Conversation
with email system, token management, JWT blacklist, and Sidekiq schedule Tokens Persistidos: Reset tokens agora são armazenados no banco, permitindo invalidação Uso Único: Tokens de reset só podem ser usados uma vez Expiração: Tokens expiram automaticamente (1 hora para reset) Auditoria: IP e User Agent são registrados Blacklist: Tokens JWT podem ser revogados antes da expiração Logout Real: Logout agora invalida o token no servidor
Contributor
🔒 Brakeman Security Scan
✅ No high confidence issues found. |
Contributor
📦 Dependency Security Check✅ No known vulnerabilities found. View Report |
Contributor
🔍 Semgrep Static Analysis
|
Contributor
🔐 Security Scan Summary
✅ All security checks passed! |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
with email system, token management, JWT blacklist, and Sidekiq schedule
Tokens Persistidos: Reset tokens agora são armazenados no banco, permitindo invalidação
Uso Único: Tokens de reset só podem ser usados uma vez
Expiração: Tokens expiram automaticamente (1 hora para reset)
Auditoria: IP e User Agent são registrados
Blacklist: Tokens JWT podem ser revogados antes da expiração
Logout Real: Logout agora invalida o token no servidor