#authorization — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #authorization, aggregated by home.social.
-
A phrase I really do not like is: "I told you so." Usually, people say it after something has already happened that could have been prevented. After systems have already shown their limitations. The recent Lithuania registry breach reminded me once again how important access infrastructure has become. Especially when digital systems operate around government data, real estate, legal entities, and public trust. But through calm engineering discussion, collaboration, and practical security architecture. Article: https://www.antonmb.com/en/blog/rethinking-access-security-after-the-lithuania-breach #CyberSecurity #Authentication #Authorization #AccessControl #ZeroTrust #SecurityArchitecture #GovTech #SecurityEngineering -
A phrase I really do not like is: "I told you so." Usually, people say it after something has already happened that could have been prevented. After systems have already shown their limitations. The recent Lithuania registry breach reminded me once again how important access infrastructure has become. Especially when digital systems operate around government data, real estate, legal entities, and public trust. But through calm engineering discussion, collaboration, and practical security architecture. Article: https://www.antonmb.com/en/blog/rethinking-access-security-after-the-lithuania-breach #CyberSecurity #Authentication #Authorization #AccessControl #ZeroTrust #SecurityArchitecture #GovTech #SecurityEngineering -
ExxonMobil seeks environmental approval for new offshore project in Guyana
Mon, May 25, 2026 at 1:56 PM UTC Exxon Mobil?s new headquarters are seen under construction in Georgetown,…
#Environment #Authorization #EPA #ExxonMobil #Guyana
https://www.europesays.com/3016442/ -
ExxonMobil seeks environmental approval for new offshore project in Guyana https://www.byteseu.com/2051921/ #authorization #environment #EPA #ExxonMobil #guyana
-
European Commission grants marketing authorization to Pharming’s Joenja® (leniolisib) – the first approved treatment for APDS in the European Union
Joenja® (leniolisib) is first approved treatment in the European Union for activated phosphoinositide 3-kinase delta (PI3Kδ) syn…
#Europe #EU #EuropeanCommission #(leniolisib) #APDS #approved #Authorization #Commission #European #first #for #grants #in #Joenja #marketing #Pharming’s #the #to #treatment #Union
https://www.europesays.com/europe/50537/ -
https://www.europesays.com/iran/123772/ IRGC Provides Update on Vessels Crossing Strait of Hormuz #24 #26 #after #announced #Authorization #Corps #Crossing #from #guards #have #Hormuz #hours #including #IRGC #Islam #Islamic #Navy #obtaining #of #Oil #on #over #passed #past #Provides #Revolution #strait #StraitOfHormuz #tankers #that #the #through #Times #Update #vessels
-
pour une gestion des rôles avancée sous #symfony, une excellente video sur le sujet : https://phpc.tv/w/m5Bd8JGKNToiXFsygxG6sH
après, normalement, y a plus qu'à ..
un grand merci @kaamos
d'autant plus que c'est didactique, pédagogique, .. awesome ! !
#symfony #authorization #voters -
pour une gestion des rôles avancée sous #symfony, une excellente video sur le sujet : https://phpc.tv/w/m5Bd8JGKNToiXFsygxG6sH
après, normalement, y a plus qu'à ..
un grand merci @kaamos
d'autant plus que c'est didactique, pédagogique, .. awesome ! !
