-
### Context
We're trying to remove the need of tokens to pull Helm charts from the Google Artifact Registry using Workload Identity. Our cluster runs Flux `v2.3.0` on GKE `v1.29.7`.
We've been f…
-
Hi,
I am trying to use the FOSFacebookbundle as an authentication source for my iOS application. It works until I set the firewall to stateless. I would like the ability to use the access token as th…
-
it is in fact possible via keycloak's access token JWT see what roles the user has, sometimes either adding built in mappers or specifiying the roles scope is necessary.
because of this I would li…
-
Note: this is referenced as 4.1.10 in #2033, but I updating the numbering to account for the skipped requirements.
I propose the addition of a new requirement that addresses the need for access dec…
-
Bundle setup docs https://github.com/thephpleague/oauth2-server-bundle/blob/58d4b11a5f75dd049d613871e6a3a3a367cbd976/docs/basic-setup.md does not say anything about setting a user provider for a firew…
-
**Description:**
The JWT tokens in `pages/api/admin-check-login-code.ts` are currently set with an expiration date far in the future (`2038`). This could lead to significant security risks if tokens …
-
In symfony 6 refresh token not working properly because it unable to find the controller. Do you have any solution for this case ?
security.yaml -> firewalls:
```
# ...
firewalls:
api_…
-
Just like Pony, we want to limit access to things like I/O based on authority tokens (in Pony, often referred to as [object capabilities](https://tutorial.ponylang.io/object-capabilities/object-capabi…
-
Hi there,
I'm implementing astateless CSRF protection. This is a pattern listed by [Owasp](https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#Token_Based_Mitig…
-
During responding to the token request, satosa tries to get the configured extra troken claims from the `provider.userinfo`, see https://github.com/IdentityPython/SATOSA/blob/master/src/satosa/fronte…