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DeleteUser</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> })</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Chi’s router groups let you apply RBAC middleware to entire groups of routes. The permission check happens in middleware, so handlers focus solely on business logic.</p> <h3 id="request-flow">Request Flow</h3> <ol> <li>Request hits <span><code><span><span style="color:#4BF3C8">AuthMiddleware</span></span></code></span> → validates token, adds role to context</li> <li>Request hits <span><code><span><span style="color:#4BF3C8">RequirePermission</span></span></code></span> middleware → checks role has permission</li> <li>If permitted, request reaches handler</li> </ol> <p>Clean separation: authentication (who are you?), authorization (what can you do?), business logic (how do we do it?).</p> <h2 id="why-this-works">Why This Works</h2> <ul> <li><strong>Simple.</strong> A few dozen lines, no dependencies.</li> <li><strong>Explicit.</strong> Route definitions show required permissions at a glance.</li> <li><strong>Extensible.</strong> New roles/permissions = update constants and map. Middleware unchanged.</li> </ul> <p>The pattern works with any Go router. Roles, permissions, and middleware-based checks are the core concepts—the specific router doesn’t matter.</p>GoWeb Developmenthttps://danielbenner.de/articles/roll-your-own-auth/https://danielbenner.de/articles/roll-your-own-auth/Authentication isn't magic. Here's how to build it from scratch.Thu, 13 Mar 2025 00:00:00 GMT<p>“Don’t roll your own auth.”</p> <p>The advice exists for good reason—authentication mistakes can be catastrophic. But the warning has morphed into something else: a belief that authentication is inherently complex and best left to third-party services.</p> <p>It isn’t. Most auth libraries require adapting your entire application to their patterns. For standard username/password authentication with sessions, that’s overkill.</p> <p>The core components are straightforward when broken down. Two resources were particularly useful:</p> <ul> <li><a href="https://lucia-auth.com">The Lucia Auth Website</a></li> <li><a href="https://thecopenhagenbook.com">The Copenhagen Book</a></li> </ul> <p>This isn’t about reinventing cryptography. It’s about correctly implementing well-established patterns.</p> <h2 id="core-components">Core Components</h2> <p>An authentication system answers one question: “Are you who you claim to be?” Here’s what that requires:</p> <ul> <li><strong>Password Storage</strong> - Bcrypt hashing. Store the hash, never the password.</li> <li><strong>Secure Random Generation</strong> - Unpredictable tokens for sessions and CSRF.</li> <li><strong>Session Management</strong> - Remember authenticated users across requests.</li> <li><strong>Rate Limiting</strong> - Prevent brute force attacks.</li> <li><strong>CSRF Protection</strong> - Ensure requests originate from your application.</li> <li><strong>Auth Handlers</strong> - Registration and login endpoints.</li> <li><strong>Auth Middleware</strong> - Gate access to protected routes.</li> </ul> <p>Each component has a single responsibility. No monolithic auth service to adapt your application around.</p> <h2 id="password-storage">Password Storage</h2> <p>Never store passwords in plain text. Use bcrypt.</p> <p>Unlike general-purpose hashing (SHA-256), bcrypt is intentionally slow. This makes brute-force attacks computationally expensive. The cost factor is adjustable—increase it as hardware gets faster.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> password</span></span> <span> </span> <span><span style="color:#54B9FF">import</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#FFD493"> "golang.org/x/crypto/bcrypt"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> HashPassword</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">password</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) (</span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> passwordBytes</span><span style="color:#ACAFFF"> :=</span><span style="color:#EEF0F9"> []</span><span style="color:#54B9FF">byte</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">password</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> hashed</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> bcrypt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">GenerateFromPassword</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">passwordBytes</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">bcrypt</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">MinCost</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> ""</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">hashed</span><span style="color:#EEF0F9">), </span><span style="color:#FFD493">nil</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> DoPasswordsMatch</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">hashedPassword</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">test</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">bool</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> bcrypt</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">CompareHashAndPassword</span><span style="color:#EEF0F9">([]</span><span style="color:#54B9FF">byte</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">hashedPassword</span><span style="color:#EEF0F9">), []</span><span style="color:#54B9FF">byte</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">test</span><span style="color:#EEF0F9">)); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> false</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> true</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p><span><code><span><span style="color:#4BF3C8">HashPassword</span></span></code></span> creates the hash at registration. <span><code><span><span style="color:#4BF3C8">DoPasswordsMatch</span></span></code></span> verifies it at login.</p> <h2 id="secure-random-generation">Secure Random Generation</h2> <p>Session tokens need to be unpredictable. Use <span><code><span><span style="color:#4BF3C8">crypto</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">rand</span></span></code></span>, not <span><code><span><span style="color:#4BF3C8">math</span><span style="color:#EEF0F9">/</span><span style="color:#4BF3C8">rand</span></span></code></span>. Standard random functions are predictable if you know the seed—cryptographically secure generators aren’t.