Configuring the .well-known endpoint to return OpenID Connect (OIDC) metadata about the authorization server with IBM Security Verify Access (ISAM/ISVA).
All tagged Browser
Setting SameSite and Other Cookie Attributes using WebSEAL
How to be more resistent to things such as cross-site scripting (XSS), man-in-the-middle attacks and cross-site request forgery attacks (CSRF).
Hacking Google? - Protecting Yourself From Google Dorking
For the normal individual, Google is only a web index used to discover content, pictures, recordings, and news. In the infosec world, Google is a valuable hacking apparatus.
HTTP Transformation - XSLT-buffer-size
The HTTP requests and responses received by WebSEAL are expressed as XML objects and can be manipulated using XSL transformations. Here are some things to look out for In IBM Security Verify Access 10.
Attribute-based Authorization - ACL / POP
Configuring a protected object policy for additional attribute-based authorization when protecting APIs or a resource using WebSEAL.
Creating Cookies with Javascript
Easily set, retrieve and remove cookies in a infomap or HTML error page using some simple JavaScript functions.
Blocking Internet Explorer - HTTP XSLT
Configuring WebSEAL to inspect and block Internet Explorer from accessing your site using HTTP XSL Transform.