my worry is that of cookie dns hijacking - iirc that’s reasonably defended against with hsts headers https & secure http-only cookies
I’m also planning to add a flow for double checks with a shorter expiry time say 1 hour (logged in, but requires to authenticate with their passkey again, for super important tasks)
lil5 :golang: 🌱 /
npub13m…6tkv8
2024-09-24 05:55:55
in reply to nevent1q…k86z
Author Public Key
npub13mf5xspvn2elj6cnmvc6x4r3fv53ecpgysjlgjwkuq7f7mxwfuxqv6tkv8Published at
2024-09-24 05:55:55Event JSON
{
"id": "ea6c45fff4b9352d71d70bd7ca05dcf716e602ab0c7c0433facc96c7e15d8692",
"pubkey": "8ed343402c9ab3f96b13db31a354714b291ce0282425f449d6e03c9f6cce4f0c",
"created_at": 1727157355,
"kind": 1,
"tags": [
[
"p",
"e5d6f3ffc9eec14de562e347f7585a7175675ae2e9828e959b07809ac9cb53b6"
],
[
"e",
"1d87a981ff0b0034edb501631242d22b4346f1e0edc4d283b50996e970233c39",
"",
"reply",
"e5d6f3ffc9eec14de562e347f7585a7175675ae2e9828e959b07809ac9cb53b6"
],
[
"e",
"16658744a12ce419cedb0bfd000bb0d6d014c6ee6952197d22b3574a93f1dbab",
"",
"root",
"8ed343402c9ab3f96b13db31a354714b291ce0282425f449d6e03c9f6cce4f0c"
],
[
"proxy",
"https://fosstodon.org/@lil5/113190984471792330",
"web"
],
[
"p",
"8ed343402c9ab3f96b13db31a354714b291ce0282425f449d6e03c9f6cce4f0c"
],
[
"proxy",
"https://fosstodon.org/users/lil5/statuses/113190984471792330",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://fosstodon.org/users/lil5/statuses/113190984471792330",
"pink.momostr"
],
[
"-"
]
],
"content": "my worry is that of cookie dns hijacking - iirc that’s reasonably defended against with hsts headers https \u0026 secure http-only cookies \n\nI’m also planning to add a flow for double checks with a shorter expiry time say 1 hour (logged in, but requires to authenticate with their passkey again, for super important tasks)",
"sig": "975bd2064f83ae73dacb31bf9fc2d1d44dfc133e65993a506c4624fb2d5a303595aed4ad99cb50ad041095cd060d6c14b2367164e117b42af373338f1736acf0"
}