authorization   3545

« earlier    

JSON Web Tokens
Good links

"The information contained within the JSON object can be verified and trusted because it is digitally signed. Although JWTs can also be encrypted to provide secrecy between parties, we will focus on signed tokens, which can verify the integrity of the claims contained within them, while encrypted tokens hide those claims from other parties.

JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA or ECDSA. When tokens are signed using public/private key pairs, the signature also certifies that only the party holding the private key is the one that signed it."
WebSecurity  Cloud  Serverless  Authorization  jwt  auth0 
13 hours ago by colin.jack
ory/ladon: A SDK for access control policies: authorization for the microservice and IoT age. Inspired by AWS IAM policies. Written for Go.
A SDK for access control policies: authorization for the microservice and IoT age. Inspired by AWS IAM policies. Written for Go. - ory/ladon
aws  golang  authorization  access-control  acl  development 
15 days ago by cakeface
Zanzibar: Consistent, Global Authorization System | Hacker News
Reminds me of compound interests. Google operates at a scale where the company has enough brainpower to design systems like GFS/Colossus and Borg, which enable systems like Spanner, which enable systems like Zanzibar, and so on.
authorization  acl  acls 
17 days ago by dano
SPIFFE – Secure Production Identity Framework for Everyone
SPIFFE, the Secure Production Identity Framework for Everyone, is a set of open-source standards for securely identifying software systems in dynamic and heterogeneous environments. Systems that adopt SPIFFE can easily and reliably mutually authenticate wherever they are running.
security  dev-ops  inter-process  middleware  authorization  api-authorization 
18 days ago by Mekk
iOS 11 : l'iPhone fait confiance moins facilement aux nouveaux ordinateurs | iGeneration
si vous avez autorisé par erreur un ordinateur, vous pouvez annuler l’accès avec l’option suivante (cela annule les autorisations pour tous les ordinateurs) : Réglages > Général > Réinitialiser > Réinitialiser localisation et confidentialité
ios  iphone  disable  deauthorize  access  mac  computer  permission  synchronization  apple  trust  authorize  authorization  cancel  reset 
20 days ago by ebouchut

« earlier    

related tags

'trash  'who  2fa  5*  510  a  access-control  access  accesscontrol  acl  acls  active  activity  ad  agent  api-authorization  api  apollo  apple  architecture  article  aspnetcore  aspnetmvc  audit  auth  auth0  authentication  authentification  authorize  aws  azure  be  best  bidi  blockchain  blog  breaches  calendar  calling  cancel  casbin  certificate  cloud  community  computer  confidentiality  control  cookie  cors  data  deauthorize  deployment  design  dev-ops  dev  development  devops  dex  directory  disable  eks  elasticsearch  elixir  fhir  firebase  floss  framework  free  front-end  gate  gateway  gating  gave  gem  go  golang  google  grafeas  graphql  guards  hashicorp  him  horrorstories  identity  inter-process  ios  iphone  istio  java  javascript  jit  js  jwt  k12  k8s  keycloak  kritis  kubernetes  lambda  laravel  laravel5  library  license  lumen  mac  macaroons  may19  medicine  meek  metadata  michael  microservice  microservices  middleware  mill  monitoring  node  nodejs  oauth  oauth2-server  oauth2  oidc  okta  on  opa  openid  openis  openpolicyagent  opensource  package  passwordless  paw  permission  permissions  phoenix  php  policies  policy  practices  programming  protocol  pundit  python  rails  rapaport  rapper':  rbac  react  reference  reset  rest  rolebased  roles  ror  router  ruby  saml  saml2  searchguard  sec  security  serverless  service  smartonfhir  speaking'  spiffe  spring-boot  sprint  ssi  ssl  sso  standard  standards  suggestions  synchronization  sysadmin  testing  time  to  token  tools  trust  tutorial  users  vault  vue  vuepress-plugin  vuepress  webdev  websecurity  wso2  yada  you 

Copy this bookmark: