-
### Feature Description
I have the following use case: I have an authorization server running next to my Gitea instance. Gitea is not supposed to do anything related to authentication or authorizat…
-
- Site: [https://localhost:5000](https://localhost:5000)
- Site: [http://localhost:5000](http://localhost:5000)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set** [10038] total:…
-
- Site: [https://localhost:5000](https://localhost:5000)
- Site: [http://localhost:5000](http://localhost:5000)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set** [10038] total:…
-
We currently use token-based authentication (JWT and the `Authorization` header) and persist it inside `localStorage`. We might want to consider switching:
1. Change token-based authentication to ses…
sodic updated
6 months ago
-
Description
========
Currently there are websites that are protected by captchas or Cloudflare to block robots.
While there are ways to bypass it using browser emulators (like Jakett, etc), it ca…
-
See the below specification:
``` ruby
context 'For valid authentication' do
Given { subject.params = { authentication: { email: 'my@mail.com' } } }
Given { subject.authentication.stub(:legitimate…
-
*Description*:
Currently, when OIDC and JWT authentication mechanisms are configured in the same `SecurityPolicy`, the OIDC is applied first. It ensures the presence of the bearer and refresh token…
-
There are probably quite a few parts in this issue, I totally see those as separate small PRs / issues.
## Context
Currently, `auth` package supports various OAuth2 providers and acts as a OAut…
-
The generated function supports the bearer token but not cookie.
```
@app.middleware("http")
async def add_process_time_header(request: Request, call_next):
# retrieve the bearer token from …
-
I'm just looking around, I may need to provide a feed for an external service which provides some non-public information (e.g. data that would be best behind some level of authentication just for priv…
laryn updated
2 months ago