This Week's Trending Top

This Month's Trending Top

This Year's Trending Top

Last Three Year's Trending Top

dokuzbir
This week i focus to web security. I read blogposts watch videos . As far as i know ecto queries protect us from SQL injection, changeset...
New
acrolink
I have noticed that the session cookie is not set to secure, how to turn the secure flag on for Phoenix sessions?
New
zingo
I’m learning Elixir and Phoenix now and really like it so far. However I started thinking of security. What is the history of 0day-explo...
New
apoorv-2204
How do I set security header for phoenix elixir application. I used this plug, but its not working. defmodule Provider.Plugs.SecurityHe...
New
p4d50
Hi guys, I have a question, so I’m wondering what is the best way to do this? I’m using Phoenix gen command, for generating liveview co...
New
wtcross
I am seeking guidance on security concerns when using 3rd party APIs within a LiveView. Ory Kratos is an API-first identity and user mana...
New
BrightEyesDavid
A new project has a requirement that browsing content and searching while not logged in involves zero cookies. When the same pages are vi...
New
coen.bakker
I have a hobby project that I deploy on fly.io since recently. When I check the logs (with flyctl logs) I can see passwords of users (on...
New
vmg-dev
As the title says, I want to run untrusted code in a v8 isolate and I’m wondering if elixir processes provide similar isolation as os pro...
New
ryanzidago
Why is it recommended (from the official Cloak doc) to do this: # Assumes that you have a CLOAK_KEY environment variable containing a ke...
New
scherrey
We’re trying to build out some infrastructure to allow machine owners with GPUs to “rent out” their machines and allow remote users to pu...
New
ariandanim
I hope NimbleTOTP become default security feature (One Time Password) for the next Phoenix App I hope Hammer become default security f...
New

Trending Over Three Years Top

Crowdhailer
I’m trying to set up an elixir application that uses OpenID connect for authentication. I don’t want to roll my own security so I am usin...
New
pedromvieira
Recently we passed a security audit for a new customer that used some security analysis tools and they pointed out some Blind SQL Injecti...
New
kerryb
Hi, I use sobelow to highlight potential security issues, and the latest version has started warning if no content-security-policy heade...
New
ASCrookes
Hello, I have recently been working with Phoenix Channels. The whole process has been incredibly straightforward so far! The one thing I...
New
cgraham
Hello, I am trying to get an alexa skill certified by Amazon. As part of the certification process, they want the server to validate th...
New
marcin
Hi! How can I disable introspection in Absinthe/GraphQL? I would like the GraphQL API to respond only to defined queries and mutations,...
New
SpoonWood
Hello Everyone, We are using LiveView to build a feature that displays some information in the admin dashboard of our Application, but w...
New
vlad.grb
Is there any way to protect and obfuscate my elixir application? Is it required at all? As I understood I can remove debug info but does ...
New
idi527
I’ve noticed this warning https://github.com/phoenixframework/phoenix/blob/v1.3/lib/phoenix/token.ex#L225-L231 in phoenix, and wondered...
New
acrolink
I understand that using a database storage for authentication tokens as provided by guardian_db: a. makes it possible to revoke tokens s...
New
nikolis
Hello Fellas, I need to wrap my head around a topic that I do not seem to see through. I am developing a phoenix application which expo...
New
jstlroot
Good day to you all, beloved Elixir community! :heart: I was wondering if, for security reasons, introspection of certain fields could b...
New
easco
The Mix.Shell.IO module allows me to prompt the user for some information. I would like to use that functionality in a script I am writi...
New
tirana
Let’s say, there’s a server I have access to and which belongs to a customer. I’ve set up and launched a Phoenix app on it. Because of o...
New
dave0
I’ve used mix phx.gen.auth to create an authentication system. Now the user session/reset password is part of the non-LiveView app while ...
New
  • Follow
  • Join
  • Shape
the conversation

Latest on Elixir Forum

Elixir Forum

Similar Portals

    None added yet

We're in Beta

About us Mission Statement