Update experience to add Booking.com

Author: chapmankyle

public/static/booking-logo.jpg

@@ -15,16 +15,34 @@
     "github": "https://github.com/chapmankyle"
   },
   "experience": [
+    {
+      "id": 7,
+      "dateAsString": "2025-07-01",
+      "startDate": "Jul 2025",
+      "endDate": "present",
+      "title": "Full Stack Software Engineer I",
+      "type": "Full-time",
+      "company": "Booking.com B.V.",
+      "imagePath": "/static/booking-logo.jpg",
+      "technologies": ["TypeScript", "Node.js", "React", "Java", "Spring Boot", "Perl"],
+      "location": {
+        "flag": "🇳🇱",
+        "name": "Amsterdam, Netherlands"
+      }
+    },
     {
       "id": 6,
-      "dateAsString": "2024-04-01",
       "startDate": "Apr 2024",
-      "endDate": "present",
+      "endDate": "Jun 2025",
+      "duration": {
+        "years": 1,
+        "months": 3
+      },
       "title": "Full Stack Engineer",
       "type": "Full-time",
       "company": "Zilverline B.V.",
       "imagePath": "/static/zilverline-logo.jpg",
-      "description": "I am part of a team that is developing a **multi-tenant, e-commerce platform** that facilitates buying products from a **range of shops**. Supports **various payment methods** (iDEAL, Klarna, etc.) product returns, order tracking (DHL & PostNL), promotions, coupon codes, and more.\n\nSome of my responsibilities are:\n- **Development**: 50% frontend / 40% backend / 10% maintenance\n- **Shop onboarding overhaul** to increase the number of shops onboarded\n- Dashboard **UI/UX** updates to make it easier for shop owners to find the information they need\n- **Prompt engineering** using OpenAI models to **automatically generate** product descriptions, about pages and more\n- **Production** deployments\n- Performing **code reviews**",
+      "description": "I was part of a team that was developing a **multi-tenant, e-commerce platform** that facilitated buying products from a **range of shops**. It supported **various payment methods** (iDEAL, Klarna, etc.) product returns, order tracking (DHL & PostNL), promotions, coupon codes, and more.\n\nSome of my responsibilities were:\n- **Development**: 50% frontend / 40% backend / 10% maintenance\n- **Shop onboarding overhaul** to increase the number of shops onboarded\n- Dashboard **UI/UX** updates to make it easier for shop owners to find the information they need\n- **Prompt engineering** using OpenAI models to **automatically generate** product descriptions, about pages and more\n- **Production** deployments\n- Performing **code reviews**",
       "technologies": ["Ruby on Rails", "JavaScript", "Stimulus", "Bootstrap", "Node.js", "PostgreSQL", "GitHub Actions"],
       "location": {
         "flag": "🇳🇱",

src/data.json

@@ -26,11 +26,14 @@ app.use(prettyJSON())
 // Only allow requests from my domain
 app.use('/*', cors({
   origin: (origin, c) => {
-    return origin.endsWith(ALLOWED_HOST)
-      ? origin
-      : `https://${ALLOWED_HOST}`
+    // Exact match for the domain or www subdomain only
+    const allowedOrigins = [`https://${ALLOWED_HOST}`, `https://www.${ALLOWED_HOST}`]
+    return allowedOrigins.includes(origin) ? origin : `https://${ALLOWED_HOST}`
   },
-  allowMethods: ['GET', 'POST']
+  allowMethods: ['GET', 'POST'],
+  allowHeaders: ['Authorization', 'Content-Type'],
+  exposeHeaders: ['Content-Length'],
+  maxAge: 3600
 }))
 
 // CSRF protection
@@ -55,23 +58,47 @@ app.post('/authorize', async (c) => {
     iat: now
   }
 
+  // Create refresh token with longer expiration
+  const refreshPayload = {
+    role: 'refresh',
+    exp: now + 3600, // Refresh token expires in 1 hour
+    iat: now
+  }
+
   const token = await sign(payload, c.env.JWT_SECRET)
+  const refreshToken = await sign(refreshPayload, c.env.JWT_SECRET)
+
   return c.json({
     payload,
-    token
+    token,
+    refreshToken
   })
 })
 
 // Route with new API
 app.use('/v2/*', bearerAuth({
   verifyToken: async (token, c) => {
     try {
-      await verify(token, c.env.JWT_SECRET)
+      const payload = await verify(token, c.env.JWT_SECRET)
+
+      // Check if token is expired by checking current time against exp
+      const now = Math.floor(Date.now() / 1000)
+      if (payload.exp && payload.exp < now) {
+        console.error('Token expired')
+        return false
+      }
+
+      // Check if token has the correct role
+      if (payload.role !== 'admin') {
+        console.error('Invalid role in token')
+        return false
+      }
+
+      return true
     } catch (e) {
+      console.error('Token verification failed:', e)
       return false
     }
-
-    return true
   }
 }))
 app.route('/v2', api)

src/index.ts

@@ -28,7 +28,10 @@ const addDuration = (index: number, data: IData): void => {
   }
 
   const mostRecent = experience[index]
-  if (typeof mostRecent.dateAsString !== 'string') {
+
+  // Do not add duration if we do not have starting date as parseable string, or
+  // if there is a duration already defined
+  if (typeof mostRecent.dateAsString !== 'string' || typeof mostRecent.duration != null) {
     return
   }