Engineering Behind Application Network Security

 https://docs.google.com/document/d/1lIbOikyfSFBeuHYF_CLR4PpXC1lmQ-Dk/edit?usp=share_link&ouid=101307365464677282126&rtpof=true&sd=true

For Installation, Configuration and Verification please refer the below link,

https://docs.google.com/document/d/1tkhR54PS6Qnic6n59223cxnrBXU8u73v/edit?usp=share_link&ouid=101307365464677282126&rtpof=true&sd=true


For Support,

support@cybersecuritysolutions.raiseaticket.com

Comments

Post a Comment

Popular posts from this blog

Install and Enable Certbot letsencrypt SSL/TLS Certificate in NGINX Ubuntu 22.04 LTS without using snapd

Install and Enable Certbot letsencrypt SSL/TLS Certificate in NGINX Ubuntu 22.04 LTS Step 1: Update the Package List Copy Code sudo apt update Step 2: Install Certbot Copy Code sudo add-apt-repository universe Then, install Certbot using apt: Copy Code sudo apt install certbot Step 3: Install the Plugin for NGINX Copy Code sudo apt install python3-certbot-nginx Step 4: Get the certificate for the preferred domain Copy Code sudo certbot certonly --standalone -d your_domain
Read more

Jegan's SSO Auth System Code Explanation

  https://docs.google.com/document/d/1tVIsBVRwF9cESAvhBLbqwJftuJtXcx8t-fO4KmB1QaQ/edit?usp=sharing API Routes /api/signup : Handles user signup. Validates email and password, checks if the email is allowed, hashes the password, stores user data in the database, and sends a welcome email. /api/enroll : Handles TOTP enrollment. Generates a TOTP secret, stores it, and returns a QR code for 2FA setup. /api/login : Handles user login. Validates credentials, checks account lock status, generates tokens, and sets them as cookies. /api/validate : Validates the access token and returns user information if valid. /api/token/refresh : Refreshes the access token using a valid refresh token. /api/update_role : Updates the role of a user. /api/logout : Logs out the user by revoking tokens and clearing cookies. /api/request_reset : Initiates a password reset by generating a reset token and sending it via email. /api/reset_password/ : Resets the user's password using a valid reset token.
Read more

Enhancing Flask SSO with Role-Based Access Control (RBAC)

Enhancing Flask SSO with Role-Based Access Control (RBAC) Enhancing Flask SSO with Role-Based Access Control (RBAC) To enhance your Single Sign-On (SSO) application with Role-Based Access Control (RBAC), you need to implement a mechanism to assign roles to users and control access to different routes or resources based on those roles. Here's how you can do it step by step: 1. Extend the Database Schema You'll need to add a role column to the users table so that each user can be assigned a role, such as "admin," "user," or any other custom role. def init_db(): try: with sqlite3.connect('sso_service.db') as conn: c = conn.cursor() c.execute('''CREATE TABLE IF NOT EXISTS tokens (token TEXT PRIMARY KEY, username TEXT, token_type TEXT, expiration DATETIME)''') c.execute('''CREATE TABLE IF NOT EXISTS totp_secrets (username TEXT ...
Read more