Closed Neustradamus closed 1 year ago
Thanks for the suggestion.
I am not familiar with SCRAM. Is this something a PHP framework should support?
This is not actionable at its current state.
Also, this issue has been posted across several repositories. Seems to be spammy. Unless we have some direction how to implement these, I believe we can close for now.
@paulbalandan: It is normal to inform devs about security.
But why close an unsolved ticket?
As I said, it's not actionable at its current state. If this has been more descriptive on the target parts of the framework etc., it may be acted upon.
@codeigniter4 team, @kenjis, @paulbalandan: Password, Auth, Mail, LDAP, HTTP...
In PHP there is:
We use GitHub issues to track BUGS and to track approved DEVELOPMENT work packages. We use our forum to provide SUPPORT and to discuss FEATURE REQUESTS.
@Neustradamus Why don't you use the library with CI4?
@kenjis: The goal is to have SCRAM supports in CodeIgniter directly for security.
Should it be an enhancement for Shield? https://github.com/codeigniter4/shield
Dear @codeigniter4 team,
For more security, can you add supports of:
You can add too:
A "big" list has been done in last link of this ticket.
SCRAM-SHA-1(-PLUS):
SCRAM-SHA-256(-PLUS):
SCRAM-SHA-512(-PLUS):
SCRAM-SHA3-512(-PLUS):
-PLUS variants:
IMAP:
LDAP:
HTTP:
2FA:
IANA:
Linked to: