issues
search
serenity-kit
/
opaque
Secure password based client-server authentication without the server ever obtaining knowledge of the password. Implementation of the OPAQUE protocol.
https://opaque-auth.com
MIT License
38
stars
5
forks
source link
Add redis support
#75
Closed
steos
closed
11 months ago
steos
commented
11 months ago
Additional changes:
generate
.env
file and use env variables to configure opaque server setup, redis etc.
refactor session handling to go through store interface (to persist in redis when using redis)
set session cookie with random session ID instead of using opaque sessionKey in auth header in
/private
endpoint example
remove cors and configure proxy instead (to avoid additional cors session handling complexity)
Additional changes:
.env
file and use env variables to configure opaque server setup, redis etc./private
endpoint example