GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Embed Notice

HTML Code

Corresponding Notice

  1. Embed this notice
    Richard "mtfnpy" Harman (xabean@infosec.exchange)'s status on Tuesday, 29-Nov-2022 04:07:15 JSTRichard "mtfnpy" HarmanRichard "mtfnpy" Harman
    in reply to
    • Jane Manchun Wong :janewong:

    @wongmjane saw the same thing over here on mastodon, even after nuking cookies!

    The web UI was even still performing new requests *including* an Authorization: Bearer [token] header, which made me think it's an artifact of the web UI using JWT tokens (which have a long lifetime and aren't often revoked), and the webapp had the JWT token stashed away somewhere in the DOM in javascript.

    In conversationTuesday, 29-Nov-2022 04:07:15 JST from infosec.exchangepermalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.