#oauth2 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #oauth2, aggregated by home.social.
-
75–80% of enterprise deals stall on authentication. SSO, SCIM, MFA — here's when you need what, and which platform to choose at each growth stage.
Full details here: https://ostechnix.com/why-startups-need-smarter-authentication-before-they-scale/
-
75–80% of enterprise deals stall on authentication. SSO, SCIM, MFA — here's when you need what, and which platform to choose at each growth stage.
Full details here: https://ostechnix.com/why-startups-need-smarter-authentication-before-they-scale/
-
75–80% of enterprise deals stall on authentication. SSO, SCIM, MFA — here's when you need what, and which platform to choose at each growth stage.
Full details here: https://ostechnix.com/why-startups-need-smarter-authentication-before-they-scale/
-
75–80% of enterprise deals stall on authentication. SSO, SCIM, MFA — here's when you need what, and which platform to choose at each growth stage.
Full details here: https://ostechnix.com/why-startups-need-smarter-authentication-before-they-scale/
-
75–80% of enterprise deals stall on authentication. SSO, SCIM, MFA — here's when you need what, and which platform to choose at each growth stage.
Full details here: https://ostechnix.com/why-startups-need-smarter-authentication-before-they-scale/
-
For a project I am working on I am currently researching the three Open ID Connect (OIDC) flows:
* Authorization Code Flow is clear
* Implicit Flow is to be avoided due to the potential for leakage of tokens... and then there is the Hybrid Flow. I understand how it works, i.e. the sequence of steps and their parameters, but no matter where I looked, I could not find a single example for an actual **use case** of the Hybrid Flow. Lots of explanations about how it works, but no mention of the "why".
When would I want to use the Hybrid Flow over the Authorization Code Flow? Or is this an instance of "you'll know it when you'll see it"?
-
Логин через Telegram по-новому: разбираем OIDC-флоу oauth.telegram.org и собираем его на Python
Telegram теперь полноценный OpenID-провайдер: oauth.telegram.org, JWKS, JWT, claims. Туториалы на GitHub при этом массово показывают старый виджет с HMAC от bot-token и /setdomain в BotFather. Я разобрался с новым флоу и собрал PoC на Python — рассказываю, как устроен обмен между фронтом, Telegram и бэком, чем Login library через telegram-login.js отличается от manual OIDC code flow с PKCE, что настраивать в BotFather (спойлер: не в чате, а в его mini-app), как протестировать локально через ngrok, и какая проверка id_token нужна вместо ручного HMAC.
https://habr.com/ru/articles/1033632/
#telegram #telegram_login #openid_connect #oidc #oauth2 #jwt #jwks #pyjwt #python #authentication
-
Логин через Telegram по-новому: разбираем OIDC-флоу oauth.telegram.org и собираем его на Python
Telegram теперь полноценный OpenID-провайдер: oauth.telegram.org, JWKS, JWT, claims. Туториалы на GitHub при этом массово показывают старый виджет с HMAC от bot-token и /setdomain в BotFather. Я разобрался с новым флоу и собрал PoC на Python — рассказываю, как устроен обмен между фронтом, Telegram и бэком, чем Login library через telegram-login.js отличается от manual OIDC code flow с PKCE, что настраивать в BotFather (спойлер: не в чате, а в его mini-app), как протестировать локально через ngrok, и какая проверка id_token нужна вместо ручного HMAC.
https://habr.com/ru/articles/1033632/
#telegram #telegram_login #openid_connect #oidc #oauth2 #jwt #jwks #pyjwt #python #authentication
-
Логин через Telegram по-новому: разбираем OIDC-флоу oauth.telegram.org и собираем его на Python
Telegram теперь полноценный OpenID-провайдер: oauth.telegram.org, JWKS, JWT, claims. Туториалы на GitHub при этом массово показывают старый виджет с HMAC от bot-token и /setdomain в BotFather. Я разобрался с новым флоу и собрал PoC на Python — рассказываю, как устроен обмен между фронтом, Telegram и бэком, чем Login library через telegram-login.js отличается от manual OIDC code flow с PKCE, что настраивать в BotFather (спойлер: не в чате, а в его mini-app), как протестировать локально через ngrok, и какая проверка id_token нужна вместо ручного HMAC.
https://habr.com/ru/articles/1033632/
#telegram #telegram_login #openid_connect #oidc #oauth2 #jwt #jwks #pyjwt #python #authentication
-
Логин через Telegram по-новому: разбираем OIDC-флоу oauth.telegram.org и собираем его на Python
Telegram теперь полноценный OpenID-провайдер: oauth.telegram.org, JWKS, JWT, claims. Туториалы на GitHub при этом массово показывают старый виджет с HMAC от bot-token и /setdomain в BotFather. Я разобрался с новым флоу и собрал PoC на Python — рассказываю, как устроен обмен между фронтом, Telegram и бэком, чем Login library через telegram-login.js отличается от manual OIDC code flow с PKCE, что настраивать в BotFather (спойлер: не в чате, а в его mini-app), как протестировать локально через ngrok, и какая проверка id_token нужна вместо ручного HMAC.
