© 2023 Hashnode
#oidc
Ever wonder how AWS IRSA or Azure AD workload identity works in Kubernetes? How about GCP workload identity? Well, imagine this… You go to an amusement park, get a ticket from the ticket booth, then y…
Single sign-on (SSO) is a session and user authentication technique that permits a user to use one set of login credentials to authenticate with multiple apps. SSO works by establishing trust between …
"Secure your applications, not your network. Verify identity and enforce access controls in the application itself, where they can travel with the application wherever it goes." - John Kindervag, crea…
"Authentication and authorization represent the new perimeter in a world where identity is the new control plane." - Satya Nadella, CEO of Microsoft. Introduction In our previous article, we explored…
Introduction Google is a popular Identity Provider (IdP) option for third-party applications. Google's OAuth 2.0 API implements Open ID Connect (OIDC) specification and is an OpenID Certified vendor, …
Why When erecting CI/ CD Channels to automate the process of planting coffers in AWS via Code( IaC- structure as Code) you need to give your channel runner authorization to emplace those coffers. The …
This guide assumes you manage your infrastructure with Terraform. Here is an example IRSA implementation using Terraform and kubectl. Background Let's say you want to allow your EKS-hosted app to acce…
Background In the early days of Internet, many websites have manage the identities of their registered members themselves. There was no single standard but somehow, people keep track of the usual fields like First Name, Last Name, Email Add…
Series Introduction This series aims to clearly explain the concepts of OAuth and OpenID connect, as briefly as possible. OAuth Before I give you a standard definition for OAuth let's define what OAut…