-
Job Scheduler is responsible for invoking scheduled jobs registered by plugins/extensions. In the new security model for extensions, user info is stored in a single secure index that is not owned by t…
-
## Proposed name/title
Identity and Access Management - Okta
## Purpose and description
Define how and when Okta is to be used for Identity and Access Management (IDAM).
Okta is the standa…
-
I have configured everything like it is in the production file. When I try to login I get stuck on an infinite loop.
GET call to https://my-website.dev/
200
GET call to the OIDC Okta embed link…
xrfg updated
7 months ago
-
### Is your feature request related to a problem? Please describe.
Best practice from a security standpoint is to run background processes as a non-interactive account with only enough permissions to…
-
We have many features relying on email or phone to work, for example, forgot password and in the future, security alerts.
If the user only signs up with username, we cannot contact them.We need to su…
-
This is much more difficult than it seems. Most systems that automate subscription to database operations (eg postgraphile) are not security-aware. So this is a place where we need a middleware. Provi…
-
Vulnerable Library - opensharptrace.4.0.0.nupkg
Path to dependency file: /src/OpenSharpTrace.Test/OpenSharpTrace.Test.csproj
Path to vulnerable library: /home/wss-scanner/.nuget/packages/system.ide…
-
### Library name
Azure.AI.OpenAI
### Please describe the feature.
**Summary**
This is to request a workaround or a support to be added into the OpenAIClient constructor that will allow to use cust…
dawwa updated
2 months ago
-
While creating JWT for a user in my authentication service I use `System.Security.Claims.ClaimTypes` static class with defined string constants for various claims. So, `ClaimTypes.Role == "http://sche…
-
hello, I'm looking at spire as a way to attestate the identity of pod workloads. But I see that mounting a hostpath volume is required for spire to work on kubernetes. This is a problem in k8s as host…