Josh Grossman

icon indicating a website link https://JoshCGrossman.com/

icon location InfoSec Consultant | Sometimes known as TGhostH | Based in Silicon Wadi | Cyber is an adjective | You wanna break it? You'd better know how to fix it!

Results 775 comments of Josh Grossman

Prevent cross-site access with JSONP

awaiting outcome of #1230

V9 rework needed

Ok so what everything in V9 has in common which is not the case for the 4 requirements you specified is that the server-side configuration would almost certainly be outside...

V9 rework needed

You think that CSRF is more of a configuration problem?

V9 rework needed

But it is a special kind of configuration which is a little outside of the regular application domain and it is also an important topic which is why I think...

V9 rework needed

Can we say "Communication Protection"?

V9 rework needed

> Can we say "Communication Protection"? @elarlang what do you think?

V9 rework needed

Ok so "Communication Encryption"? @elarlang

V9 rework needed

Created #1342 @elarlang

v3.3.1 - Clarification as to meaning,

That makes sense although do you think saying "cannot" instead of "does not" is clearer @jmanico ? _Verify that logout and expiration invalidate the session token, such that the back...

v3.3.1 - Clarification as to meaning,

The app is the downstream relying party. I am going to open a PR.