ようこそ
Sazokashi ソフトウェア & コンサルティング

A Comprehensive Testing Strategy: Unit, End-to-End, and Load Testing

How to build a practical testing pyramid with isolated unit tests, seeded end-to-end flows, and load testing that enforces performance thresholds before release.

Cost-Safe Security Hardening for Public Edge Deployments

A practical look at how to reduce bot abuse, limit cost-amplification risk, and add emergency shutdown controls to a public web deployment without overcomplicating the stack.

Defense in Depth: Layered Rate Limiting and Security Hardening for Production APIs

How to combine edge filtering, reverse proxy controls, application rate limiting, request sanitization, CSRF protection, challenge-based bot checks, and safe logging into a practical layered defense model.

Containerizing the Application Layer with Docker and Compose

A practical breakdown of multi-container application design, network segmentation, health checks, resource limits, and environment-aware Compose workflows.

Railway-Oriented Programming and Functional Pipeline Composition in Node.js

How composable sync and async pipelines can replace long imperative route handlers, improve testability, and make server-side flows easier to reason about.

In-Memory Caching and Strategic Denormalization for Document Database Performance

How to combine startup-time lookup maps, denormalized visibility flags, cache invalidation, and aggregation pipelines to remove expensive joins from hot API paths.

Multi-Currency Payment Architecture for Subscriptions and One-Time Purchases

How to design a payment system that handles multiple currencies, recurring and one-time plans, entitlement updates, caching, and operational safety around live billing.

Why Nginx Still Matters in Multi-Container Deployments

A practical guide to using Nginx as a reverse proxy in a multi-container architecture to reduce public attack surface, isolate services, and enforce HTTP policy before requests reach application code.

Building a Custom OAuth2 Server with Cookie and Header-Based Authentication

How to implement a custom OAuth2 storage model, scope-based access control, browser/mobile authentication strategies, and CSRF protection without relying on a hosted auth vendor.

Security Response Headers That Actually Matter

A beginner-friendly guide to the browser security headers worth knowing, what each one does, why they matter, and how they work together in a production web app.

Self-Hosted CI/CD, Container Orchestration, and Zero-Downtime Deployment

How to build a self-hosted deployment pipeline with dedicated runners, isolated end-to-end environments, multi-stage container builds, backup automation, and safer production releases.

SSL Termination, Cloudflare, and Why a Second TLS Hop Is Worth It

A beginner-friendly guide to using Cloudflare in front of a custom Nginx server with TLS on both hops, real client IP restoration, and safer origin protection.

Tokenized Video Embeds and Basic Anti-Piracy Controls for Streaming Applications

How expiring embed tokens, playback authorization, and lightweight DRM-style controls can raise the cost of casual video theft without pretending piracy can be eliminated entirely.