-
The WAMP spec says very little about how [cookie-based authentication](http://wamp-proto.org/static/rfc/draft-oberstet-hybi-crossbar-wamp.html#rfc.section.14.5.2.2.1) is supposed to work. The spec ma…
-
I suppose this also applies to `http/node` but I specifically ran into this limitation with `http/web`. It's possible to customize request headers in functions like [`clone`](https://isomorphic-git.or…
-
Right now, the server supports two different auth modes, confusingly named `auth: "tls"` and `auth: "oidc"`, even though that doesn't cover exactly what they do. The main problem is that this one sett…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Describe the Issue
When trying to set a cookie via the Set-Cookie response header, Postman will trim lea…
-
```
It might be desired to create a cleaner auth_info structure in session, which
stores login_type along with other information. This information should
therefore be managed by YumWebUser.
Storing…
-
Hi,
This may seem crazy but I'm not sure to understand why this library should be used.
Is it possible to explain some common usecases?
The first question that comes to mind is weither or not…
-
- Google "Best Practices": https://developers.google.com/identity/protocols/oauth2/resources/best-practices
- Google OAuth 2.0 authorization: https://developers.google.com/identity/protocols/oauth2/
…
-
Third-party cookies are used in the KCMA login flow, which will break when google finishes its project to [block Third-Party Cookies](https://developer.chrome.com/en/docs/privacy-sandbox/third-party-c…
-
1. Describe the issue you are having and what you expected to happen.
When a user is probably in too much ldap groups and tries to log in via OIDC, it doesn't work when the token is too long.
Expect…
-
Due to security concerns (#2299) we should consider switching our authentication scheme to cookies.
**Requirements:**
1. User needs to know when and as whom it is logged in
2. User needs to be able …
slomo updated
8 years ago