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> random</span></span> <span> </span> <span><span style="color:#54B9FF">import</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#FFD493"> "crypto/rand"</span></span> <span><span style="color:#FFD493"> "crypto/sha256"</span></span> <span><span style="color:#FFD493"> "encoding/base32"</span></span> <span><span style="color:#FFD493"> "encoding/hex"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> CreateRandomToken</span><span style="color:#EEF0F9">() </span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> bytes</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> make</span><span style="color:#EEF0F9">([]</span><span style="color:#54B9FF">byte</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">15</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> rand</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Read</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">bytes</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> token</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> base32</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StdEncoding</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">EncodeToString</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">bytes</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> token</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#00DAEF"> EncodeToken</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">token</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> byteId</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sha256</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Sum256</span><span style="color:#EEF0F9">([]</span><span style="color:#54B9FF">byte</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> hex</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">EncodeToString</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">byteId</span><span style="color:#EEF0F9">[:])</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p><span><code><span><span style="color:#4BF3C8">CreateRandomToken</span></span></code></span> generates random bytes and base32-encodes them. <span><code><span><span style="color:#4BF3C8">EncodeToken</span></span></code></span> hashes the token before storage—if someone gets your database, they can’t use the stored session IDs directly.</p> <h2 id="session-management">Session Management</h2> <p>HTTP is stateless. Sessions maintain state across requests by associating a token with user data on the server.</p> <p>The flow:</p> <ol> <li>User logs in successfully</li> <li>Server generates a random session token</li> <li>Server stores user info associated with that token</li> <li>Server sends the token as a cookie</li> <li>Client includes the token in subsequent requests</li> <li>Server validates and retrieves the associated user</li> </ol> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> session</span></span> <span> </span> <span><span style="color:#54B9FF">import</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#FFD493"> "your/project/random"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">service</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">CreateToken</span><span style="color:#EEF0F9">() </span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // create a random token through our random package</span></span> <span><span style="color:#4BF3C8"> token</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> random</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">CreateRandomToken</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> token</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">service</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">CreateSession</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">token</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">userId</span><span style="color:#ACAFFF"> uuid</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">UUID</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // create a new session record from a random token and user id</span></span> <span><span style="color:#4BF3C8"> sessionId</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> hashToken</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> expiresAt</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> calcNextExpiry</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#4BF3C8"> session</span><span style="color:#ACAFFF"> :=</span><span style="color:#ACAFFF"> Session</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">ExternalID</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">sessionId</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">ExpiresAt</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">expiresAt</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">UserID</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">userId</span><span style="color:#EEF0F9">}</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> s</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Save</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">&amp;</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">s </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">service</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">ValidateSession</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">token</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">) (</span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Session</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // returns a session from a token, if there is any</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // and resets the expiry if successful</span></span> <span><span style="color:#4BF3C8"> sessionId</span><span style="color:#ACAFFF"> :=</span><span style="color:#00DAEF"> hashToken</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> s</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FindByExternalId</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">sessionId</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#00DAEF"> sessionIsExpired</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> s</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Delete</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ID</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">s</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">db</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ErrRecordNotFound</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ExpiresAt</span><span style="color:#ACAFFF"> =</span><span style="color:#00DAEF"> calcNextExpiry</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> s</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">repository</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Save</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">nil</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Key details:</p> <ul> <li>Hash the token before storing it. If your database leaks, attackers can’t use the session IDs directly.</li> <li>Sessions expire. Reset expiry on each request so active users stay logged in.</li> <li>Storage can be database, Redis, or in-memory (though in-memory won’t survive restarts).</li> </ul> <h2 id="rate-limiting">Rate Limiting</h2> <p>Without rate limiting, attackers can try thousands of passwords per minute. Rate limiting caps attempts per user/IP within a timeframe.</p> <p>This implementation uses a token bucket algorithm—each identifier gets a bucket that refills over time. Each attempt consumes from the bucket. Empty bucket means wait.