Proxmox in Enterprises: I'm often asked, 'Can we use our Active Directory, LDAP, or OIDC with Proxmox?' Yes, you can!
Let's have quick dive into installing and configuring Authentik and configure Proxmox VE to use OIDC as an additional authentication realm.
#Proxmox #ProxmoxVE #opensource #Authentik #OpenID #OpenIDConnect #OIDC #EntraID #enterprise #homelab
https://gyptazy.com/proxmox-authentik-oidc-install-configure-and-connect-authentik-to-proxmox-ve/
Зачем использовать OIDC с GitHub Actions?
OIDC GitHub Actions может запрашивать временные токены, действительные только на время выполнения workflow, что значительно повышает безопасность и упрощает управление доступом.
https://habr.com/ru/articles/908282/
#aws #oidc #terraform #security #iam #cicd #iac #credentials
[Auth0] Auth0でシンプルに始めるOIDC & OAuth 2.0入門
https://dev.classmethod.jp/articles/auth0-simple-oidc-oauth2/
#dev_classmethod #Okta_Customer_Identity_Cloud_Auth0 #認証認可 #OIDC #OAuth_2_0
Replay Identity Days 2024 - Déploiement des recommandations de l’ANSSI pour sécuriser OpenID Connect
https://peertube.nomagic.uk/videos/watch/674289d3-cfa3-4657-8a96-8c0e50660e56
This lazy Labour Day, I changed to a bicycle in the name of multimodality
This #METRO I'm happy to report, we managed to implement single sign-on in the issue tracker. We want it to spread, but Bimba will always be available anonymously and without log-in. Bringing #OIDC to #Roundup tracker wasn't as easy as it sounds
This month, I'm taking a legally required two-week break from the $dayjob; I will either do lots more in Bimba, or spend it resting and do nothing
[Auth0] Auth0とAWSのOIDC連携でセキュアなS3アクセス制御を実現する
https://dev.classmethod.jp/articles/auth0-aws-iam-s3/
#dev_classmethod #Okta_Customer_Identity_Cloud_Auth0 #認証認可 #OIDC #Amazon_S3 #AWS_IAM
Finally managed to get #OIDC post-login redirects to specific "URLs" (well, #libadwaita `NavigationView` tags, to be precise) to work. That was quite a bit more complex than I expected it to be!
Finally managed to get #OIDC post-login redirects to specific "URLs" (well, #libadwaita `NavigationView` tags, to be precise) to work. That was quite a bit more complex than I expected it to be!
Poisoned pipeline execution combined with lax #OIDC federation policies can lead to privilege escalation. By not relying on broad trust relationships, organizations can strengthen their security posture. Read more: https://bit.ly/41Wt1D1
Still thinking about that time when I was attempting to help an OSS project understand why they really should implement a recommendation from a security RFC, and one of the core developers who wasn't getting the importance asked an #LLM how critical my suggestion really is to security. That time I think it answered ~"very critical", but I can't stop thinking that it was pretty much a fluke that it managed to recommend following a bit of an RFC that most humans misunderstand most of the time, and what this means longer term for "non-core" portions of software such as security. I don't think it'll be good when people stop trying to understand security and just vibe it from a slopmachine.
For the security aware, this was about public #OIDC RPs and that PKCE really isn't optional for them.
Deploy Static Sites to Azure CDN with GitHub Actions OIDC
### #Cloudflare open sources #OPKSSH to bring Single Sign-On #SSO to #SSH
This week, it was officially open-sourced under the umbrella of the #OpenPubkey project, itself became a #Linux Foundation open-source initiative in 2023, OPKSSH remained closed-source until now. Making it easy to #authenticate to #servers over SSH using #OpenID Connect (#OIDC), allowing developers to ditch manually configured SSH keys in favor of identity provider-based access.
