Okta for single sign-on (SSO) is now available to DNSimple corporate accounts. Link your accounts with Okta today to automate your user management 👀 https://blog.dnsimple.com/2023/03/introducing-okta-as-an-identity-provider/?utm_source=mastodon&utm_medium=social&utm_campaign=okta
#security #management #team #okta #dns #sso

Dear Tech world,
Seamless SSO (Single Sign-On)
#rant #seamless #sso #IT #authentication

Kennt sich wer mit #netbird aus? #github #wireguard #sso #mesh #network

A recap of 2 years of the Treehouse community, including details of challenges around hosting infrastructure.

Matches my conclusion: single sign on is a big blocker to running additional Fediverse services

Infra thread starts here https://social.treehouse.systems/@ariadne/110886130741103158

Anyone building #fediverse tooling should be thinking about #sso in their architecture.

@jasongorman That deep tech stack though. I am constantly amazed at how prevalent that is these days. I don’t understand why. I see people happy to thrown in another layer with abandon. I am a 35 year veteran and every year it gets even more difficult to grok how the thing works. #aws #k8s #ingress #docker #vault #kubectl #sso #ApiContract #HowManyServicesNow #DevIsDifferentFromProd #MyPoorApp #OpenATicket

Huh. Just looked up Discourse #SSO and _maybe_ login with Mastodon will “just work”?

https://meta.discourse.org/t/login-on-discourse-using-mastodon-credentials/91445/3

Ok, I’m at least going to do a test install

#CoSocialWPWiki

Because we haven't fully implemented #SSO, I have to create three accounts for each person we're onboarding. HR just keeps adding more folks to the list. 😭
#WomenInTech

@firefish Is there a way with #Firefish to delegate authentication to an #SSO like Authentik (https://goauthentik.io/integrations/services/mastodon/) via #OIDC, #SAML, #LDAP or similar?

Mit #Keycloak bekommt #UCS einen neuen Standard #IdentityProvider für die sichere Authentifizierung von Nutzer*innen an IT-Diensten über das Internet per Single-Sign-on (#SSO).

Welche Funktionen mit dem neusten Release der UCS Keycloak-App bereitstehen und wie ihr die #Migration auf Keycloak einfach bewerkstelligt lest ihr in unserem Blogartikel:

https://www.univention.de/blog-de/2023/07/keycloak-neue-features/

draft - idea - I like login with google. it's very straightforward and easy. however, there are certain apps and certain times where a person may want to only "login only to this one app". and for those times, I think google should offer an option *in addition* to "Login with google".
something to the effect of "login only to this app". so for example, when logging into google chat, one might see two sign in options:

"login with google"

"login only to this app"

where

"login with google" is the current way where it logs the whole android system into that account along with all the other google apps, which is a good thing but there are times when you don't want that

and

"login only to this one app" where instead of logging into the entire android sytem along with all google apps, it would *just login to that one app*

#singlesignon
#sso
#loginwithgoogle
#continuewithgoogle
#android
#ideas
#lightbulb
#showerthoughts

Question about the Fediverse: does the mastodon handle work as a 'Single Sign On' at other places? Can you log in at some other site with your mastodon handle? Or do you need to make accounts on all those other fediverse places too?

#Fediverse #sso #mastodon #daretoask

What is Customer SSO and Why Should You Implement it? 🤔

Learn more about the advantages of Single Sign-On for your customers and how your business can benefit from a unified login experience.

https://lnkd.in/d-Y-rgaM

#userexperience #authentication #sso #business #experience

draft - i feel like some google services like chat / docs should have a "sign in with microsoft" option because, for things like multiple profiles and such, on Android/ChromeOS, users may switch profiles specifically *to sign out of a* particular account and logging in with Google kinda defeats the purpose. But if they could partner with microsoft to offer a "sign in with microsoft" for Google chat, I feel like they'd be doing themselves a favor.

#googlechat
#sso
#singlesignon
#microsoftteams

Single Sign On (#SSO) if say my work place has the #Microsoft trio of hell, #Windows, #Outlook, and #Teams, and all of it is linked to the account that I log into on the devices, shouldn't i only need to log in to my account once?

FYI this is not my experience, cause of work policy i have to change my password every 60 days, when I change it i have to then re log into Outlook, Teams and then also the wifi... I swear there is an easier way!

We sometimes field requests from people who want to import their existing users in from a separate user database. While we normally recommend the use of a single sign-on plugin (#sso) to act as an alternative authenticator, we also now support user import via CSV.

https://community.nodebb.org/topic/17385/nodebb-plugin-import-users-csv-user-migration-via-csv-upload/1

#nodebb #nocode #csv

https://mastodon.social/@dansup/110664885113087866
#SSO on #Fediverse 😱 pretty cool indeed!! #Pixelfed

👋 Learn how to 𝐪𝐮𝐢𝐜𝐤𝐥𝐲 𝐞𝐧𝐚𝐛𝐥𝐞 𝐬𝐨𝐜𝐢𝐚𝐥 𝐥𝐨𝐠𝐢𝐧 𝐢𝐧 𝐲𝐨𝐮𝐫 𝐰𝐞𝐛𝐬𝐢𝐭𝐞 or app to increase conversion rate and deliver a smoother user experience with Authgear.

https://www.authgear.com/post/social-login-guide

#userexperience #authentication #sso

@freelock

Won't be there, but very interested in the topic. Is it recorded?

#lfnw #drupal #sso #webauthn

So, there are formal security considerations on how to implement "OAuth 2.0 for Browser-Based Apps" using Service Workers.

But if you actually decide to go down this rabbit hole, you definitely would want to functional test your solution THOROUGHLY for ALL browsers. 🫠

#OAuth #OIDC #SSO #AppSec #webdevelopment

(4/4)

[Blog Post] Unauthenticated #XSS to ATO using #SSO Gadget Chain

Just blogged about a vulnerability chain I recently discovered in a private bug bounty program:
https://security.lauritz-holtmann.de/post/csti-xss-sso-gadget-chain/

TL;DR: If you encounter an SSO implementation, make sure to test the /callback endpoint for XSS within the OAuth/OIDC "error_description" parameter.

Always try to escalate "non-exploitable" XSS-vulns (Self-XSS, only possible when user has no active session, …) using SSO gadgets.

#BugBounty #VueJS #OIDC #OAuth