https://habr.com/ru/articles/1033632/
#telegram #telegram_login #openid_connect #oidc #oauth2 #jwt #jwks #pyjwt #python #authentication
-
One Open-source Project Daily
Simple, unobtrusive authentication for Node.js.
https://github.com/jaredhanson/passport
#1ospd #opensource #express #nodejs #oauth #oauth2 #openid #openidconnect #passport #saml -
One Open-source Project Daily
Simple, unobtrusive authentication for Node.js.
https://github.com/jaredhanson/passport
#1ospd #opensource #express #nodejs #oauth #oauth2 #openid #openidconnect #passport #saml -
One Open-source Project Daily
Simple, unobtrusive authentication for Node.js.
https://github.com/jaredhanson/passport
#1ospd #opensource #express #nodejs #oauth #oauth2 #openid #openidconnect #passport #saml -
One Open-source Project Daily
Simple, unobtrusive authentication for Node.js.
https://github.com/jaredhanson/passport
#1ospd #opensource #express #nodejs #oauth #oauth2 #openid #openidconnect #passport #saml -
One Open-source Project Daily
Simple, unobtrusive authentication for Node.js.
https://github.com/jaredhanson/passport
#1ospd #opensource #express #nodejs #oauth #oauth2 #openid #openidconnect #passport #saml -
Per-user OAuth для MCP-серверов: Keycloak, n8n и Telegram-бот через один Auth Proxy
MCP-серверы не умеют в авторизацию, n8n не умеет в per-user токены, а OAuth-клиенты говорят на разных диалектах. Рассказываем, как один Auth Proxy перед FastMCP Gateway закрыл все три проблемы — и почему в итоге бот переехал на LangGraph Архитектура, грабли и код
https://habr.com/ru/articles/1030302/
#MCP #OAuth2 #Keycloak #FastMCP #LangGraph #n8n #Telegramбот #peruser_авторизация #AIагент #Auth_Proxy
-
Per-user OAuth для MCP-серверов: Keycloak, n8n и Telegram-бот через один Auth Proxy
MCP-серверы не умеют в авторизацию, n8n не умеет в per-user токены, а OAuth-клиенты говорят на разных диалектах. Рассказываем, как один Auth Proxy перед FastMCP Gateway закрыл все три проблемы — и почему в итоге бот переехал на LangGraph Архитектура, грабли и код
https://habr.com/ru/articles/1030302/
#MCP #OAuth2 #Keycloak #FastMCP #LangGraph #n8n #Telegramбот #peruser_авторизация #AIагент #Auth_Proxy
-
Per-user OAuth для MCP-серверов: Keycloak, n8n и Telegram-бот через один Auth Proxy
MCP-серверы не умеют в авторизацию, n8n не умеет в per-user токены, а OAuth-клиенты говорят на разных диалектах. Рассказываем, как один Auth Proxy перед FastMCP Gateway закрыл все три проблемы — и почему в итоге бот переехал на LangGraph Архитектура, грабли и код
https://habr.com/ru/articles/1030302/
#MCP #OAuth2 #Keycloak #FastMCP #LangGraph #n8n #Telegramбот #peruser_авторизация #AIагент #Auth_Proxy
-
Per-user OAuth для MCP-серверов: Keycloak, n8n и Telegram-бот через один Auth Proxy
MCP-серверы не умеют в авторизацию, n8n не умеет в per-user токены, а OAuth-клиенты говорят на разных диалектах. Рассказываем, как один Auth Proxy перед FastMCP Gateway закрыл все три проблемы — и почему в итоге бот переехал на LangGraph Архитектура, грабли и код
https://habr.com/ru/articles/1030302/
#MCP #OAuth2 #Keycloak #FastMCP #LangGraph #n8n #Telegramбот #peruser_авторизация #AIагент #Auth_Proxy
-
@tatsh Woo! mutt-oauth2 just made my day!
Previously a gent from MIT IS&T put in HEROIC amounts of effort to pull together the prior jank-fest of oauth2 scripts and mutt configurations...
But with your nice new package I can 'uv tool install', add the bits you specified to my muttrc and BOOM! I'm reading my MIT E-mail in a sane interface that doesn't make my remaining damaged eye want to shrivel up and retire :)
Thank you!
(Also just sent a Buy Me a Coffee :)
-
@tatsh Woo! mutt-oauth2 just made my day!
Previously a gent from MIT IS&T put in HEROIC amounts of effort to pull together the prior jank-fest of oauth2 scripts and mutt configurations...
But with your nice new package I can 'uv tool install', add the bits you specified to my muttrc and BOOM! I'm reading my MIT E-mail in a sane interface that doesn't make my remaining damaged eye want to shrivel up and retire :)
Thank you!
(Also just sent a Buy Me a Coffee :)
-
@tatsh Woo! mutt-oauth2 just made my day!
Previously a gent from MIT IS&T put in HEROIC amounts of effort to pull together the prior jank-fest of oauth2 scripts and mutt configurations...
But with your nice new package I can 'uv tool install', add the bits you specified to my muttrc and BOOM! I'm reading my MIT E-mail in a sane interface that doesn't make my remaining damaged eye want to shrivel up and retire :)
Thank you!
(Also just sent a Buy Me a Coffee :)
-
@tatsh Woo! mutt-oauth2 just made my day!
Previously a gent from MIT IS&T put in HEROIC amounts of effort to pull together the prior jank-fest of oauth2 scripts and mutt configurations...
But with your nice new package I can 'uv tool install', add the bits you specified to my muttrc and BOOM! I'm reading my MIT E-mail in a sane interface that doesn't make my remaining damaged eye want to shrivel up and retire :)
Thank you!
(Also just sent a Buy Me a Coffee :)
-
@tatsh Woo! mutt-oauth2 just made my day!
Previously a gent from MIT IS&T put in HEROIC amounts of effort to pull together the prior jank-fest of oauth2 scripts and mutt configurations...
But with your nice new package I can 'uv tool install', add the bits you specified to my muttrc and BOOM! I'm reading my MIT E-mail in a sane interface that doesn't make my remaining damaged eye want to shrivel up and retire :)
Thank you!
(Also just sent a Buy Me a Coffee :)
-
#DPoP closes a real gap in #OAuth2, but there’s a catch….
Sender-constrained tokens are a meaningful upgrade over bearer tokens, but they don't fully solve the challenge of browser key storage.
Check out the #InfoQ article by Dhruv Agnihotri for a deep dive: https://bit.ly/4w62YGA
-
#DPoP closes a real gap in #OAuth2, but there’s a catch….
Sender-constrained tokens are a meaningful upgrade over bearer tokens, but they don't fully solve the challenge of browser key storage.
Check out the #InfoQ article by Dhruv Agnihotri for a deep dive: https://bit.ly/4w62YGA
-
#DPoP closes a real gap in #OAuth2, but there’s a catch….
Sender-constrained tokens are a meaningful upgrade over bearer tokens, but they don't fully solve the challenge of browser key storage.
Check out the #InfoQ article by Dhruv Agnihotri for a deep dive: https://bit.ly/4w62YGA
-
#DPoP closes a real gap in #OAuth2, but there’s a catch….
Sender-constrained tokens are a meaningful upgrade over bearer tokens, but they don't fully solve the challenge of browser key storage.
Check out the #InfoQ article by Dhruv Agnihotri for a deep dive: https://bit.ly/4w62YGA
-
#DPoP closes a real gap in #OAuth2, but there’s a catch….
Sender-constrained tokens are a meaningful upgrade over bearer tokens, but they don't fully solve the challenge of browser key storage.
Check out the #InfoQ article by Dhruv Agnihotri for a deep dive: https://bit.ly/4w62YGA
-
Is there any way to setup OAuth2 authentication on self-hosted ejabberd (where ejabberd acts as a client and delegates authentication to an external identity provider)?
Prosody seems to have modules for that, but I feel like migrating might be a pain...
-
Is there any way to setup OAuth2 authentication on self-hosted ejabberd (where ejabberd acts as a client and delegates authentication to an external identity provider)?
Prosody seems to have modules for that, but I feel like migrating might be a pain...
-
Is there any way to setup OAuth2 authentication on self-hosted ejabberd (where ejabberd acts as a client and delegates authentication to an external identity provider)?
Prosody seems to have modules for that, but I feel like migrating might be a pain...
-
Is there any way to setup OAuth2 authentication on self-hosted ejabberd (where ejabberd acts as a client and delegates authentication to an external identity provider)?
Prosody seems to have modules for that, but I feel like migrating might be a pain...
-
Is there any way to setup OAuth2 authentication on self-hosted ejabberd (where ejabberd acts as a client and delegates authentication to an external identity provider)?
Prosody seems to have modules for that, but I feel like migrating might be a pain...
-
That's my self-hosted mail now being OAuth2 authenticated, and a custom android thunderbird apk built to work with the local keycloak install.
Desktop thunderbird updated with https://github.com/raa-org/thunderbird-custom-idp to enable OAuth2 on that as well.
Maybe I'll updated my android build to fix the long standing bugbear I've had with it - set Check on the subscribed folders automatically, rather than have me go through each folder to set it to Check.
-
That's my self-hosted mail now being OAuth2 authenticated, and a custom android thunderbird apk built to work with the local keycloak install.
