-
Protect admin HTTP interface to authorized users only.
Possible authorization policies:
- [ ] API token
- [ ] Basic auth
- [ ] JWT
h2non updated
8 years ago
-
### Description
The https://quarkus.io/guides/security-openid-connect-providers doc is about showing with some sample images, the typical process for registering an application with a given provider.…
-
# research : compare security between http and https
## in localhost(Express app)
![http](https://user-images.githubusercontent.com/83855174/149168089-18940a82-9452-4dc7-870d-6c1884291808.png)
##…
-
While looking at the MicroPython Requests module (on the git HEAD), I noticed this nightmare:
```
context = tls.SSLContext(tls.PROTOCOL_TLS_CLIENT)
context.verify_mode = t…
-
I think as we start rolling this out to users we need to get HTTPS certs for privacy and security reasons. Shouldn't be too hard, will look into it next week as we shift hosting and add domain name.
-
Hello,
is there a way to make the custom login page work on https. Right now, when I set the ports to default https port and do change the part for creating a https-page in the .js file, I still do…
-
I think we should configure our server to send security HTTP headers
```
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy no-referrer-when-downgrade
```
This c…
-
Current Implementation Flow :
- User Calls Twilio over the phone
- Twilio makes a request to /handle_calls/welcome.php or /handle_calls/process.php from its servers
However as of now anyone can …
-
I'm receiving a privacy warning from Google Chrome when visiting pages on the subdomain at `wiki.openbel.org`. I think this means there's a problem with the security certificate.
-
Issue Level: Moderate
First Discovered: 1/22/2022
Remediation Date: 4/22/2022