Skip to content
This repository has been archived by the owner on Feb 2, 2023. It is now read-only.

fulll/signature-firewall-bundle

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
doc
doc
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
composer.json
composer.json
 
 
security.md
security.md
 
 

Repository files navigation

Fulll SignatureFirewallBundle

Symfony firewall which handle signature security using Guard. JWT RSA & JWT HMAC supported only at this moment.

SignatureFirewallBundle use a token to identify user but it does more ... It creates a signature from the request (see validation.request configuration). By this way, even if a malicious person steal the JWT token, he'll not be able to edit the request to use it. So If you generate only token with a short TTL, malicious person will only be able to launch the same request in a short range time.

Client has to know the request signature mechanism to generate the good token and that's all ...

Usage

About

No description, website, or topics provided.

Resources

Readme

License

MIT license

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

17 watching

Forks

3 forks
Report repository

Releases 1

1.0.0 Rename organization by fulll Latest
Dec 13, 2021

Packages

No packages published

Contributors 6

Languages