tfm@piefed.europe.pub to Programmer Humor@programming.devEnglish · 12 days agoOAuthpiefed.europe.pubexternal-linkmessage-square69fedilinkarrow-up1764arrow-down17
arrow-up1757arrow-down1external-linkOAuthpiefed.europe.pubtfm@piefed.europe.pub to Programmer Humor@programming.devEnglish · 12 days agomessage-square69fedilink
minus-squarerumba@lemmy.ziplinkfedilinkEnglisharrow-up20·12 days agoHalf a cryptographic key that you can’t easily give to someone over the phone by accident.
minus-squareenumerator4829@sh.itjust.workslinkfedilinkEnglisharrow-up1·10 days agoBy convention. See for example: https://github.com/keepassxreboot/keepassxc/issues/10407 We’ve had certificate authentication (backed by hardware) for ages. We could fix the UX there and be done with it, but nooooo, we are reinventing everything again. (Tangentially related: JWT, OIDC and SAML are basically kerberos with extra steps.)
Half a cryptographic key that you can’t easily give to someone over the phone by accident.
By convention. See for example: https://github.com/keepassxreboot/keepassxc/issues/10407
We’ve had certificate authentication (backed by hardware) for ages. We could fix the UX there and be done with it, but nooooo, we are reinventing everything again. (Tangentially related: JWT, OIDC and SAML are basically kerberos with extra steps.)