You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
the sandwich requires topbread and bottombread to have certain field names. They must have different field names, otherwise it would be insecure:
bottombread = '"sub":'
topbread = '", '
is insecure as bottombread can be put anywhere and the user can include other parts of jwt in their credentials
Topbread must have a different credential
But that requires a specific claim always coming directly after sub. The frontend should detect when this is not the case (e.g. server changed the JWT format) and prevent the user from submitting even the proof
The text was updated successfully, but these errors were encountered:
the sandwich requires topbread and bottombread to have certain field names. They must have different field names, otherwise it would be insecure:
is insecure as bottombread can be put anywhere and the user can include other parts of jwt in their credentials
Topbread must have a different credential
But that requires a specific claim always coming directly after
sub. The frontend should detect when this is not the case (e.g. server changed the JWT format) and prevent the user from submitting even the proofThe text was updated successfully, but these errors were encountered: