zlacker

[return to "A Tour of WebAuthn"]
1. xenoph+A6[view] [source] 2024-12-26 19:35:01
>>caust1+(OP)
I've always wanted to write a serverless OIDC provider/SAML IdP but got stymied by the WebAuthn standards, which don't seem to be written for normal people. :( But this e-book looks like it might have enough actual code interleaved with exposition to serve as more than just a high-level intro.
◧◩
2. cybera+ni[view] [source] 2024-12-26 21:25:01
>>xenoph+A6
OIDC providers are surprisingly NOT complicated! I created one to implement single sign-on with AWS, and it ended up being only around 200 lines of code in Go. All you need to do is create a JSON blob that is signed by a public key that is known to the consumer of the IDP.

I'll need to do a write-up for it.

[go to top]