zlacker

[parent] [thread] 2 comments
1. tptace+(OP)[view] [source] 2020-04-14 17:29:30
You said "OAuth only does authz and must be combined with other technologies to get authn"; obviously, that's not true, in the sense that you can simply use OIDC --- a dialect of OAuth --- to get both.

Since OIDC is better than SAML, which is probably the scariest security standard on the Internet, I think it's worth being clear to people that OIDC/OAuth is viable.

The SAML authz story, for what it's worth, is pretty shady.

replies(1): >>kube-s+s2
2. kube-s+s2[view] [source] 2020-04-14 17:41:44
>>tptace+(OP)
For sure. I never said SAML was any good -- I said I found it to be simpler. :)
replies(1): >>tptace+g3
◧◩
3. tptace+g3[view] [source] [discussion] 2020-04-14 17:45:30
>>kube-s+s2
For developers, they're both just libraries. As protocols to implement, SAML is drastically harder.
[go to top]