-
## Waarom (kort):
Uit rapport van Gartner "Architect a Modern API Access Control Strategy" ID G00723547 is het sterk aangeraden om het externe OAuth access_token token in te wisselen voor een intern…
-
**Github username:** @catellaTech
**Twitter username:** catellatech
**Submission hash (on-chain):** 0xd160e3e72ff8f3ff38dc2097cfdc40f2c21dc1d6e193ff3f0873775321056d49
**Severity:** high
**Descriptio…
-
### Discussed in https://github.com/zitadel/zitadel/discussions/7070
Originally posted by **livio-a** December 13, 2023
There have been various discussions and requests for ZITADEL to provide …
-
### Preflight checklist
- [X] I could not find a solution in the existing issues, docs, nor discussions.
- [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/fosite/blob/ma…
-
The `rage` README file says that
> Hardware PIV tokens such as YubiKeys are supported through the [age-plugin-yubikey](https://github.com/str4d/age-plugin-yubikey) plugin.
but `age-plugin-yubike…
-
### Preflight checklist
- [X] I could not find a solution in the existing issues, docs, nor discussions.
- [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/fosite/blob…
-
**Describe the feature you'd like and what it will do**
I would like refresh tokens to be used to refresh access tokens before they expire. This will limit how often I will need to login with each r…
-
Hi,
My azure blob storage uses a private container and as such requires a SAS token in the URL.
Short lived tokens are generated on our backend and sent to the client. The client then provides…
-
**Github username:** @olaoyesalem
**Twitter username:** salthegeek1
**Submission hash (on-chain):** 0x2122410e3f5dd82a172841c7e603cdd2ff03dba5a87f1f8fcb168e5047c79735
**Severity:** high
**Descriptio…
-
The general idea would be to use ECDH with a secret key backend on a hardware security token/HSM/TPM to generate a PSK which we either use directly or as an input to Rosenpass (see #53).
This PSK w…