Blog

Azure AD B2C is not disappearing overnight, but it is effectively a dead-end platform. This article explains what's actually changing, by when, and most importantly what your options are.

Confused about the difference between authentication and identity federation? You're not alone. This article breaks down the concepts in plain language, explains how they work together, and shows why understanding the difference is crucial for your architecture and your users security.

Using SAML for Single Page Applications (SPAs) can be a bit tricky. In this blog post, we explore how to implement SAML for SPAs and provide best practices for securing your application.

If you're using Auth0 for authentication, you can implement step-up authentication by leveraging the ID token and its claims. Learn how to enforce step-up authentication based on the user's context or the requested operation.

When implementing OpenID Connect (OIDC), ensuring secure communication is critical. HTTP headers is often overlooked but play a significant role in protecting data and mitigating security risks. In this article, we will explore some of the essential security headers that you should know.

When developing a web application, ensuring secure communication is critical. HTTP headers play a significant role in protecting data and mitigating security risks. In this article, we will explore some of the essential security headers that you should know.

OpenID Connect (OIDC) supports a variety of mechanisms for authenticating clients to its endpoints. Learn about the authentication methods supported by OpenID Connect.

Federating an Identity Provider from an IAM involves integrating your IAM system with the OIDC flow to delegate authentication and obtain user information securely. This article provides an overview of the steps and best practices for implementing OIDC federation.

The Userinfo endpoint is a standard feature of the OpenID Connect (OIDC) protocol, designed to provide additional claims (user-related information) about an authenticated user. Learn more about the OpenID Connect Userinfo Endpoint.

If you're using OpenID Connect for authentication, you can implement step-up authentication by leveraging the ID token and its claims. Learn how to enforce step-up authentication based on the user's context or the requested operation.

OpenID Connect and OAuth 2.0 have are several types of tokens, each serving distinct purposes. In this article, we’ll explore the different tokens, their formats, and their appropriate use cases.

Developers need to configure their applications or APIs to work with OpenID Connect. In this article, we will explore the different ways to configure an application or an API with OpenID Connect.

OAuth 2.0 Token Exchange is an extension to the OAuth 2.0 protocol that allows a client to exchange one token for another. This can be useful in scenarios where a client needs to obtain a different type of token to access a resource or service. Learn how OAuth 2.0 Token Exchange works and when to use it.

Choosing the right JWT signing algorithm is crucial to ensure the security of your application. In this article, we will discuss the different algorithms available and how to choose the right one.

OpenID Connect and OAuth2 define a set of standard scopes that can be used to control the level of access that a client application has to a user's resources. In this blog post, we will explore the standard scopes defined by OpenID Connect and OAuth2 and understand their significance in the authorization process.

PKCE is an extension to OAuth 2.0 that provides additional security for public clients. Learn more about PKCE and why you should use it.

OpenID Connect, build on the OAuth 2.0 protocol, emerges as a robust solution to handle user authentication across platforms and applications. Learn more about OpenID Connect and its components.

JWT or Opaque Tokens can serve both as authentication mechanisms for Machine to Machine (M2M) communications. But what is the best choice between each solution?

We'll delve into the distinctions between authentication, authorization, and fine-grained authorization, clarifying their roles and importance in safeguarding sensitive information and resources.

Multi-factor authentication (MFA) is a powerful security tool that can protect against cyber threats and enhance UX simplifying the login process.

Validate JWTs (JSON Web Tokens) authenticity is important. In this article, we will explore the systematic approach developers should adopt to verify them.

This guide will take you step by step for generating RSA key pair using OpenSSL for signing JWT.

Discover the power of Keycloak, an open-source IAM solution, in an introduction article. Uncover the key features that make Keycloak a go-to platform.

Tokens carry information about the authentication and authorization context and are used to make secure and authorized requests. In this blog post, we will explore the different types of claims found in OIDC tokens and understand their significance in the authentication process.

In this informative blog post, we delve into the world of OAuth 2 access token claims. This article provides an exploration of the claims found in tokens.

While JWTs are essential for secure communication between clients and servers, managing their lifecycle and ensuring their security can be challenging. In this blog post, we'll explore best practices for invalidating access tokens, including token revocation and rotation, and how to implement these mechanisms in OAuth2 and OpenID Connect.

While JWTs are essential for secure communication between clients and servers, managing their lifecycle and ensuring their security can be challenging. In this blog post, we'll explore best practices for invalidating access tokens, including token revocation and rotation, and how to implement these mechanisms in OAuth2 and OpenID Connect.

This article provides a comprehensive guide to understanding the different grant types used in OpenID Connect and OAuth2 protocols.

Learn about the different OpenID Connect prompts and how they can improve your authentication flow.

Multi-factor authentication (MFA) is a powerful security tool that can protect against cyber threats and enhance UX simplifying the login process.

OAuth 2 is an open standard protocol that allows applications to access user's data without requiring the user to share their credentials. How does it work?