-
We need to Point out as Importent Note that You should never store Sensitive stuff like Credentials in Localstorage! No JWT at all. I know this is not a direct issue of this but it will help a lot to …
-
Using a JWT with a known user. A attacker could brute force the secret key to hijack active JWTs.
-
This adds to RFC 1001 at #4
# Overview
Features supported by HTTP:
1. `Authorization` header
2. `Cookie`
3. Basic and digest auth by browser (unusable)
Features suported by browser-based …
-
Hi @IndominusByte ,
thank you for the great work on this plugin, and for it's documentation.
Can you indicate which is the status of this project? It seems stale with few good pull requests open…
-
Hello,
Would you explain the conditions under which one should or must use a paserk/jwk-like endpoint?
I'm currently using PASETO tokens verified with a static public key file I control and can …
-
As suggested by Jeremy Daily in review of the conceptual draft, the check values should be signatures and not just checksums
-
PROBLEM / CAUSE: I am using google-php-api-client to create calendar event, with service account and set the subject, subject email address is my admin account, with out subject this is working but wh…
-
Hi,
My project targets 4.8 so I'm trying to use version 0.7.2, however I can't find PasetoBuilder. I've tried adding "using Paseto.Builder" but that doesn't look available, and it looks like I can…
-
-
Last updated on Jan 17, 2021
### Is the feature request related to a problem? Please describe.
I'm slowly working on a client-side rendering client that hopefully could be bundled as a theme for f…