James Cookjamescook.hashnode.net·Sep 6, 2022Using OpenID Connect to access Azure from GitHubOpenID support for GitHub in Azure Active Directory was announced this year, opening up several security advancements. As part of this post, an Azure Back to School 2022 special, we go into how to configure OpenID Connect, enabling us to drop the use...Discuss·10 likes·425 readsAzure
Eyram Ataklieyramatakli.hashnode.net·Nov 22, 2022User authentication with OpenID ConnectOpenID Connect (OIDC) is a popular authentication protocol that powers seamless sign-up/sign-in flows across many modern apps and websites. However, there is a ton of fragmented documentation regarding its usage online, which may easily bewilder and ...Discuss·8 likes·32 readsOpenID Connect
Arnaud Dagneliesdagnelies.hashnode.net·Jan 13, 2023Passwordless authentication for your website in 5 minutes!Passwordless authentication using your phone's fingerprint sensor, or face recognition using your webcam is now possible in the browser thanks to the WebAuthn protocol. It is not only more comfortable for users but also more secure since it is two-fa...Discuss·1 like·339 readsauthentication
Emmanuel GautierforCerberAuthemmanuelgautier-1676898909609.hashnode.net·Apr 24, 2023How to Effectively Manage Invalid Tokens in Web and Mobile ApplicationsAs web and mobile applications become increasingly reliant on third-party APIs, it's critical to manage the tokens issued by OpenID Connect flows effectively. Tokens are used to authenticate and authorize users, and when they become invalid, they can...DiscussMastering OAuth2 and OpenID Connect for Secure Authentication and AuthorizationOpenID Connect
Emmanuel GautierforCerberAuthemmanuelgautier-1676898909609.hashnode.net·Apr 19, 2023How to Invalidate an Access Token (JWT)?Access tokens and JSON Web Tokens (JWTs) are widely used in modern web applications as a means of authentication and authorization. An access token is a kind of credential that represents the authorization granted to a client to access a protected re...DiscussMastering OAuth2 and OpenID Connect for Secure Authentication and AuthorizationJWT
Emmanuel GautierforCerberAuthemmanuelgautier-1676898909609.hashnode.net·Apr 5, 2023Understanding OpenID Connect and OAuth2 Grant Types: A Comprehensive GuideIn today's digital world, securing web applications and APIs is essential to protect user data and prevent unauthorized access. OAuth2 and OpenID Connect are two popular authentication and authorization protocols that enable secure access to web appl...Discuss·30 readsMastering OAuth2 and OpenID Connect for Secure Authentication and Authorizationoauth
Emmanuel GautierforCerberAuthemmanuelgautier-1676898909609.hashnode.net·Mar 23, 2023What are OpenId Connect prompts?Technically, the OpenId Connect prompt is a parameter that can be included in the authentication request to control the behavior of the authentication flow. The prompt parameter allows a relying party (RP) to request specific interactions with the us...Discuss·35 readsMastering OAuth2 and OpenID Connect for Secure Authentication and AuthorizationOpenID Connect
Kristof Riebbelskriebbels.hashnode.net·Feb 26, 2023How to know if your data is leaked?Previously on... I am working with the authentication and authorization protocols OpenIDConnect and OAuth2. The identity providers that my customer uses are Auth0 and ItsMe. Safe to say, the nature of my assignment consists of private and security-se...Discuss·66 readsPrivacyprivacy
Arnaud Dagneliesdagnelies.hashnode.net·Feb 7, 2023Passwordless.ID - RoadmapPasswordless.ID is a free public identity provider allowing users to sign in/up in web apps using their fingerprint, face recognition or local authentication mechanisms like swipe pattern or PIN code. The results are no more passwords, a much smoothe...Discuss·130 readsauthentication
Kristof Riebbelskriebbels.hashnode.net·Feb 5, 2023OAuth2 / Open Id Connect / (access|id)_tokenPreviously On… In my previous post, I zoomed in on my assignment. The development is about the creation of a registration of a user, using Auth0 authentication flows, actions,... . My responsibility is the creation of a BFF for the front end using As...Discuss·81 readsSecurityOAuth2
Arnaud Dagneliesdagnelies.hashnode.net·Jan 13, 2023Passwordless authentication for your website in 5 minutes!Passwordless authentication using your phone's fingerprint sensor, or face recognition using your webcam is now possible in the browser thanks to the WebAuthn protocol. It is not only more comfortable for users but also more secure since it is two-fa...Discuss·1 like·339 readsauthentication
Eyram Ataklieyramatakli.hashnode.net·Dec 7, 2022OpenID Connect Authentication Flows-An OverviewThe first part of this two-part series was an introduction to user authentication with OpenID Connect(OIDC). I discussed OpenID Connect as a protocol and how identity providers use it to offer user authentication APIs that provide seamless sign-up an...Discuss·33 readsOpenID Connect
Eyram Ataklieyramatakli.hashnode.net·Nov 22, 2022User authentication with OpenID ConnectOpenID Connect (OIDC) is a popular authentication protocol that powers seamless sign-up/sign-in flows across many modern apps and websites. However, there is a ton of fragmented documentation regarding its usage online, which may easily bewilder and ...Discuss·8 likes·32 readsOpenID Connect
