You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The cloud service should have RBAC for users, the authentication flow should create "authentication sessions" that are stored in the database, when a user is authenticated this is logged, there are open, expired and authenticated states.
For the sake of security, there is another table for allowed URL patterns in redirects, this allows for attackers to not create redirect links that send credentials to a made up service or hit the server with unwanted requests.
Important
The allowed URL patterns configuration should be only allowed to some RBAC users, like ADMIN, or something along these lines.
Note
The current migrations from the core should be moved inside core and the Justfile should be adapted to migrate every service.
The cloud service should have RBAC for users, the authentication flow should create "authentication sessions" that are stored in the database, when a user is authenticated this is logged, there are open, expired and authenticated states.
For the sake of security, there is another table for allowed URL patterns in redirects, this allows for attackers to not create redirect links that send credentials to a made up service or hit the server with unwanted requests.
Important
The allowed URL patterns configuration should be only allowed to some RBAC users, like ADMIN, or something along these lines.
Note
The current migrations from the core should be moved inside core and the
Justfileshould be adapted to migrate every service.