75,684 questions
0
votes
0
answers
26
views
Wildfly 39 JSF Login authentication
I'm trying to configure a form-based authentication for my JSF app in Wildfly 39, and I've come across these sources:
https://rieckpil.de/howto-simple-form-based-authentication-for-jsf-2-3-with-java-...
- 94
1
vote
0
answers
64
views
Blazor wasm Authentication with Roles
I'm looking into implementing authentication in a client side Blazor application with wasm.
Microsoft has a sample for exactly that scenario, but - not very confidence inspiring - it seems broken: ...
- 30.5k
-1
votes
0
answers
38
views
How to protect routes in Next.js when auth tokens are stored in HttpOnly cookies? [closed]
I’m using Next.js (App Router) where authentication is handled by the backend.
The backend sets access and refresh tokens in HttpOnly + Secure cookies, so the frontend cannot read token values (which ...
0
votes
0
answers
23
views
StaticWebapp not setting value on wellKnownOpenIdConfigurationSettingName from azure env values
I have this configuration:
{
"mimeTypes": {
".js": "application/javascript",
".mjs": "application/javascript",
".cjs": "...
- 3,482
0
votes
0
answers
39
views
How does Passkeys behave across iOS 15 → iOS 16 when using ASAuthorizationController?
I’m integrating authentication using Apple’s authorization APIs and supporting multiple iOS versions:
• ASAuthorizationController (iOS 13+)
• ASAuthorizationPlatformPublicKeyCredentialProvider (...
- 1,324
-2
votes
0
answers
34
views
AC authentication and then connection lost [closed]
I have a problem on Linux OS Server 20.04.5: I'm stuck on authentication screen or better, authentication and then I get a message:
'Lost Connection' ...
PAST: I updated my server PHP for gmp-...
- 1
-3
votes
0
answers
47
views
API Auth using apikey - Axios - giving a 401 error - I tested the apikey using postman and it works fine [closed]
app.get("/apiKey", async (req, res) => {
try {
const response = await axios.get(
API_URL + "/filter",
//request parameter
{
...
-1
votes
0
answers
62
views
Managing user roles & permissions on multiple applications [closed]
I have been wrestling with this question for a while concerning how to manage roles/permissions on multiple applications. We have multiple applications. Lets call them App-1, App-2 and App-3 and user-...
- 3,367
Best practices
0
votes
3
replies
29
views
Angular + .NET (Azure AD BFF): Handling 401 due to token expiry without losing unsaved form data (auto-save to DB only)
I’m working on an Angular frontend with a .NET BFF backend secured using Azure AD authentication (cookie-based, no tokens stored in local/session storage).
Current setup:
Frontend: Angular
Backend: ....
- 11
Best practices
1
vote
4
replies
54
views
How do I differentiate each device so that each one has its own unique refresh token linked to the same account?
I am designing a mobile application with a user login system.
I am going to implement refresh tokens in order to allow for users to only have to log in once every 30 days.
How do I differentiate each ...
- 91
0
votes
0
answers
38
views
GitHub Actions checkout fails with "Not Found" error for SSO-protected enterprise repository despite valid PAT
Problem
I'm trying to checkout a private GitHub Enterprise repository in a GitHub Actions workflow, but it consistently fails with a "Not Found" error even though I have a valid Personal ...
- 1
Advice
1
vote
0
replies
33
views
Why Authentication and User Management tools are not made for PHP/Symfony?
I try to configure my Symfony project with a User Management to separate my user management from my app database.
I found some tools, as Clerk, Supabase, Authentik and I have try each tool, but ...
- 33
1
vote
0
answers
60
views
ASAuthorizationControllerDelegate always returns .canceled for Face ID passcode fallback and failed attempts
I’m implementing Sign in with Apple / Passkeys using ASAuthorizationControllerDelegate and handling errors via:
func authorizationController(
controller: ASAuthorizationController,
...
- 1,324
Best practices
0
votes
9
replies
47
views
What security measures to implement when using React JS and Python Backend with Rest API
I am building a React + python(Fast API) application where these 2 applications are connected via Rest API. My question is if anyone who knows the ENDPOINT , and params that needs to be sent, Anyone ...
Advice
0
votes
1
replies
27
views
How to handle authorization in a microservices environment using session-based authentication?
I lack experience with system design, and I’m struggling to understand how all the pieces fit together. I’d appreciate some help seeing the “big picture.”
I’m building a web application with a ...
