-
While #2197 adds an example of how to configure Nginx to set a `Content-Security-Policy` (CSP) header, this logic should be moved into the Girder server application itself.
The merits of serving wi…
-
While using ML-KEM as a DH replacement in (say) TLS or IKE is one important use case, it's not the only one. We should also discuss how ML-KEM might be used as a component within IES, and as authenti…
-
**Expected Behavior**
It would be nice if the RestClient supported an equivalent of ServletBearerExchangeFilterFunction. This would allow us to easily grab a user's bearer token and pass that on to s…
-
[The OAuth 2.0 for Browser-Based Apps draft](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-browser-based-apps-18#name-backend-for-frontend-bff) outlines the use of an HTTP-Only cookie to reso…
-
The current draft should discuss and provide mitigation strategies for SSRF.
Currently, I see the following issues:
# Attack Vectors
1. [Client Metadata Response](https://www.ietf.org/archive…
-
Nice App here, got it working great but I am a bit confused as how the Security is working here.
So basically I am trying to build a Mobile Application and I thought that I can use this as a Jump Sta…
-
How can I specify the -Djava.security.krb5.conf=/path/krb5.conf parameter? When I enable Kerberos, I receive an error.
2024-07-17 16:59:59,571 ERROR [io.qua.run.Application] (main) Failed to start …
-
**What would you like to be added**:
A `Garden` provider that has access to the garden cluster can be implemented:
- [X] Add Garden provider https://github.com/gardener/diki/pull/305
A new ruleset sh…
-
### Description
This PR adds metrics for the V2 DNS server per the RFC. The two V1 metrics are consolidated into "query" with a request type label. There are also some bugfixes to pre-register the st…
-
### **Objective**
> ### Sync of settings cross computers
> ### Change profile picture
> ### Store custom homework
### **Potential ways of doing it**
> ### Centralized database
✅Not…