-
**Description:**
The JWT tokens in `pages/api/admin-check-login-code.ts` are currently set with an expiration date far in the future (`2038`). This could lead to significant security risks if tokens …
-
# Spring Security: Authentication using JWT
Spring Security: Authentication using JWT
[https://whowrotethisshit.vercel.app/spring-security-authentication-using-jwt](https://whowrotethisshit.vercel.a…
-
**Description:**
The current implementation in `pages/api/validate-admin-jwt.ts` logs the JWT contents when a JWT fails validation. This poses a risk of sensitive data exposure, as JWTs often contain…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
I have a request aut…
-
## reference
1. https://medium.com/trabe/validate-jwt-tokens-using-jwks-in-java-214f7014b5cf
2. https://developer.okta.com/blog/2018/10/31/jwts-with-java
3. https://vimsky.com/examples/detail/jav…
-
I have managed to implement JWT middleware based on existing example and it works but there is no mention of it in the generated openapi specification. Is it possible to add it?
There is existing s…
-
**Description**
If I understand the code correctly, currently there is no way to create a JWT token without logging in, and by default, it expires in 7 days. This is a security risk for me - if so…
-
Buongiorno,
sto effettuando dei test di validazione.
Sto ricevendo il seguente errore tramite applicativo
{
"govway_id": "7f88e786-8460-11ef-a6bf-005056ae7395",
"detail": "Unauthorized reques…
-
I've just started messing around with this the other day so I'm sure I've got something off. However, I followed the [docs](https://cert-manager.io/docs/usage/istio-csr/installation/) and my istio-csr…
-
## Description
I accidentally checked in the private and public keys and pushed them up at one point. They have been deleted, but for security reasons we should generate new keys.
## Related
- R…