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> ratelimit</span></span> <span> </span> <span><span style="color:#54B9FF">import</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#FFD493"> "errors"</span></span> <span><span style="color:#FFD493"> "math"</span></span> <span><span style="color:#FFD493"> "sync"</span></span> <span><span style="color:#FFD493"> "time"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> Bucket</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> count</span><span style="color:#54B9FF"> float64</span></span> <span><span style="color:#4BF3C8"> refilledAt</span><span style="color:#54B9FF"> int64</span></span> <span><span style="color:#4BF3C8"> mu</span><span style="color:#ACAFFF"> sync</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Mutex</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">b </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Bucket</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">consume</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">cost</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">maxValue</span><span style="color:#54B9FF"> float64</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">refillIntervalMillis</span><span style="color:#54B9FF"> int64</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">bool</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // lock the bucket</span></span> <span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">mu</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Lock</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF"> defer</span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">mu</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Unlock</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // calculate refill until now &amp; refill bucket</span></span> <span><span style="color:#4BF3C8"> now</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> time</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Now</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">UTC</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">UnixMilli</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#4BF3C8"> refill</span><span style="color:#ACAFFF"> :=</span><span style="color:#54B9FF"> float64</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">now</span><span style="color:#54B9FF">-</span><span style="color:#4BF3C8">b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">refilledAt</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">/</span><span style="color:#54B9FF"> float64</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">refillIntervalMillis</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8"> maxValue</span></span> <span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">count</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> math</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Min</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">count</span><span style="color:#54B9FF">+</span><span style="color:#4BF3C8">refill</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">maxValue</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">refilledAt</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> now</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // deduct cost if possible</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">count</span><span style="color:#EEF0F9"> &gt;= </span><span style="color:#4BF3C8">cost</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> b</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">count</span><span style="color:#ACAFFF"> -=</span><span style="color:#4BF3C8"> cost</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> true</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> false</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Each email address and IP address gets its own bucket. Check capacity by attempting to deduct:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> TokenBucketRateLimit</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> refillIntervalMillis</span><span style="color:#54B9FF"> int64</span></span> <span><span style="color:#4BF3C8"> maxValue</span><span style="color:#54B9FF"> float64</span></span> <span><span style="color:#4BF3C8"> buckets</span><span style="color:#54B9FF"> map</span><span style="color:#EEF0F9">[</span><span style="color:#54B9FF">string</span><span style="color:#EEF0F9">]</span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Bucket</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">tbr </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">TokenBucketRateLimit</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Deduct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">bucketLabel</span><span style="color:#54B9FF"> string</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">cost</span><span style="color:#54B9FF"> float64</span><span style="color:#EEF0F9">) </span><span style="color:#54B9FF">error</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> now</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> time</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Now</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">UTC</span><span style="color:#EEF0F9">().</span><span style="color:#00DAEF">UnixMilli</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // check if the label already has a bucket</span></span> <span><span style="color:#4BF3C8"> bucket</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">ok</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> tbr</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">buckets</span><span style="color:#EEF0F9">[</span><span style="color:#4BF3C8">bucketLabel</span><span style="color:#EEF0F9">]</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#EEF0F9"> !</span><span style="color:#4BF3C8">ok</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // no bucket yet -&gt; create one, then deduct again</span></span> <span><span style="color:#4BF3C8"> bucket</span><span style="color:#ACAFFF"> :=</span><span style="color:#ACAFFF"> Bucket</span><span style="color:#EEF0F9">{</span><span style="color:#4BF3C8">count</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">tbr</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">maxValue</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">refilledAt</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">now</span><span style="color:#EEF0F9">}</span></span> <span><span style="color:#4BF3C8"> tbr</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">buckets</span><span style="color:#EEF0F9">[</span><span style="color:#4BF3C8">bucketLabel</span><span style="color:#EEF0F9">] </span><span style="color:#ACAFFF">=</span><span style="color:#54B9FF"> &amp;</span><span style="color:#4BF3C8">bucket</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> tbr</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Deduct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">bucketLabel</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">cost</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // bucket exists -&gt; consume</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> ok</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> bucket</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">consume</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">cost</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">tbr</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">maxValue</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">tbr</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">refillIntervalMillis</span><span style="color:#EEF0F9">); !