#symfony #authorization #voters -
Never give in. Never give in. Never, never, never, never, in nothing, great or small, large or petty, never give in except to convictions of honour and good sense. Winston Churchill https://antonmb.com/en/blog/some-ideas-arrive-before-the-market-has-words-for-them #Authentication #Cybersecurity #AI #Authorization #AccessControl #Cryptography #AIAgents #Toqenapp -
Never give in. Never give in. Never, never, never, never, in nothing, great or small, large or petty, never give in except to convictions of honour and good sense. Winston Churchill https://antonmb.com/en/blog/some-ideas-arrive-before-the-market-has-words-for-them #Authentication #Cybersecurity #AI #Authorization #AccessControl #Cryptography #AIAgents #Toqenapp -
Never give in. Never give in. Never, never, never, never, in nothing, great or small, large or petty, never give in except to convictions of honour and good sense. Winston Churchill https://antonmb.com/en/blog/some-ideas-arrive-before-the-market-has-words-for-them #Authentication #Cybersecurity #AI #Authorization #AccessControl #Cryptography #AIAgents #Toqenapp
-
Never give in. Never give in. Never, never, never, never, in nothing, great or small, large or petty, never give in except to convictions of honour and good sense. Winston Churchill https://antonmb.com/en/blog/some-ideas-arrive-before-the-market-has-words-for-them #Authentication #Cybersecurity #AI #Authorization #AccessControl #Cryptography #AIAgents #Toqenapp
-
Never give in. Never give in. Never, never, never, never, in nothing, great or small, large or petty, never give in except to convictions of honour and good sense. Winston Churchill https://antonmb.com/en/blog/some-ideas-arrive-before-the-market-has-words-for-them #Authentication #Cybersecurity #AI #Authorization #AccessControl #Cryptography #AIAgents #Toqenapp -
🔗 RBAC in Laravel: A Practical Deep Dive
https://wendelladriel.com/blog/rbac-in-laravel-a-practical-deep-dive
#php #security #laravel #authorization #rbac -
IBRX Global Rollout: EU, MENA, and Asia Shape 2026-27 Catalysts
ImmunityBio IBRX is moving from a U.S.-led launch to a broader international rollout. Authorizations now span the United…
#Europe #EU #Authorization #Authorizations #bladdercancer #CIS #EuropeanUnion #ImmunityBio #SaudiArabia
https://www.europesays.com/europe/24441/ -
RBACX — что изменилось за полгода: от простого RBAC/ABAC до ReBAC с ИИ-генерацией политик
Полгода назад написал первую статью про RBACX — RBAC/ABAC-движок авторизации для Python. С тех пор вышло 25+ релизов, и библиотека стала заметно мощнее: добавил ReBAC с поддержкой OpenFGA и SpiceDB, пакетную проверку прав, ИИ-генерацию политик из OpenAPI-схемы, Redis-кэш, async Django, шортхэнд для ролей и закрыл три security-бага. Рассказываю что, зачем и как это вообще делается в одного.
https://habr.com/ru/articles/1019690/
#python #rbacx #rbac #abac #pdp #security #REBAC #authorization
-
RBACX — что изменилось за полгода: от простого RBAC/ABAC до ReBAC с ИИ-генерацией политик
Полгода назад написал первую статью про RBACX — RBAC/ABAC-движок авторизации для Python. С тех пор вышло 25+ релизов, и библиотека стала заметно мощнее: добавил ReBAC с поддержкой OpenFGA и SpiceDB, пакетную проверку прав, ИИ-генерацию политик из OpenAPI-схемы, Redis-кэш, async Django, шортхэнд для ролей и закрыл три security-бага. Рассказываю что, зачем и как это вообще делается в одного.
https://habr.com/ru/articles/1019690/
#python #rbacx #rbac #abac #pdp #security #REBAC #authorization
-
RBACX — что изменилось за полгода: от простого RBAC/ABAC до ReBAC с ИИ-генерацией политик
Полгода назад написал первую статью про RBACX — RBAC/ABAC-движок авторизации для Python. С тех пор вышло 25+ релизов, и библиотека стала заметно мощнее: добавил ReBAC с поддержкой OpenFGA и SpiceDB, пакетную проверку прав, ИИ-генерацию политик из OpenAPI-схемы, Redis-кэш, async Django, шортхэнд для ролей и закрыл три security-бага. Рассказываю что, зачем и как это вообще делается в одного.
https://habr.com/ru/articles/1019690/
#python #rbacx #rbac #abac #pdp #security #REBAC #authorization
-
RBACX — что изменилось за полгода: от простого RBAC/ABAC до ReBAC с ИИ-генерацией политик
Полгода назад написал первую статью про RBACX — RBAC/ABAC-движок авторизации для Python. С тех пор вышло 25+ релизов, и библиотека стала заметно мощнее: добавил ReBAC с поддержкой OpenFGA и SpiceDB, пакетную проверку прав, ИИ-генерацию политик из OpenAPI-схемы, Redis-кэш, async Django, шортхэнд для ролей и закрыл три security-бага. Рассказываю что, зачем и как это вообще делается в одного.
https://habr.com/ru/articles/1019690/
#python #rbacx #rbac #abac #pdp #security #REBAC #authorization
-
Democrats say Trump Iran strikes require Congressional authorization
NEWYou can now listen to US News Hub articles! Debate on Capitol Hill continues to rage over whether President Donald Trump started a "war" with the strikes he carried out against Iran last weekend, a key consideration for whether...
#Democrats #say #Trump #Iran #strikes #require #Congressional #authorization #US_News_Hub #misryoum_com
-
via @dotnet : Release v1.0 of the official MCP C# SDK
https://ift.tt/9gWkESo
#MCP #CSharpSDK #ModelContextProtocol #MCPv1 #SDKRelease #OAuth2 #JWT #Authorization #Security #ClientCredentials # CIMD #ClientMetadataDocuments #DCR #LongRunningRequests #SSE #EventSt… -
via @dotnet : Release v1.0 of the official MCP C# SDK
https://ift.tt/9gWkESo
#MCP #CSharpSDK #ModelContextProtocol #MCPv1 #SDKRelease #OAuth2 #JWT #Authorization #Security #ClientCredentials # CIMD #ClientMetadataDocuments #DCR #LongRunningRequests #SSE #EventSt… -
via @dotnet : Release v1.0 of the official MCP C# SDK
https://ift.tt/9gWkESo
#MCP #CSharpSDK #ModelContextProtocol #MCPv1 #SDKRelease #OAuth2 #JWT #Authorization #Security #ClientCredentials # CIMD #ClientMetadataDocuments #DCR #LongRunningRequests #SSE #EventSt… -
via @dotnet : Release v1.0 of the official MCP C# SDK
https://ift.tt/9gWkESo
#MCP #CSharpSDK #ModelContextProtocol #MCPv1 #SDKRelease #OAuth2 #JWT #Authorization #Security #ClientCredentials # CIMD #ClientMetadataDocuments #DCR #LongRunningRequests #SSE #EventSt… -
via @dotnet : Release v1.0 of the official MCP C# SDK
https://ift.tt/9gWkESo
#MCP #CSharpSDK #ModelContextProtocol #MCPv1 #SDKRelease #OAuth2 #JWT #Authorization #Security #ClientCredentials # CIMD #ClientMetadataDocuments #DCR #LongRunningRequests #SSE #EventSt… -
OAuth 2.0 and OIDC Explained with UML
A blog by RonaldThe purpose of Open Authorization 2.0 (OAuth 2.0) is to give an application (the "Client") limited access to your data at another service (the "Resource Server"), without having to give your password to that application. When OIDC is added Single Sign-On (SSO) is supported as well. The flow...
#dev #softwaredevelopment #Security #OpenIDConnect #UML #Authentication #OAuth2.0 #OIDC #Authorization #SSO #SingleSign-On
https://jdriven.com/blog/2026/03/OAuth-2.0-Explained-with-UML/
-
OAuth 2.0 and OIDC Explained with UML
A blog by RonaldThe purpose of Open Authorization 2.0 (OAuth 2.0) is to give an application (the "Client") limited access to your data at another service (the "Resource Server"), without having to give your password to that application. When OIDC is added Single Sign-On (SSO) is supported as well. The flow...
#dev #softwaredevelopment #Security #OpenIDConnect #UML #Authentication #OAuth2.0 #OIDC #Authorization #SSO #SingleSign-On
https://jdriven.com/blog/2026/03/OAuth-2.0-Explained-with-UML/
-
OAuth 2.0 and OIDC Explained with UML
A blog by RonaldThe purpose of Open Authorization 2.0 (OAuth 2.0) is to give an application (the "Client") limited access to your data at another service (the "Resource Server"), without having to give your password to that application. When OIDC is added Single Sign-On (SSO) is supported as well. The flow...
#dev #softwaredevelopment #Security #OpenIDConnect #UML #Authentication #OAuth2.0 #OIDC #Authorization #SSO #SingleSign-On
https://jdriven.com/blog/2026/03/OAuth-2.0-Explained-with-UML/
-
OAuth 2.0 and OIDC Explained with UML
A blog by RonaldThe purpose of Open Authorization 2.0 (OAuth 2.0) is to give an application (the "Client") limited access to your data at another service (the "Resource Server"), without having to give your password to that application. When OIDC is added Single Sign-On (SSO) is supported as well. The flow...
#dev #softwaredevelopment #Security #OpenIDConnect #UML #Authentication #OAuth2.0 #OIDC #Authorization #SSO #SingleSign-On
https://jdriven.com/blog/2026/03/OAuth-2.0-Explained-with-UML/
-
OAuth 2.0 and OIDC Explained with UML
A blog by RonaldThe purpose of Open Authorization 2.0 (OAuth 2.0) is to give an application (the "Client") limited access to your data at another service (the "Resource Server"), without having to give your password to that application. When OIDC is added Single Sign-On (SSO) is supported as well. The flow...
