bolt
bolt copied to clipboard
juxt
An integrated security system for applications built on component
README says > The key difference is that Friend is designed upon Compojure ... I do not see any inherent dependencies of Friend on Compojure (In fact word "compojure" occurred...
Cylon Oauth Server uses cheshire.core/encode in the body of access-token response but others providers could return other response type (For example working with Google OAuth2 provider I need to use...
I think adding clj-webdriver could be interesting to assert the correct behaviour in each case and to help in future developing stages what do you think?
Currently only exception message is printed. When it happens to be a Schema validation failure, it is not trivial to track down where exactly in the code that happened.
crypto-password seems to be a good thing to capture community knowledge about the best way to handled passwords. Let's standardise on it: https://github.com/weavejester/crypto-password/
Could the CSRF todo be solved with using https://github.com/weavejester/ring-anti-forgery middleware?
Ring has a protocol for session stores: ring.middleware.session.store and a default implementation. It would be better for cylon to use this as its session store protocol, allowing existing Ring session...
Use https://github.com/dhruvchandna/ring-secure-headers