scadalink-design

dohertj2/scadalink-design

Fork 0

Commit Graph

Author	SHA1	Message	Date
Joseph Doherty	cbc78465e0	Refine Security & Auth: LDAP bind, JWT sessions, idle timeout, failure handling Replace Windows Integrated Auth with direct LDAP bind (username/password login form). Add JWT-based sessions with HMAC-SHA256 shared key for load balancer compatibility. 15-minute token refresh re-queries LDAP for current group memberships. 30-minute configurable idle timeout. LDAP failure: new logins fail, active sessions continue with current roles until LDAP recovers.	2026-03-16 08:16:29 -04:00
Joseph Doherty	1944f94fed	Initial design docs from claude.ai refinement sessions	2026-03-16 07:39:26 -04:00

Author

SHA1

Message

Date

Joseph Doherty

cbc78465e0

Refine Security & Auth: LDAP bind, JWT sessions, idle timeout, failure handling

Replace Windows Integrated Auth with direct LDAP bind (username/password login form).
Add JWT-based sessions with HMAC-SHA256 shared key for load balancer compatibility.
15-minute token refresh re-queries LDAP for current group memberships. 30-minute
configurable idle timeout. LDAP failure: new logins fail, active sessions continue
with current roles until LDAP recovers.

2026-03-16 08:16:29 -04:00

Joseph Doherty

1944f94fed

Initial design docs from claude.ai refinement sessions

2026-03-16 07:39:26 -04:00

2 Commits