#dev #softwaredevelopment #Security #OpenIDConnect #UML #Authentication #OAuth2.0 #OIDC #Authorization #SSO #SingleSign-On
https://jdriven.com/blog/2026/03/OAuth-2.0-Explained-with-UML/
-
Over-Privileged AI Drives 4.5 Times Higher Incident Rates.
Just didn't have much to add to that.
https://www.infosecurity-magazine.com/news/overprivileged-ai-45-times-higher/
-
🚫 Stop checking admin? — it may be creating technical debt.
Authorization bugs aren’t minor issues.
They can expose salaries, contracts, or customer data.This article breaks down a Kaigi on Rails 2025 talk proposing a permission-centric architecture that scales with real SaaS systems — combining RBAC + ABAC and explicit rules instead of implicit roles.
#Ruby #Rails #Authorization #Security #SaaS #WebDev #KaigiOnRails
-
The Promise of Digital Identities (IDs): Access and Crime Prevention
A new paper from the Federal Reserve Bank of Atlanta and Federal Reserve System colleagues, Using Digital Identity…
#Economy #authentication #Authorization #Consumer #digitalID #digitalidentification #digitalwallet #FederalReserveSystem #verification
https://www.europesays.com/2750119/ -
A common anti-pattern I see in #authorization is trying to shoe-horn everything to fit a few generic permission types (eg CRUD). This almost always leads to awkward compromises and often to violating the principle of least privilege, because each generic permission ends up granting access to a confusing smorgasbord of operations.
I'd recommend starting with a one-to-one mapping between permissions and exposed #API actions - "increaseTheFrobinator" or whatever. Then carefully aggregate those into more general permission classes if necessary, guided by user needs rather than technical neatness.
-
I've made SurillyaID available to the public! You can now use SurillyaID as an alternative / primary (whatever you want) login system using OIDC or OAuth 2!
Developer Portal: https://developer.surillya.com
Peertube Tutorial: https://video.surillya.com/w/fsbWVJU7E1SgawAj9XG2f2
YouTube tutorial: https://youtu.be/YQVn3aCgqLQ
#developer #php #oidc #openid #surillyaid #login #authorization #developers #webdev #html #website
-
I've made SurillyaID available to the public! You can now use SurillyaID as an alternative / primary (whatever you want) login system using OIDC or OAuth 2!
Developer Portal: https://developer.surillya.com
Peertube Tutorial: https://video.surillya.com/w/fsbWVJU7E1SgawAj9XG2f2
YouTube tutorial: https://youtu.be/YQVn3aCgqLQ
#developer #php #oidc #openid #surillyaid #login #authorization #developers #webdev #html #website
-
I've made SurillyaID available to the public! You can now use SurillyaID as an alternative / primary (whatever you want) login system using OIDC or OAuth 2!
Developer Portal: https://developer.surillya.com
Peertube Tutorial: https://video.surillya.com/w/fsbWVJU7E1SgawAj9XG2f2
YouTube tutorial: https://youtu.be/YQVn3aCgqLQ
#developer #php #oidc #openid #surillyaid #login #authorization #developers #webdev #html #website
-
I've made SurillyaID available to the public! You can now use SurillyaID as an alternative / primary (whatever you want) login system using OIDC or OAuth 2!
Developer Portal: https://developer.surillya.com
Peertube Tutorial: https://video.surillya.com/w/fsbWVJU7E1SgawAj9XG2f2
YouTube tutorial: https://youtu.be/YQVn3aCgqLQ
#developer #php #oidc #openid #surillyaid #login #authorization #developers #webdev #html #website
-
I've made SurillyaID available to the public! You can now use SurillyaID as an alternative / primary (whatever you want) login system using OIDC or OAuth 2!
Developer Portal: https://developer.surillya.com
Peertube Tutorial: https://video.surillya.com/w/fsbWVJU7E1SgawAj9XG2f2
YouTube tutorial: https://youtu.be/YQVn3aCgqLQ
#developer #php #oidc #openid #surillyaid #login #authorization #developers #webdev #html #website
-
RunAs Radio Show 1015 - Zero Trust in 2026 with Michele Bustamante and host Richard Campbell
https://runasradio.com/Shows/Show/1015
#podcast #devcommunity #security #ciso #authentication #authorization #zerotrust
-
Interesting read about #authentication and #authorization in #localfirst #p2p software.
I still have a few more alternatives to review, but the library @localfirst/auth could be a good option.
