Add docs

1 files changed, 49 insertions, 0 deletions

diff --git a/docs/refs.bib b/docs/refs.bib
new file mode 100644
index 0000000..d2b1a2f
--- /dev/null
+++ b/docs/refs.bib
@@ -0,0 +1,49 @@
+@MISC{OWASP:1,
+    HOWPUBLISHED="\url{https://owasp.org/www-project-mobile-top-10/2016-risks/m6-insecure-authorization}",
+    AUTHOR="The OWASP® Foundation",
+    TITLE="M6: Insecure Authorization",
+    YEAR=2016
+}
+@MISC{OWASP:2,
+    HOWPUBLISHED="\url{https://owasp.org/www-project-mobile-top-10/2016-risks/}",
+    AUTHOR="The OWASP® Foundation",
+    TITLE="Top 10 Mobile Risks - Final List 2016",
+    YEAR=2016
+}
+@MISC{AUTH0:1,
+    HOWPUBLISHED="\url{https://auth0.com/intro-to-iam/what-is-authorization/}",
+    TITLE="What is Authorization?"
+}
+@MISC{JWT:1,
+    HOWPUBLISHED="\url{https://www.rfc-editor.org/rfc/rfc7519}",
+    AUTHOR="M. Jones, J. Bradley, N. Sakimura",
+    TITLE="JSON Web Token (JWT)",
+    MONTH="May",
+    YEAR=2015,
+}
+@MISC{HMACSHA:1,
+    HOWPUBLISHED="\url{https://en.wikipedia.org/wiki/HMAC}",
+    TITLE="HMAC"
+}
+@MISC{JWT:2,
+    HOWPUBLISHED="\url{https://jwt.io/}",
+}
+@MISC{DJ-REST-AUTH:1,
+    HOWPUBLISHED="\url{https://dj-rest-auth.readthedocs.io/en/latest/installation.html#json-web-token-jwt-support-optional}",
+}
+@MISC{PYJWT:1,
+    HOWPUBLISHED="\url{https://pyjwt.readthedocs.io/en/latest/}",
+}
+@MISC{JWT-ATTACK:1,
+    HOWPUBLISHED="\url{https://portswigger.net/web-security/jwt}",
+}
+@MISC{JWK:1,
+    HOWPUBLISHED="\url{https://www.rfc-editor.org/rfc/rfc7517}",
+    AUTHOR="M. Jones",
+    TITLE="JSON Web Key (JWK)",
+    MONTH="May",
+    YEAR=2015,
+}
+@MISC(XHR:1,
+    HOWPUBLISHED="\url{https://developer.mozilla.org/en-US/docs/Glossary/XHR_(XMLHttpRequest)}"
+}