</span><span style="color:#4BF3C8">ok</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> errors</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">New</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"rate limit reached"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> return</span><span style="color:#FFD493"> nil</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>The bucket approach allows brief bursts (mistyped passwords) while blocking sustained attacks.</p> <h2 id="csrf-protection">CSRF Protection</h2> <p>CSRF attacks trick authenticated users into submitting requests they didn’t intend. Your browser automatically includes session cookies, so a malicious site can submit forms to your app on behalf of logged-in users.</p> <p>The common fix is CSRF tokens in forms. A simpler alternative: check the <span><code><span><span style="color:#4BF3C8">Origin</span></span></code></span> header.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">if</span><span style="color:#4BF3C8"> request</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Method</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">"GET"</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> originHeader</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Header</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"Origin"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> originHeader</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">"https://yourapp.com"</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> w</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WriteHeader</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">403</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>This works when state-changing operations are restricted to POST/PUT/PATCH. For more complex scenarios, use proper CSRF tokens.</p> <h2 id="registration-and-login-handlers">Registration and Login Handlers</h2> <p>These handlers bring all the components together.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> handler</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic">// !! logging, error handling and validation</span></span> <span><span style="color:#EEF0F98F;font-style:italic">// left out for brevity and focus</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> registerForm</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> Email</span><span style="color:#54B9FF"> string</span></span> <span><span style="color:#4BF3C8"> Password</span><span style="color:#54B9FF"> string</span></span> <span><span style="color:#4BF3C8"> ConfirmPassword</span><span style="color:#54B9FF"> string</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic">// allow 5 requests per minute</span></span> <span><span style="color:#54B9FF">var</span><span style="color:#4BF3C8"> registerRateLimiter</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> ratelimit</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">New</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">60</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">5</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">h </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">HandleRegister</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> userService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#4BF3C8"> sessionService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ParseForm</span><span style="color:#EEF0F9">(); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error parsing form"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> req</span><span style="color:#ACAFFF"> :=</span><span style="color:#ACAFFF"> registerForm</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> Email</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FormValue</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"email"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#4BF3C8"> Password</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FormValue</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"password"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#4BF3C8"> ConfirmPassword</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FormValue</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"confirm"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // check rate limit</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> registerRateLimiter</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Deduct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Email</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Too many requests. Please try again later."</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusTooManyRequests</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> registerRateLimiter</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Deduct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">OrgName</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Too many requests. Please try again later."</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusTooManyRequests</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // check password guidelines</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> password</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">IsValidPassword</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Password</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(), </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // check if passwords match</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Password</span><span style="color:#EEF0F9"> != </span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ConfirmPassword</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Passwords do not match"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // check if user already exists</span></span> <span><span style="color:#4BF3C8"> existing</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> userService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">GetByEmail</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Email</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> &amp;&amp; !