-
USENIX Enigma 2023 - Adventures in #Authentication and #Authorization
-
Hegseth says he has every authorization needed for Caribbean strikes
(Reuters) -U.S. Defense Secretary Pete Hegseth said he has every authorization needed for strikes in the Caribbean by…
#UnitedStates #US #USA #Authorization #Død #foxnews #illegaldrugs #pentagon #petehegseth #presidentdonaldtrump #SecretaryofDefense #Strikes #theCaribbean #theUnitedStates
https://www.europesays.com/2468264/ -
RBACX — универсальный RBAC/ABAC-движок авторизации для Python
RBACX — авторизация без боли в Python-проектах Когда доступ «размазан» по вьюхам и миддлварам, ревью и тесты превращаются в квест - появляется мотивация все это унифицировать. Я написал RBACX — лёгкий движок, где правила описываются декларативно (JSON/YAML), а проверка прав — это один понятный вызов. В статье показываю, как собрать из него аккуратный PDP для микросервисов и монолитов. Я последние два года пишу бэкенд в стартапе MindUp — это мой первый пост на Хабре, и первая библиотека. Буду рад вопросам и критике. Если тема авторизации болит так же, как у меня, загляните!
https://habr.com/ru/articles/950080/
#python #rbacx #RBAC #ABAC #fastapi #authorization #django #flask #litestar #accesscontrol
-
RBACX — универсальный RBAC/ABAC-движок авторизации для Python
RBACX — авторизация без боли в Python-проектах Когда доступ «размазан» по вьюхам и миддлварам, ревью и тесты превращаются в квест - появляется мотивация все это унифицировать. Я написал RBACX — лёгкий движок, где правила описываются декларативно (JSON/YAML), а проверка прав — это один понятный вызов. В статье показываю, как собрать из него аккуратный PDP для микросервисов и монолитов. Я последние два года пишу бэкенд в стартапе MindUp — это мой первый пост на Хабре, и первая библиотека. Буду рад вопросам и критике. Если тема авторизации болит так же, как у меня, загляните!
https://habr.com/ru/articles/950080/
#python #rbacx #RBAC #ABAC #fastapi #authorization #django #flask #litestar #accesscontrol
-
RBACX — универсальный RBAC/ABAC-движок авторизации для Python
RBACX — авторизация без боли в Python-проектах Когда доступ «размазан» по вьюхам и миддлварам, ревью и тесты превращаются в квест - появляется мотивация все это унифицировать. Я написал RBACX — лёгкий движок, где правила описываются декларативно (JSON/YAML), а проверка прав — это один понятный вызов. В статье показываю, как собрать из него аккуратный PDP для микросервисов и монолитов. Я последние два года пишу бэкенд в стартапе MindUp — это мой первый пост на Хабре, и первая библиотека. Буду рад вопросам и критике. Если тема авторизации болит так же, как у меня, загляните!
https://habr.com/ru/articles/950080/
#python #rbacx #RBAC #ABAC #fastapi #authorization #django #flask #litestar #accesscontrol
-
RBACX — универсальный RBAC/ABAC-движок авторизации для Python
RBACX — авторизация без боли в Python-проектах Когда доступ «размазан» по вьюхам и миддлварам, ревью и тесты превращаются в квест - появляется мотивация все это унифицировать. Я написал RBACX — лёгкий движок, где правила описываются декларативно (JSON/YAML), а проверка прав — это один понятный вызов. В статье показываю, как собрать из него аккуратный PDP для микросервисов и монолитов. Я последние два года пишу бэкенд в стартапе MindUp — это мой первый пост на Хабре, и первая библиотека. Буду рад вопросам и критике. Если тема авторизации болит так же, как у меня, загляните!
https://habr.com/ru/articles/950080/
#python #rbacx #RBAC #ABAC #fastapi #authorization #django #flask #litestar #accesscontrol
-
An Illustrated Guide to OAuth, by (not on Mastodon or Bluesky):
-
#Development #Guides
An illustrated guide to OAuth · How delegated access works behind the scenes https://ilo.im/166dtf_____
#Authorization #Authentication #OAuth #ClientServer #ThirdParty #Security #WebDev #Frontend #Backend -
#Development #Guides
An illustrated guide to OAuth · How delegated access works behind the scenes https://ilo.im/166dtf_____
#Authorization #Authentication #OAuth #ClientServer #ThirdParty #Security #WebDev #Frontend #Backend