-
## What is missing or needs to be updated?
My previous [PR](https://github.com/OWASP/CheatSheetSeries/pull/1139) to fix #1110 reintroduced an overview of the HMAC CSRF Token and added a Naive Double …
-
Got these two errors, but I don't know if it's caused by SteamAuthentication Itself:
> Warning: session_start(): Cannot send session cookie - headers already sent by (output started at /home/corrup…
-
If they are not supplied, when using the `/makemember` command an error message should pop up stating the error code referring to the fact that the url/session cookie was not provided in deployment.
-
### Proposed Changes
Some admins would like to have nautobot log users out after a period of inactivity. The proposed method is to set the `SESSION_COOKIE_AGE` to the desired timeout value and th…
-
**Describe the bug**
Cannot download posts by shortcode
**To Reproduce**
Steps to reproduce the behavior:
instaloader --load-cookies Firefox --no-metadata-json --abort-on=302,400,429,401 -- -XXX…
-
### OAuth2-Proxy Version
v7.7.1
### Provider
azure
### Expected Behaviour
When requesting an invalid callback url, the client should get 403 Forbidden. This was the case under version v7.7.0. The…
-
Hello! First, I'd like to thank the authors of this very useful project!
I have a suggestion. I have noticed that when a user visits a vouch-protected site, and the URL is very long, completing the…
-
**Is your feature request related to a problem? Please describe.**
We currently don't configure anything special related to security, we just let the default Django configuration and assume it is t…
-
### Environment
OS:
Windows
Binaries:
node v18.17.0
npm v9.6.7
Libraries:
next v13.4.9
next-auth v4.22.1
react v18.2.0
### Reproduction URL
**private repo**
### Describe the issue
Hi,…
-
After creating a JD app, I removed the default Discord provider in src/server/auth.ts and added a simple Credentials provider (see below). However, after login the `createSession` session() on the cli…