Dmitry Telegin
Dmitry Telegin
At the moment, mkosi can't operate physical devices directly. Running mkosi -o /dev/sdX will give an error in the final stage (Linking image...) because of the way image creation is...
Fixes: #9017
This PR outlines the design of [OAuth 2.0 Demonstrating Proof-of-Possession](https://tools.ietf.org/id/draft-ietf-oauth-dpop-02.html) for Keycloak.
Initial implementation of DPoP. Limitations and open issues: - [ ] UserInfo endpoint support - see [discussion](https://github.com/keycloak/keycloak/discussions/8801) - [x] Token Revocation (won't do) - [x] Do not bind refresh tokens...
### Impacted package Which packages do you think might be impacted by the bug ? - [ ] solid-client-authn-browser - [ ] solid-client-authn-node - [x] solid-client-authn-core - [ ] oidc-client-ext...
### Impacted package Which packages do you think might be impacted by the bug ? - [x] solid-client-authn-browser - [ ] solid-client-authn-node - [x] solid-client-authn-core - [x] oidc-client-ext - [x]...
Recent DPoP spec updates introduce some changes that could be relevant for Solid-OIDC. I'd suggest that we update the DPoP-related parts of the spec and the primer in order to...
11.2. Client IDs: > Implementors SHOULD expire ephemeral Client IDs that are kept in server storage to mitigate the potential for a bad actor to fill server storage with unexpired...
### Before reporting an issue - [x] I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if...