Skip to content

Add section for reauthentication after risk events #1691

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 6 commits into from
Closed

Add section for reauthentication after risk events #1691

wants to merge 6 commits into from

Conversation

pankajtaneja5
Copy link
Contributor

This PR adds a new section titled "Reauthentication After Risk Events" to the Session Management Cheat Sheet.

It addresses Issue #1690 by providing best practices for enforcing reauthentication following high-risk events such as:

  • Password changes
  • Login from new or suspicious IPs/devices
  • Account recovery challenges

This aligns with modern adaptive authentication strategies to ensure session integrity and user account safety.

You're A Rockstar

Thank you for submitting a Pull Request (PR) to the Cheat Sheet Series.

🚩 If your PR is related to grammar/typo mistakes, please double-check the file for other mistakes in order to fix all the issues in the current cheat sheet.

Please make sure that for your contribution:

  • In case of a new Cheat Sheet, you have used the Cheat Sheet template.
  • All the markdown files do not raise any validation policy violation, see the policy.
  • All the markdown files follow these format rules.
  • All your assets are stored in the assets folder.
  • All the images used are in the PNG format.
  • Any references to websites have been formatted as [TEXT](URL)
  • You verified/tested the effectiveness of your contribution (e.g., the defensive code proposed is really an effective remediation? Please verify it works!).
  • The CI build of your PR pass, see the build status here.

If your PR is related to an issue, please finish your PR text with the following line:

This PR fixes issue #<REPLACE WITH ISSUE NUMBER>.

Thank you again for your contribution 😃

@pankajtaneja5 pankajtaneja5 changed the title Add section on reauthentication after risk events Add section for reauthentication after risk events Jun 11, 2025
@pankajtaneja5
Copy link
Contributor Author

Closing this in favor of a cleaned-up version: #1692

@pankajtaneja5 pankajtaneja5 mentioned this pull request Jun 11, 2025
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kwwall kwwall Awaiting requested review from kwwall kwwall will be requested when the pull request is marked ready for review kwwall is a code owner

@mackowski mackowski Awaiting requested review from mackowski mackowski will be requested when the pull request is marked ready for review mackowski is a code owner

@jmanico jmanico Awaiting requested review from jmanico jmanico will be requested when the pull request is marked ready for review jmanico is a code owner

@szh szh Awaiting requested review from szh szh will be requested when the pull request is marked ready for review szh is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@pankajtaneja5