Refactoring the DPOP mecanism
Investigation on security topics I just figured out the request we sent are huge and this is likely to affect performances. Which is more or less related to availability and it's my job to bother you with that ! :)
I can see in many resquest we are sending a DPOP
header in addition to the expected Authorization
header. This double the size of a quite heavy sting.
Also we could rework this header to rely on elliptic curves which would lower the size of the result string. As we are supposed to send this header for every authenticated requests. It could make a good improvement.