</span><span style="color:#4BF3C8">errors</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Is</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ErrRecordNotFound</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error creating user"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> existing</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"User already exists"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // create user</span></span> <span><span style="color:#4BF3C8"> pwHash</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> password</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">HashPassword</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Password</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> userService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Email</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">pwHash</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error creating user"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // create session</span></span> <span><span style="color:#4BF3C8"> token</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sessionService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">CreateToken</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sessionService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ID</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error creating session"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> w</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WriteHeader</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusCreated</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Registration validates input, checks for existing users, hashes the password, creates the user, and starts a session.</p> <p>Login handler:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> handler</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic">// !! logging, error handling and validation</span></span> <span><span style="color:#EEF0F98F;font-style:italic">// left out for brevity and focus</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> loginForm</span><span style="color:#54B9FF"> struct</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> Email</span><span style="color:#54B9FF"> string</span></span> <span><span style="color:#4BF3C8"> Password</span><span style="color:#54B9FF"> string</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span> <span><span style="color:#54B9FF">var</span><span style="color:#4BF3C8"> loginRateLimiter</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> ratelimit</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">New</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">60</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">5</span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">h </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">HandleLogin</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> userService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#4BF3C8"> sessionService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span> </span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ParseForm</span><span style="color:#EEF0F9">(); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error parsing form"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusBadRequest</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> req</span><span style="color:#ACAFFF"> :=</span><span style="color:#ACAFFF"> loginForm</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> Email</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FormValue</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"email"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#4BF3C8"> Password</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">FormValue</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"password"</span><span style="color:#EEF0F9">),</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // Check rate limit</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> loginRateLimiter</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Deduct</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Email</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">1</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Too many login attempts. Please try again later."</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusTooManyRequests</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // validate credentials</span></span> <span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> userService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">GetByEmail</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Email</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> errors</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Is</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ErrRecordNotFound</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Wrong credentials"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusUnauthorized</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error accessing user"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> match</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> password</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">DoPasswordsMatch</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Password</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">req</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Password</span><span style="color:#EEF0F9">); !</span><span style="color:#4BF3C8">match</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Wrong credentials"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusUnauthorized</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // create session</span></span> <span><span style="color:#4BF3C8"> token</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sessionService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">CreateToken</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sessionService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Create</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ID</span><span style="color:#EEF0F9">); </span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error creating session"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#EEF0F98F;font-style:italic"> // set session cookie</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">SetCookie</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">&amp;</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Cookie</span><span style="color:#EEF0F9">{</span></span> <span><span style="color:#4BF3C8"> Name</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">AuthCookieName</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> Value</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">token</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> HttpOnly</span><span style="color:#EEF0F9">: </span><span style="color:#FFD493">true</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#4BF3C8"> SameSite</span><span style="color:#EEF0F9">: </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">SameSiteStrictMode</span><span style="color:#EEF0F9">,</span></span> <span><span style="color:#EEF0F9"> })</span></span> <span> </span> <span><span style="color:#4BF3C8"> w</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WriteHeader</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusOK</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9">}</span></span></code></pre></figure> <p>Note the error handling: don’t tell users whether the email exists or the password is wrong—just “wrong credentials.” This prevents username enumeration.</p> <h2 id="auth-middleware">Auth Middleware</h2> <p>Middleware gates access to protected routes. Extract the session token, validate it, attach user info to the request context.