-
I see that, in the app you calculate tokens security risk based on `riskLevel` which is :-
```
enum TokenRiskLevel {
UNKNOWN = 0,
VERIFIED = 1,
WARN,
DANGER,
}
```
but how do you …
-
**Describe the bug**
I am trying to move from .NET Framework to .NET 6 and I get errors with overriding members/methods and the error "Cannot access internal constructor 'SecurityTokenParameters()' h…
-
Simplified proposal for V1.3 section text:
> Session management mechanisms provide applications the capability to correlate user and device interactions over time even using otherwise stateless com…
-
Refresh tokens are defined with an `eternalExpirationLength`. Is that a security hole in the system? It must be investigated whether refresh tokens could be reused in an undefined period of time and w…
-
### Elasticsearch Version
local cluster running master commit 22824e47bc894e7d06e27a6fa7b221488516cb35, 8.2.0-SNAPSHOT
### Installed Plugins
_No response_
### Java Version
17
### OS …
-
### What version of OpenCensus are you using?
`go.opencensus.io v0.23.0`
### What version of Go are you using?
Varies between services, but ranges from 1.16 to 1.18 mostly
### What did you…
-
**Describe the feature you'd like and what it will do**
I would like refresh tokens to be used to refresh access tokens before they expire. This will limit how often I will need to login with each r…
-
**Describe the bug**
I have encountered an issue with the Spring SAML library that leads to incorrect token validation during the authentication process. The problem occurs under concurrent authe…
-
## Severity
High Risk
## Description
In the `init_ONft` instruction, the `token_mint` is set without validation, allowing the initialization of a `token_mint` with a `freeze_authority`. SPL t…
-
I'm currently using this plugin with an OIDC provider (Kanidm) that requires PKCE (Proof Key for Code Exchange).
Feature request:
Please add support for PKCE in the OAuth2 authorization flow. Thi…