Available for select side-work
Hi, I'm Angga. I build secure, passwordless identity platforms.
Platform & backend engineer specializing in identity, authentication, and applied cryptography — Keycloak, Verifiable Credentials, WebAuthn, post-quantum. Growing into cloud-native and DevOps: shipping open-source tools like cloudsweep and writing about it here.

That's me.
I care about secure, well-built systems. By day I develop VIA's self-hosted Keycloak identity platform; by night I ship open-source tools like cloudsweep and write about identity, security, and cloud-native engineering here.
More about me →Currently working on
Micro-SaaS
A small open-source DevOps tool — currently in exploration.
Tech blog
One post a week — engineering retros, not generic tutorials.
Open-source
Contributing to Ghost. Aiming for a PR every two weeks.
Mobile app
Subscription-based product, parked until SaaS validates.
Latest posts
View all →- Building cloudsweep: finding AWS waste from the terminalAn open-source Go CLI that scans an AWS account for idle and orphaned resources and estimates the monthly cost — the Trusted Advisor checks you shouldn't need a Support plan for. Here's the origin story.
- Observability on one EC2 box: the Grafana stackSelf-hosting traces, logs, and metrics on a single EC2 instance with Grafana, Alloy, Tempo, and Loki — how the pieces fit, the push-vs-pull split that trips people up, wiring it for a Go backend, and the caveats nobody mentions.
- Zero-downtime deploys: blue-green and canaryHow blue-green deployments and canary releases actually achieve zero downtime — the traffic mechanics, the database problem nobody mentions, the tooling that runs them, and when not to bother.