Transition your #ArcGIS accounts to organization-specific (#SAML or #OpenID Connect) accounts https://tinyurl.com/mr25xhkf
#security #ArcGISAdmin #ArcGISOnline #GIS #esri #WebGIS #GISchat #geospatial #mapstodon @esri @esrifederalgovt @esrislgov @arcgisonline @esritraining
Today I released the first version of #Lokksmith, a #KotlinMultiplatform OpenID Connect client library for #Android and #iOS. I've been working on this in my spare time for the past few weeks. I finally reached a state that I can proudly show to the world.
The first release contains a fully working implementation for Android. The iOS integration is not yet available. Any help regarding iOS is greatly appreciated.
Keycloak and Okta Integration: Complete Developer Guide
I love #PocketID, a light weight #selfhosted #OIDC using only #Passkey.
After using it for several months with an LXC installation using Proxmox Helper Scripts, I noticed that the service runs as root. I also learned that a VM installation is more secure than an LXC. This article will guide you through installing Pocket-ID as a non-root service on Debian. Additionally, there's an upgrade script included.
#Proxmox #debian #selfhosting #homelab #openID #passkeys #SSO
https://www.lucasjanin.com/2025/06/02/pocket-id-bare-metal-installation-on-debian
Après avoir utilisé #PocketID pendant plusieurs mois avec une installation LXC via les Proxmox Helper Scripts, j'ai remarqué que le service s'exécute en tant que root. J'ai également appris qu'une VM est plus sécurisée qu'un LXC. Cet article vous guidera dans l'installation de PocketID en tant que service non root sur Debian. De plus, un script de mise à niveau est inclus.
#Proxmox #debian #selfhosted #selfhosting #homelab #OIDC #openID #passkey #passkeys #SSO
https://www.lucasjanin.com/2025/06/02/pocket-id-installation-bare-metal-sur-debian/
Have you checked out the latest PKP tech sessions?
Catch demos of #OpenJournalSystems and #Metabase business intelligence tools, as well as how to use the #OpenID plugin with OJS, #OpenMonographPress and #OpenPreprintSystems!
Access the playlist: https://youtube.com/playlist?list=PLg358gdRUrDVkBczp0b815UxDtyqEc62r&si=7O4szrQP0Z0O2MTj
🌗 JSON Web Token (JWT) 十週年與未來展望
➤ 網路安全標準十年演進與未來挑戰
✤ https://self-issued.info/?p=2708
本文回顧了 JSON Web Token (JWT) 在十年前成為 RFC 7519 標準的里程碑。JWT 及其相關規格已成為現代網路安全的重要基石,廣泛應用於身份驗證和授權。作者強調了 JWT 的成功,並介紹了持續進行的工作,以確保 JWT 在未來十年內的安全性,包括更新最佳實踐規範,以及修補已知的漏洞。
+ 感覺 JWT 已經是業界標準了,沒想到還有持續更新,確保安全真的非常重要。
+ 這篇文章讓我更瞭解 JWT 的發展歷程,也意識到網路安全需要不斷演進。
#網路安全 #JSON Web Token #OAuth #OpenID
Proxmox in Enterprises: I'm often asked, 'Can we use our Active Directory, LDAP, or OIDC with Proxmox?' Yes, you can!
Let's have quick dive into installing and configuring Authentik and configure Proxmox VE to use OIDC as an additional authentication realm.
#Proxmox #ProxmoxVE #opensource #Authentik #OpenID #OpenIDConnect #OIDC #EntraID #enterprise #homelab
https://gyptazy.com/proxmox-authentik-oidc-install-configure-and-connect-authentik-to-proxmox-ve/
Authelia open-source authentication and authorization server passes OpenID Connect certification, confirming full conformance with implemented profiles.
https://linuxiac.com/authelia-authentication-server-achieves-openid-certified-status/
Android adds OpenID support for simpler digital credentials https://www.developer-tech.com/news/android-adds-openid-support-for-simpler-digital-credentials/ #google #mobile #privacy #developers #coding #opensource #programming #openid #android #tech #news #technology
European Identity and Cloud Conference 2025
https://www.kuppingercole.com/events/eic2025
I am sorry that I can't attend #EIC2025 this year
The Oregon State University's Open Source Lab needs your help 🤝 !
We at #Inkscape rely on them for hosting our website 🌐 , mailing lists 📨 , mail servers 📮 and DNS ℹ️ .
They are also a host for many other open source projects - e.g. #Drupal, #Gentoo Linux, #Debian, #Fedora, #phpBB, #OpenID, #Buildroot/#Busybox, #Cinc, …
Please consider donating 💌 to them so they can keep their services running for all of us!
Configuring Forwarded Headers in .NET when working with Azure Application Gateway and App Service
You can use JWTs for client authentication with OAuth/OIDC, but it does NOT require you to specify the `client_id` POST parameter. So you are supposed to parse the complete JWT token _first_ before validating the signature to extract the `sub`, which is actually the `client_id` of the client/RP in order to find the set of keys that can verify the JWT that you just parsed and used unverified. What the hell.
"The problem of general OIDC identity provider support in clients" https://utcc.utoronto.ca/~cks/space/blog/tech/OIDCGeneralOPSupportProblem by @cks
#openid #openid_connect #oauth2
Me dicen que puedo usar el flujo de Código de Autorización de #OpenID en una app nativa sin usar un agente de usuario externo (navegador). Atacando directamente a la API del proveedor (en este caso Keycloak).
Pero leo la especificación, al proveedor y la experiencia de otros desarrolladores y, si entiendo bien, no se puede.
DRAMA. LLUM. FOC. DESTRUCCIÓ.
### #Cloudflare open sources #OPKSSH to bring Single Sign-On #SSO to #SSH
This week, it was officially open-sourced under the umbrella of the #OpenPubkey project, itself became a #Linux Foundation open-source initiative in 2023, OPKSSH remained closed-source until now. Making it easy to #authenticate to #servers over SSH using #OpenID Connect (#OIDC), allowing developers to ditch manually configured SSH keys in favor of identity provider-based access.
Cloudflare open-sources OPKSSH, bringing single sign-on to SSH with OpenID Connect and eliminating the need to manage long-lived SSH keys.
https://linuxiac.com/cloudflare-open-sources-opkssh/
#Cloudflare open-sourcing #OpenPubkey #SSH (OPKSSH): integrating single sign-on with SSH #OpenID #OIDC https://blog.cloudflare.com/open-sourcing-openpubkey-ssh-opkssh-integrating-single-sign-on-with-ssh/