Desktop thunderbird updated with https://github.com/raa-org/thunderbird-custom-idp to enable OAuth2 on that as well.
Maybe I'll updated my android build to fix the long standing bugbear I've had with it - set Check on the subscribed folders automatically, rather than have me go through each folder to set it to Check.
-
That's my self-hosted mail now being OAuth2 authenticated, and a custom android thunderbird apk built to work with the local keycloak install.
Desktop thunderbird updated with https://github.com/raa-org/thunderbird-custom-idp to enable OAuth2 on that as well.
Maybe I'll updated my android build to fix the long standing bugbear I've had with it - set Check on the subscribed folders automatically, rather than have me go through each folder to set it to Check.
-
🎉🎉Introducing IPv8: the #protocol no one asked for, complete with #OAuth2 JWT jargon and #DHCP8 magic! Because what the internet needed was another layer of #complexity and buzzwords to solve problems no one knew existed. 🙄🔧✨
https://www.ietf.org/archive/id/draft-thain-ipv8-00.html #IPv8 #InternetBuzzwords #HackerNews #ngated -
🎉🎉Introducing IPv8: the #protocol no one asked for, complete with #OAuth2 JWT jargon and #DHCP8 magic! Because what the internet needed was another layer of #complexity and buzzwords to solve problems no one knew existed. 🙄🔧✨
https://www.ietf.org/archive/id/draft-thain-ipv8-00.html #IPv8 #InternetBuzzwords #HackerNews #ngated -
🎉🎉Introducing IPv8: the #protocol no one asked for, complete with #OAuth2 JWT jargon and #DHCP8 magic! Because what the internet needed was another layer of #complexity and buzzwords to solve problems no one knew existed. 🙄🔧✨
https://www.ietf.org/archive/id/draft-thain-ipv8-00.html #IPv8 #InternetBuzzwords #HackerNews #ngated -
🎉🎉Introducing IPv8: the #protocol no one asked for, complete with #OAuth2 JWT jargon and #DHCP8 magic! Because what the internet needed was another layer of #complexity and buzzwords to solve problems no one knew existed. 🙄🔧✨
https://www.ietf.org/archive/id/draft-thain-ipv8-00.html #IPv8 #InternetBuzzwords #HackerNews #ngated -
🎉🎉Introducing IPv8: the #protocol no one asked for, complete with #OAuth2 JWT jargon and #DHCP8 magic! Because what the internet needed was another layer of #complexity and buzzwords to solve problems no one knew existed. 🙄🔧✨
https://www.ietf.org/archive/id/draft-thain-ipv8-00.html #IPv8 #InternetBuzzwords #HackerNews #ngated -
«Über 100 Erweiterungen — Schädliche Chrome-Extensions greifen Nutzerdaten ab:
Im Chrome Web Store verbreiten Cyberkriminelle über 100 schädliche Erweiterungen, die Nutzerkonten und Daten stehlen. Die Tools sind Teil einer koordinierten Kampagne mit gemeinsamer Infrastruktur.»Ein Argument mehr um Chrome zu vermeiden und egal auf welchem Browser nicht blind jegliche Plugins nutzen. Seit Jahr(zent)en ein Thema.
😈 https://www.netzwoche.ch/news/2026-04-15/schaedliche-chrome-extensions-greifen-nutzerdaten-ab
-
Version 4.11.0 of #syslog_ng contains contributions from #Databricks related to #OAuth2 authentication. Recently, they published a blog about how this enables their customers to send logs to their data lake using syslog-ng and the #OpenTelemetry protocol.
https://www.syslog-ng.com/community/b/blog/posts/streaming-syslog-ng-data-to-your-lakehouse-using-opentelemetry -
Version 4.11.0 of #syslog_ng contains contributions from #Databricks related to #OAuth2 authentication. Recently, they published a blog about how this enables their customers to send logs to their data lake using syslog-ng and the #OpenTelemetry protocol.
https://www.syslog-ng.com/community/b/blog/posts/streaming-syslog-ng-data-to-your-lakehouse-using-opentelemetry -
Version 4.11.0 of #syslog_ng contains contributions from #Databricks related to #OAuth2 authentication. Recently, they published a blog about how this enables their customers to send logs to their data lake using syslog-ng and the #OpenTelemetry protocol.
https://www.syslog-ng.com/community/b/blog/posts/streaming-syslog-ng-data-to-your-lakehouse-using-opentelemetry -
Version 4.11.0 of #syslog_ng contains contributions from #Databricks related to #OAuth2 authentication. Recently, they published a blog about how this enables their customers to send logs to their data lake using syslog-ng and the #OpenTelemetry protocol.
https://www.syslog-ng.com/community/b/blog/posts/streaming-syslog-ng-data-to-your-lakehouse-using-opentelemetry