-
## Problem
Currently, the TES API specification does not mandate implementers to require any authentication scheme. The specification merely mentions the following [relevant paragraphs](https://git…
-
Since the public key of the token is assigned in the 'global' section, using multiple different tokens (from different authentication servers) seems impossible. However, it may be necessary.
For ex…
-
#### Feature Description
1. Vault terminates tls connections via spiffe/go-sdk, which in turn provisions and atomically cycles cryptographic material on `crypto/tls.Config`.
2. Vault further uses s…
-
- **Impact**: 🟡 Medium
- **Status**: 🔓 Deciding...
- **Deciders & Confidence**:
- @purple-void (4.5 / 5️)
- @seporterfield (? / 5️)
- @Monstarrrr (? / 5️)
- **Last updated**: [DD-M…
-
### Search before asking
- [X] I had searched in the [issues](https://github.com/ray-project/kuberay/issues) and found no similar feature requirement.
### Description
Pass the `kuberay` ServiceAcc…
-
https://github.com/mikenicholson/passport-jwt/blob/6b92631dfbde7143b9e046093dbf332107bce82e/lib/strategy.js#L93
options._jwtFromRequest may return a Promise in some scenarios.
Currently, We iss…
-
### Using the middlewear does not work out fo the box
When I installed the latest version the middlewear does not work out of the box with the header refresh tokens. The middle is setup as
`Route::…
-
Baseado neste artigo https://hueniverse.com/2010/09/29/oauth-bearer-tokens-are-a-terrible-idea/ informanto a comunidade os problemas com OAuth Bearer (similar ao jwt) Acredito que temos que proteger o…
-
○ Time: 3 weeks
○ Tools Required: OAuth2, JWT, Azure API Management
○ Steps:
1. Configure Auth0 for authentication.
□ Set up Auth0 tenant and applications.
□ Define roles and per…
zepor updated
1 month ago
-
In a zero trust microservices architecture, it is extremely useful to have an ability to generate "on behalf of" access tokens with shorter lifespan and narrower scope when performing service to servi…