Explore >> Select a destination

You are here

 labanskoller.se
Laban Sköllermark | Man-in-The-Middle Session Fixation in Securitas Direct My Pages
| | alexsci.com
HSTS preload adoption and challenges
11.6 parsecs away

Travel
| | A review of HSTS and HSTS preload list growth
| | blog.plataformatec.com.br
Improve remember me cookie expiration in Devise (CVE-2015-8314) « Plataformatec Blog
13.2 parsecs away

Travel
| | A security bug (CVE-2015-8314) has been reported in Devise's remember me system. Devise implements the "Remember me" functionality by using cookies. While this functionality works across multiple devices, Devise ended-up generating the same cookie for all devices. Consequently, if a malicious user was able to steal a remember me cookie, the cookie could be used
| | mazinahmed.net
Hacking Zoom: Uncovering Tales of Security Vulnerabilities in Zoom | Mazin Ahmed
13.5 parsecs away

Travel
| | Application and Infrastructure Security Engineering
| | www.adamalbrecht.com
Authenticating your Angular / Rails App with JSON Web Tokens | Adam Albrecht
75.3 parsecs away

Travel
| UPDATE: There have been some changes in the JWT Gem that make some of the below not work exactly right (it'll still be about 90% the same). Specifically, they added expiration support. See my post on the same topic, but using React.js. The server side code in this post will work just as well with Angular.