summaryrefslogtreecommitdiff
path: root/yuck.mdwn
AgeCommit message (Expand)AuthorFilesLines
2022-09-02fix: markup for rikiLars Wirzenius1-24/+24
2019-08-12Add: new Yuck requirementsLars Wirzenius1-0/+6
2019-06-14Add: requirement that authn can be limited by time, IP addressLars Wirzenius1-0/+4
2019-06-14Fix: typeLars Wirzenius1-1/+1
2019-05-19Add: CREDNOTIFY requirementLars Wirzenius1-0/+3
2019-05-19Add: ACCOUNTAPI requirementLars Wirzenius1-0/+3
2019-05-19Change: KILLSESSION requirement to be about individual sessionsLars Wirzenius1-2/+2
2019-05-19Add: note to arch diagram which component is the facadeLars Wirzenius1-1/+1
2019-04-01Fix: drop unnecessary wordLars Wirzenius1-1/+1
2019-03-31Fix: typoLars Wirzenius1-1/+1
2019-03-31Change: make requirements list be less dense, space-wiseLars Wirzenius1-0/+22
2019-03-31Change: make grant and flow stand out using boldfaceLars Wirzenius1-2/+2
2019-03-31Add: paragraph about why a separate IDP is good architectureLars Wirzenius1-0/+12
2019-03-31Add: notion of single-use random link for password resetsLars Wirzenius1-1/+3
2019-03-31Add: note the browser is insecureLars Wirzenius1-1/+3
2019-03-31Add: requirement that signing keys be rotated, distributed securelyLars Wirzenius1-0/+3
2019-03-31Add: note that access tokens can't be revokedLars Wirzenius1-2/+4
2019-03-31Add: facade session storageLars Wirzenius1-0/+7
2019-03-31Add: peppering of secretsLars Wirzenius1-1/+2
2019-03-28Add: requirements for disabling accounts, killing sessionsLars Wirzenius1-0/+5
2019-03-26Add: ACL requirementsLars Wirzenius1-0/+5
2019-02-25Add: Yuck requirements for password reset, temporary account locksLars Wirzenius1-0/+7
2019-01-26Fix: how to give feedback on YuckLars Wirzenius1-2/+2
2019-01-26Change: Move NOTE to top of page, before TOCLars Wirzenius1-2/+2
2019-01-26Add: Yuck arch doc pageLars Wirzenius1-0/+488