micolous

MDS has an authenticator with `secp521r1_ecdsa_sha512_raw` AuthenticationAlgorithm: ```json { "aaguid": "bb405265-40cf-4115-93e5-a332c1968d8c", "metadataStatement": { "legalHeader": "Submission of this statement and retrieval and use of this statement indicates acceptance of the appropriate...

`protoc-gen-openapiv2/options/*.proto` paths don't match package name

10

## 🐛 Bug Report `protoc-gen-openapiv2`'s Protobuf annotations file paths don't match the package name (`protoc-gen-openapiv2/options/*.proto` vs `grpc.gateway.protoc_gen_openapiv2.options`). The present behaviour conflicts with [the Protobuf style guide](https://protobuf.dev/programming-guides/style/#packages) (emphasis added): > Package...

`jitsi-openid` always creates a JWT with a room claim set to `*`: https://github.com/MarcelCoding/jitsi-openid/blob/eb7b9d74ca93da85660ea387aadb4da6d3b2e0d7/src/routes.rs#L156 The `room` is saved to the session, and is used in that same handler to construct a...

jitsi-openid should use always `sub` as `context.user.id`, not `preferred_username`

3

[Jitsi Meet's JWT doc](https://github.com/jitsi/lib-jitsi-meet/blob/master/doc/tokens.md#token-examples) describes the `context.token.id` claim as an opaque user identifier, and gives a UUID as an example. However, `jitsi-openid` uses the OpenID `preferred_username` claim as the default...

The "bundled" version of the JS includes Popper, and both Popper and Yew assume complete control of the DOM. Popper-managed components have significant rendering errors when you dynamically add or...

DEFAULT_USER_UID and DEFAULT_USER_GID are implemented incorrectly, erroring out in Docker

1

Atomically attempts to get the current UID and GID using multiple calls to `os.userInfo()` at import time: https://github.com/fabiospampinato/atomically/blob/6918c035a288094dc8d4339a2b28bdea20293dcb/src/constants.ts#L19-L21 [`os.userInfo()` calls `uv_os_get_passwd()`](https://github.com/nodejs/node/blob/5ef498517574e1534041cdd25c920f8d0b2cf845/src/node_os.cc#L290), which on UNIX-like systems [calls `uv__getpwuid_r(..., geteuid())`](https://github.com/nodejs/node/blob/5ef498517574e1534041cdd25c920f8d0b2cf845/deps/uv/src/unix/core.c#L1369-L1371), and looks...

Update instructions for Sonoma 14.6+ (#54)

2

Fixes #54 (well, works around the new normal). This documents [the workarounds I've provided here](https://github.com/theseal/ssh-askpass/issues/54#issuecomment-2268376357), which is the **only** way that works with Apple's stock `ssh-agent` LaunchAgent configuration and [does...

OpenID-Connect-PHP depends on session cookies in order to get the `code_verifier`: https://github.com/jumbojett/OpenID-Connect-PHP/blob/f7c91b9079bf96323b5eb3ab4383f297f21d98d1/src/OpenIDConnectClient.php#L1858-L1860 https://github.com/jumbojett/OpenID-Connect-PHP/blob/f7c91b9079bf96323b5eb3ab4383f297f21d98d1/src/OpenIDConnectClient.php#L1920-L1927 However, if an application sets `SameSite=Strict` on session cookies (eg: ownCloud), and the IdP and application are...

User story: publish `webauthn-rs` related binaries (`fido-key-manager`, `webauthn-rp-proxy`) as Docker containers

2

**Is your feature request related to a problem? Please describe.** I want to be able to run `webauthn-rs`' binaries (like `fido-key-manager` and `webauthn-rp-proxy`) on an Linux distribution that ships an...

***This is a work in progress, and needs some more testing.*** Both Apple Pay and Google Pay EMV implementations expose much less data than physical cards, so return a lot...