Many people use it through Spring Security or Pac4j but the lib is relatively easy to use directly (particularly if you know the protocols) and can be used to add OIDC support to Java apps with much less complexity than those Spring or Pac4j authentication frameworks (but at the cost of having to handle some of the Web security yourself, mainly around CSRF)
Every time I get to set up #oidc on a new app, I am mentally preparing for a 3-day marathon of reading some half-useful docs and tweaking options until it clicks.
I get it, software security is hard (and rightfully so), but this is just nuts.
Wer mag, kann bei den Chemnitzer Linuxtagen was über Single Sign-on für Webanwendungen von mir hören. Ist aber für die, die sonntags morgens nicht verschlafen. 😉
🌟 This is the official Mastodon account for LemonLDAP::NG, a Web Single Sign On free software compatible with many open standards like CAS, SAML and OpenID Connect.
ℹ️ We will publish here information about releases and new features. Please follow us!
With @wildflyas 29, it’s now possible to secure the WildFly Management Console with #OIDC using the #Elytron OIDC Client subsystem. Want to learn more? Check out this blog post:
Security-related highlights: iCloud Keychain for Managed Apple ID and Passkeys at work! Also: custom IdPs for federation: OIDC, SCIM and Shared Signals (https://sharedsignals.guide)! New Platform SSO features as well! Managed Device Attestation for macOS! Watch for sessions later this week for more info.
Starting today, PyPI package maintainers can adopt a new, more secure publishing method that does not require long-lived passwords or API tokens to be shared with external systems.