-
**Describe the bug**
When protecting both `yyy.xxx.website.com` and `xxx.website.com`, if I sign out via `yyy.xxx.website.com/oauth2/sign_out`, I can still access `yyy.xxx.website.com`.
It feels…
-
# what is cookie ? #
    通俗的讲就是一个用户通过http协议访问一个服务器的时候,这个服务器会将一些key/value键值对返回给客户端浏览器,并给这些数据加上一些限制条件,在条件符合时这个用户下次访问这个服务器的时候,数据又被完整的带回给服务器。
> set cookie: name=value; domain=.mozi…
-
The current implementation assumes the Cookies are shared. This works in most cases (when domain is the same), but not when different domain is used.
The Pusher implementation uses the client JS to…
-
Hi,
I am having basically the exact same issue like here: https://github.com/dlenski/gp-saml-gui/issues/6
Problem is, the solution from that thread doesn't work for me.
Where can I find the s…
-
### Confirmation
- [X] This is a bug with an existing resource and is not a feature request or enhancement. Feature requests should be submitted with Cloudflare Support or your account team.
- [X]…
-
Since around the middle of 2023, chrome supports a new experimental attribute on cookies: see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#partitioned and https://developer.moz…
-
> The insecure HTTP method [DELETE] is enabled on the web server for this resource. Depending on the web server configuration, and the underlying implementation responsible for serving the resource, t…
-
I get the folowing error when trying to connect through Authelia :
`Authorization Request failed with error: The state is missing or does not have enough characters and is therefore considered too w…
-
Hello.
If we are using query to set session_id we should parse it like singed cookie.
query: 'session_id=' + readCookie('your.sid-key') - we have secured sid there.
and on server side we have too secu…
-
Trying to log in to hangouts via the app service, I'm receiving the following output/error:
```2019-02-22 04:30:55,758 appservice_framework DEBUG connecting user: @derin:matrix.org
======== Run…