Hacker News new | past | comments | ask | show | jobs | submit | waspight's comments login

How will this affect companies in a technical aspect? Just no more e2e encryption available in the clients? Or will it be some kind of weird e2e with a backdoor (which is not how encryption works)…


That openstreetmap data was just what I needed, thanks!


I might be migrating to using Revenuecat and I am curious about one thing. I have in app subscriptions in iOS and Android. I plan to add Stripe into this mix as well at some point and I wonder if you handle the case when users jump from subscriptions in one platform to another.

I would like to move certain users (for instance by recommending that in a newsletter, or handing out coupons for the Stripe subscription) from their current iOS subscription to Stripe, and it is hard to make the overlap smooth. Does Revenuecat have some solution to this?


Hi! We’d love to have you.

For this particular case it’s tricky on iOS since you can’t programmatically cancel a subscription on iOS. It must be initiated by the customer on the device.

However, if you navigate that UX challenge, you can use our events and webhooks to make a smooth experience guiding a user through the process. Hadn’t thought of this before, but you could probably pre-authorize a stripe token, then ask them to cancel on iOS, then wait for the webhook from us, then finish the transaction and track it to the same customer ID in RevenueCat.


Alright, I might try it out. When the user cancel iOS the subscription is still payed and valid until the month ends probably. I guess one could delay the Stripe period the same amount of days or something.


I have thought about this relative rating as well. Would it be possible to use? I mean, does it scale? I also have seen some ratings where you can only rate between 5 - 10, I guess since no one ever rates below 5 anyway. I think it kind of works.


This is how I intend of doing it. I am more curious of how I could place the ads in the app to make them blend in as much as possible.


I'm not sure you necessarily want them to blend in, per se. You don't want to make them garishly designed, but you still should clearly show that it's an ad.


I only use uuid as PK in Postgres. So many benefits, it is easy to migrate data between environments, client can generate its own ids etc.

I don’t know about performance but I think in most cases that is not a big concern anyway.


Why don’t they just stick to mini series? Best invention since the movies imo.


I use last pass username generator


I wish 1Password had this. I usually just try to think of random words.

(Tangentially, are you not concerned about the Last Pass breach?)


They have it on their website, no account needed:

https://www.lastpass.com/features/username-generator


I am a 1Password user as well. As mentioned in another comment, the last pass username generator is possible to use without an account on their website.

So no, I am not concerned :)


+1. You can still use the PW generator to achieve this but it’s a bit clunky.


Because you never reach any goals that get verified if you develop for security. It is like you only getting punished if the security is weak (you get exploited), but you never know if the security you implemented actually prevented a threat. So there is no real rewards.

Would be interesting to know if there is some kind of reward model out there that solves this.


Said every customer


I've seen a couple sites that do this. One of them just asks for the square root of -1!

And sure, qntm.org isn't nearly as big a website as HN, but I concur that this isn't likely to be super-difficult. The wide use of recaptcha seems like mostly laziness; most websites aren't big enough to get targeted attacks.


Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: