zlacker

[return to "Show HN: Skip the SSO Tax, access your user data with OSS"]
1. hnlmor+7W[view] [source] 2023-04-11 17:02:43
>>mathia+(OP)
I really want to like this but the limitations described, requiring an admin account with 2FA disabled, makes this more risky than not using it at all.

Until those limitations are resolved, if that’s even possible, this feels like an audit hack rather than a security solution.

◧◩
2. PhLR+8X[view] [source] 2023-04-11 17:06:38
>>hnlmor+7W
In future versions it will be possible to do the same with, for example, your Google SSO sign-in and 2FA enabled. The reason for the limitation is that we simply wanted to get it out into the world and see if anybody is as excited about it as we are.
◧◩◪
3. tracke+X62[view] [source] 2023-04-11 22:23:39
>>PhLR+8X
For reference, the azure client, opens a browser for the login, which redirects to a dns address that equates to "localhost" on a port that will effectively get the final auth tokens to the local instance, which then persists and shuts down the service. Should be able to do very similar.
[go to top]