Firstyear
Firstyear
@jinnatar @yaleman So I started to look at this to rename the unix integration parts from kanidm to sparkle. It looks like it may be a lot more work than...
> It's a little irrelevant that we have the header at all since ... the server will never listen on HTTP, and HSTS only gets applied if you've already been...
This is because fingerprint readers on linux are not a webauth/tpm thing, they are managed by fprintd. You would need to login *once* with a pw via kanidm, then configured...
I think the other part of this is how gnome is doing the changes and how it finds the users. Similar for KDE. So there is likely some dbus api...
Those accounts can only have 100 pw attempts per day, and the password has 48 characters from the readable set of 55 chars, which yields more than 256bits of entropy....
Well part of the problem here is linux/container security - or rather, lack there of. Linux systems have a boundary which is the network for ssh and a tty to...
We already have ip access limits as a request, so I'm closing this in favour of the other issue.
Given the arc-swap docs state: ``` This returns a proxy object allowing access to the thing held inside. However, there’s only limited amount of possible cheap proxies in existence for...
It looks like the readtxn already uses load_full(), so I think this is okay as a change to make :)
Yeah sounds like that redir cookie is stuck? Can you check its not present in the inspector?WilliamOn 24 Jan 2025, at 11:37, Be ***@***.***> wrote: I downgraded the kanidm/server container...