</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#54B9FF">package</span><span style="color:#ACAFFF"> mw</span></span> <span> </span> <span><span style="color:#54B9FF">type</span><span style="color:#ACAFFF"> contextKey</span><span style="color:#54B9FF"> string</span></span> <span> </span> <span><span style="color:#54B9FF">const</span><span style="color:#EEF0F9"> (</span></span> <span><span style="color:#ACAFFF"> SessionIdKey</span><span style="color:#ACAFFF"> contextKey</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "sessionId"</span></span> <span><span style="color:#ACAFFF"> UserIDKey</span><span style="color:#ACAFFF"> contextKey</span><span style="color:#ACAFFF"> =</span><span style="color:#FFD493"> "userId"</span></span> <span><span style="color:#EEF0F9">)</span></span> <span> </span> <span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9"> (</span><span style="color:#4BF3C8;font-style:italic">h </span><span style="color:#54B9FF">*</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#00DAEF">Authenticate</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">next</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9">) </span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Handler</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> sessionService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span><span style="color:#4BF3C8"> userService</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewService</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">*</span><span style="color:#4BF3C8">user</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">NewRepository</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">))</span></span> <span> </span> <span><span style="color:#54B9FF"> return</span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">HandlerFunc</span><span style="color:#EEF0F9">(</span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">w</span><span style="color:#ACAFFF"> http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">ResponseWriter</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#54B9FF"> *</span><span style="color:#ACAFFF">http</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Request</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#EEF0F98F;font-style:italic"> // get session cookie</span></span> <span><span style="color:#4BF3C8"> cookie</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Cookie</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"&lt;cookie-key&gt;"</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Redirect</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"/login"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusSeeOther</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> authToken</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> cookie</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Value</span></span> <span> </span> <span><span style="color:#4BF3C8"> session</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> sessionService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ValidateSession</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">authToken</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> errors</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Is</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">err</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">h</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">DB</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ErrRecordNotFound</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Redirect</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"/login"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusSeeOther</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error validating session"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> user</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">err</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> userService</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">UserID</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> if</span><span style="color:#4BF3C8"> err</span><span style="color:#EEF0F9"> != </span><span style="color:#FFD493">nil</span><span style="color:#EEF0F9"> {</span></span> <span><span style="color:#4BF3C8"> http</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Error</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#FFD493">"Error getting user"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">http</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">StatusInternalServerError</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#54B9FF"> return</span></span> <span><span style="color:#EEF0F9"> }</span></span> <span> </span> <span><span style="color:#4BF3C8"> ctx</span><span style="color:#ACAFFF"> :=</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Context</span><span style="color:#EEF0F9">()</span></span> <span><span style="color:#4BF3C8"> ctx</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> context</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WithValue</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">ctx</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">SessionIdKey</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">ID</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">String</span><span style="color:#EEF0F9">())</span></span> <span><span style="color:#4BF3C8"> ctx</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> context</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WithValue</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">ctx</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">UserIDKey</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">session</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">UserID</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">String</span><span style="color:#EEF0F9">())</span></span> <span> </span> <span><span style="color:#4BF3C8"> r</span><span style="color:#ACAFFF"> =</span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">WithContext</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">ctx</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#4BF3C8"> next</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">ServeHTTP</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">w</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9"> })</span></span> <span><span style="color:#EEF0F9">}</span></span> <span> </span></code></pre></figure> <p>Apply it to any route:</p> <figure><pre tabindex="0"><code style="display:grid"><span><span style="color:#4BF3C8">r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">With</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8">mwHandler</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">Authenticate</span><span style="color:#EEF0F9">).</span><span style="color:#00DAEF">Route</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"/dashboard"</span><span style="color:#EEF0F9">, </span><span style="color:#54B9FF">func</span><span style="color:#EEF0F9">(</span><span style="color:#4BF3C8;font-style:italic">r</span><span style="color:#ACAFFF"> chi</span><span style="color:#EEF0F9">.</span><span style="color:#ACAFFF">Router</span><span style="color:#EEF0F9">) {</span></span> <span><span style="color:#4BF3C8"> r</span><span style="color:#EEF0F9">.