2025-11-046 min
Designing Session Cookies That Don't Leak
A field report on building Better-Auth sessions with HTTP-only cookies, rotating tokens, and a cache layer that survives deploys.
- #better-auth
- #cookies
v1.0.0 · online
&
Hey, I'm hocein — a Full-Stack Developer & Linux SysAdmin shipping Next.js/TypeScript apps backed by Go API routes, Prisma + PostgreSQL, and Better-Auth sessions that don't leak.
whoami.sh
hocein@dev:~$ whoami
hocein
hocein@dev:~$ echo $STACKnext · ts · tailwind · go · prisma · postgres · better-auth
hocein@dev:~$ // try it · type 'help'
hocein@portfolio · interactive shell
hocein-shell v2.0 · type 'help' to list commands
hocein@portfolio:~$
// 01 · about
who is hocein?
I'm a software developer with a strong passion for the Next.js ecosystem (TypeScript + Tailwind), Go-powered API routes, and database orchestration via Prisma across SQLite, MySQL, and PostgreSQL.
I obsess over auth done right — Better-Auth sessions, HTTP-only cookies, and caching layers that keep REST endpoints fast without leaking state.
- stack pillars
- 5+
- servers tamed
- 30+
- coffee.lock
- held
bio.sh
hocein@dev:~$ ./bio.sh --verbose
> [ok] loading developer profile...
> name : hocein
> role : Full-Stack Dev / Linux SysAdmin
> loves : Next.js, TS, Tailwind, Go, Prisma, Better-Auth
> currently : tuning REST APIs, session cookies & cache layers
> philosophy : ship neat, configure deeply, document later
> [done] exit 0
htop · hocein.brain
live- CPU· Optimizing Next.js Hydration26%
- RAM· Caching StudyHall Seating Maps49%
- NET· Rotating Better-Auth session cookies06%
load: 0.42 0.31 0.27
tasks: 128
uptime: ∞
// 02 · articles
tech poetry & dev logs
Half terminal-confessions, half field notes from production.
2025-10-188 min
The Magic of Next.js App Router Optimization
Server components, partial prerendering, and the small dance of streaming UI without paying for hydration twice.
- #next
- #perf
2025-09-305 min
Prisma Migrations Without Tears
A safe playbook for shadow databases, expand-and-contract schemas, and rollbacks you'll actually trust.
- #prisma
- #db
// 03 · projects
things i've shipped
./deploy-orchestrator
wipTiny Go service that watches git tags, rebuilds container images, and rolls them out behind a REST gateway.
- Go
- REST API
- Git
./prisma-audit-log
liveOpen-source Prisma extension that streams diffed mutations into an append-only audit table.
- Prisma
- TypeScript
- OSS
./better-auth-kit
archivedDrop-in Better-Auth starter with HTTP-only cookie sessions, edge cache, and Prisma adapters for Postgres & MySQL.
- Better-Auth
- Next.js
- Prisma
// 04 · uses
the setup
Hardware, OS, and software I actually reach for. No affiliate links, just opinions.
## OS & Environment
hocein@dev:~$ uname -a- ▸Linux Server Administration
- ▸Ubuntu 22.04 LTS
- ▸Git + GitHub CLI
## Web & Frontend
hocein@dev:~$ ls ~/web- ▸Next.js
- ▸Tailwind CSS
- ▸TypeScript
## Backend & API
hocein@dev:~$ ls ~/api- ▸Go (Golang)
- ▸REST API Routes
- ▸Better-Auth · Sessions · Cookies
## Database & Cache
hocein@dev:~$ ls ~/db- ▸Prisma ORM
- ▸PostgreSQL / MySQL / SQLite
- ▸Edge KV · Cache Layers
// 05 · contact
open a socket
Got an idea, a server on fire, or just want to nerd out? Drop a message.
// or reach out on
tip · I usually reply within 24h. If urgent, ping on Telegram.