-
### Description
We are running Gitea (`1.22.1`) on OpenBSD (`7.5-current` on `amd64`). For some reason, Gitea keeps writing index files to `/tmp`, despite having configured different paths in the G…
-
**Describe** the issue**
RBAC can't access:
- realm_access - roles
- app_metadata - authorization - roles
**Expected behavior**
According the documentation
By default, the plugin should fi…
-
When a JWT is handled by **JwtSecurityTokenHandler** it tries to map any properties in the JwtClaim to a System.Security.Claims.Claim -[see line 1136](https://github.com/AzureAD/azure-activedirectory-…
-
New Security API 1.0 supports the existing declarative security as expressed by constraints in web.xml or annotations like @RolesAllowed keep working as they have always worked. But JAX-RS API does no…
-
Add support for
- OAuth client credential flow
- OAuth password grant flow
to OIDC Security provider.
Details: https://tools.ietf.org/html/rfc6749#section-4.4
This is to enhance our suppo…
-
# Problem
We have a few symmetric keys that we use for signing (and also sometimes encrypting) various payloads that don't ever get rotated after creation. We've already encountered some friction w…
sreya updated
2 weeks ago
-
I wonder if we can clarify the guidance in Section 7.4 a bit:
From: It SHOULD rely on mechanisms, such as Spiffe or some other means of performing MTLS [RFC8446], to securely authenticate the requ…
-
### Environment
- Operating System: Linux
- Node Version: v18.19.0
- Nuxt Version: 3.10.0
- CLI Version: 3.10.0
- Nitro Version: 2.8.1
- Package Manager: yarn@1.22.21
- Builder…
-
I use this library on sever side, while on client side do manually since the client is for mobile platform.
This is my openapi spec :
I follow [openapi documentation](https://swagger.io/docs/speci…
-
#### Describe the bug
I can access the "FAQ" page and partially use the "Edit FAQ Page" function even with an expired session which should not be possible. The changes made to the FAQ page are inc…