</span><span style="color:#00DAEF">Get</span><span style="color:#EEF0F9">(</span><span style="color:#FFD493">"/"</span><span style="color:#EEF0F9">, </span><span style="color:#4BF3C8">handler</span><span style="color:#EEF0F9">.</span><span style="color:#4BF3C8">HandleDashboard</span><span style="color:#EEF0F9">)</span></span> <span><span style="color:#EEF0F9">})</span></span></code></pre></figure> <p>Authentication tells you who the user is. Authorization (checking roles/permissions) tells you what they can do—a separate concern.</p> <h2 id="when-to-roll-your-own">When to Roll Your Own</h2> <p>Roll your own when:</p> <ul> <li>Standard username/password with sessions is enough</li> <li>You want full control and minimal dependencies</li> <li>You have time to implement it correctly</li> </ul> <p>Use an existing solution when:</p> <ul> <li>You need MFA, social logins, or enterprise SSO</li> <li>You’re on a tight deadline</li> <li>Security expertise on the team is limited</li> </ul> <h2 id="the-tradeoffs">The Tradeoffs</h2> <p>Rolling your own means owning security updates and edge cases (password resets, account recovery, session invalidation across devices). Third-party auth means adapting to their patterns and depending on their uptime.</p> <p>Neither choice is universally right. For standard auth requirements, building it yourself is simpler than the conventional wisdom suggests. The complexity isn’t in the implementation—it’s in not skipping steps.</p>GoWeb Developmenthttps://danielbenner.de/articles/nextjs-to-golang/https://danielbenner.de/articles/nextjs-to-golang/Why I rewrote a side project from NextJS/Supabase to Go, and what I learned.Sun, 09 Mar 2025 00:00:00 GMT<p>I built a side project—in-product release notes—with NextJS and Supabase. Development was smooth. Production was not.</p> <p>Pages that loaded instantly in dev took seconds in production. Before I’d even launched, I hit Vercel’s image processing limits and Supabase’s edge function ceiling. The “lightweight” side project was heading toward €50/month in hosting costs.</p> <p>So I rewrote it: Go with HTML templates, HTMX, and Alpine, hosted on a €5/month VPS. I also built authentication from scratch.</p> <p>This wasn’t because NextJS and Supabase are bad—they’re not. They just weren’t right for this project. The performance issues and unexpected costs were the practical reasons. Curiosity about Go was the other reason.</p> <h2 id="learning-go">Learning Go</h2> <p>Resources that worked well, in order:</p> <ul> <li><a href="https://go.dev/tour/welcome/1">A Tour of Go</a></li> <li><a href="https://gobyexample.com">Go by Example</a></li> <li><a href="https://go.dev/doc/code">How to Write Go Code</a></li> <li><a href="https://go.dev/doc/effective_go">Effective Go</a></li> </ul> <p>Go’s directness was immediately apparent. Where JavaScript offers a dozen ways to do the same thing, Go typically presents one or two. This felt constraining at first, then liberating. The emphasis on “idiomatic” patterns—one right way to do things—made the language easy to pick up.</p> <h2 id="rolling-my-own-auth">Rolling my own auth</h2> <p>Supabase Auth’s abstractions made debugging painful. So I built authentication from scratch.</p> <p>Two resources made this straightforward:</p> <ul> <li><a href="https://lucia-auth.com">Lucia Auth</a></li> <li><a href="https://thecopenhagenbook.com">The Copenhagen Book</a></li> </ul> <p>The implementation: a session service, authentication middleware, rate limiting, and CSRF protection. More work than using a provider, but when something breaks, I know exactly where to look. I wrote more about this in <a href="https://danielbenner.de/articles/roll-your-own-auth">Rolling Your Own Authentication in Go</a>.</p> <h2 id="project-structure">Project structure</h2> <p>In NextJS, client and server code blur together. In Go, the boundaries are clear: receive request, process, return response.</p> <p>Standard structure:</p> <ul> <li>Handlers (HTTP requests)</li> <li>Services (business logic)</li> <li>Repositories (database)</li> <li>Models (data structures)</li> <li>Templates (HTML)</li> </ul> <p>Libraries: <a href="https://github.com/go-chi/chi">Chi</a> for routing, <a href="https://github.com/go-playground/validator">validator</a> for validation, <a href="https://github.com/gorilla/schema">Gorilla schema</a> for form handling.</p> <p>A <a href="https://danielbenner.de/articles/form-validation-go">consistent pattern emerged</a> for handlers: parse → decode → validate → business logic → response.</p> <p>The hardest part was replacing React’s component model with Go templates. No state management, no component abstraction—just template partials and inheritance. It forced me to think differently about UI structure.</p> <h2 id="what-surprised-me">What surprised me</h2> <p><strong>Speed.</strong> The first time I loaded the Go version, I thought it was broken—pages appeared so fast I assumed they hadn’t loaded. A dynamic app with auth, database queries, and business logic, responding instantly. I knew static sites could be fast. I didn’t expect this from a full application.</p> <p><strong>Simplicity.</strong> In NextJS, I was constantly thinking about client vs server components, server actions, data fetching strategies, client/server state interplay. In Go: receive request, process, return response. Debugging got easier. Development got faster.</p> <p><strong>AI compatibility.</strong> Go’s consistency made AI tools significantly more reliable. Point an LLM at a Go handler, ask it to create another one in the same style—it works almost every time. The lack of abstraction layers means less for the model to misunderstand.</p> <h2 id="on-abstractions">On abstractions</h2> <p>Implementing features in Go—routing → parsing → validation → business logic → templates—made something clear: this is what NextJS does under the hood, just with layers of abstraction on top.</p> <p>Client components, server components, server actions, hooks, context, reducers—they’re abstractions over request-response. Powerful for large teams building complex applications. Overkill for many projects.</p> <p>Go templates have real limitations. No component model, no state management. Some interactions are harder to build. But the constraint forced me to understand web fundamentals more deeply—browser events, form submissions, AJAX—knowledge that transfers regardless of framework.</p> <p>Not everything in Go-land is perfect. GORM (the ORM I used) occasionally behaved in surprising ways. Sometimes I wished I’d just written raw SQL.</p> <p>Will I use React again? Yes—it’s the right tool for certain projects. But I’ll be more critical about whether its abstractions solve problems I actually have.</p> <h2 id="the-result">The result</h2> <p>The Go version is faster, cheaper (€5/month vs €50+), more maintainable, and easier to debug. When something breaks, I know where to look.</p> <p>The migration started as a practical fix for performance and cost problems. It became a useful reminder that simpler tools often work better—and that understanding what happens beneath the abstractions makes you better at using them.</p>GoNextJSWeb Development