Mart Aarma
Mart Aarma
This pull request enables simultaneous auth flows by creating client related csrf cookie names. oauth2_authentication_csrf -> oauth2_authentication_csrf_%murmur3(client_id)% oauth2_authentication_csrf_insecure -> oauth2_authentication_csrf_%murmur3(client_id)%_insecure oauth2_consent_csrf -> oauth2_consent_csrf_%murmur3(client_id)% oauth2_consent_csrf_insecure -> oauth2_consent_csrf_%murmur3(client_id)%_insecure Additionally max age is...
This pull request introduces feature to extend consent validity time for both session related consent and subject related consent. Currently consent validity cannot be updated (when skip=true) or to be...
This pull request introduces feature to revoke consent by session id and option to trigger back channel logout. **Use case**: 1. User logs in from device/browser 1 to client application...
This pull request introduces admin endpoint to delete login session by session id. **Use case:** 1. User logs in from device/browser 1 to client application A. Hydra has created login...
This pull request introduces feature to list subject consent sessions by session id. **Use case**: When authentication is initiated without `prompt` parameter from **multiple** devices, we would like to distinguish...
This pull request introduces feature to update session cookie expiry time on session refresh request. **Use case**: We want to keep session duration quite short (15 minutes) and force client...
This pull request introduces feature to configure backchannel logout request client TLS min/max versions and supported cipher suites. **Feature update:** - Added insecure_skip_verify configuration option. - Added reading proxy configuration...
- `hsm.key_set_prefix` documentation update - jwt ecdsa support correction ## Related Issue or Design Document [#3066](https://github.com/ory/hydra/pull/3066) ## Checklist - [x] I have read the [contributing guidelines](../blob/master/CONTRIBUTING.md) and signed the CLA....
Back-Channel Logout client TLS configuration documentation ```yaml client: default: min_version: max_version: cipher_suites: back_channel_logout: min_version: max_version: cipher_suites: ``` ## Related Issue or Design Document [#2875](https://github.com/ory/hydra/pull/2875) ## Checklist - [x] I have...
This PR adds caching for well known keys when using HSM key manager. Operations per sec on HSM are limited and caching well known keys would make sense. Also if...