Liam Wadman
Liam Wadman
Leaving my support for this, I would love to have an official wrangler docker image available. I'd really like to use this for a gitlab runner.
Having Authorization servers put tokens into cookies is directly against the Oauth Spec - Tokens are returned in response bodies. This basically re-introduces the security problem that existed before 'httponly'...
@gary-archer Have you also considered putting session management responsibilities onto the OpenID Provider/Authorization Server(or whatever system the user uses to authenticate to them). What I mean is if the users...