#oidc

Enhancing security of backend connectivity with OpenID Connect (OIDC)

🖼️

0

Enhancing security of backend connectivity with OpenID Connect (OIDC)

Vercel News·Dan Fein·4 days ago

#YWPazLAo

#vercel #oidc #credentials #lived #long #article

Vercel OpenID Connect support helps you replace long-lived credentials with temporary tokens to reduce risk.

15s

Trusted Sources for Deployment Protection - Vercel

🖼️

0

Trusted Sources for Deployment Protection - Vercel

Vercel News·Kit Foster·4 days ago

#mvm8SCsK

#vercel #token #oidc #trusted #project #photo

You can now authorize specific Vercel projects and external CI services to reach this project's protected deployments using short-lived OIDC tokens, without sharing a static bypass secret or opening the deployment to the public internet

15s

The 20-Minute Compromise: CI/CD Audit Guide for the TanStack Supply Chain Attack

🖼️

0

The 20-Minute Compromise: CI/CD Audit Guide for the TanStack Supply Chain Attack

DEV Community·Narnaiezzsshaa Truong·20 days ago

#gCBk1T8I

#part #security #cicd #github #cache #workflows

OIDC authentication worked correctly throughout the TanStack attack. The build cache is the substrate...

15s

OAuth 2.0 and OIDC Implementation Guide 2026: Complete Developer Walkthrough

🖼️

0

OAuth 2.0 and OIDC Implementation Guide 2026: Complete Developer Walkthrough

DEV Community·丁久·21 days ago

#hanvICEg

#oauth #oauth20 #oidc #code #tokens #token

Implement OAuth 2.0 and OpenID Connect from scratch — understand authorization codes, PKCE, JWT tokens, and security best practices.

15s

Stop Putting AWS Access Keys in GitHub Secrets. Use OIDC Instead.

🖼️

0

Stop Putting AWS Access Keys in GitHub Secrets. Use OIDC Instead.

DEV Community·Neil·25 days ago

#ipbaN2VE

#devops #githubactions #workflow #github #oidc #actions

I rotated a leaked AWS access key at 2 AM last year. A contractor had pushed a workflow that printed...

15s

Stop Manually Wiring Azure AD Auth — Here's a Secure-by-Default .NET 8 Template

🖼️

0

Stop Manually Wiring Azure AD Auth — Here's a Secure-by-Default .NET 8 Template

DEV Community·Dominic Robinson·26 days ago

#HECODe9r

#dotnet #azure #security #zerotrust #oidc #azureadrazorlogin

From Dev Community: Stop Manually Wiring Azure AD Auth — Here's a Secure-by-Default .NET 8 Template

15s

How I Used OIDC to Eliminate Static AWS Keys from GitHub Actions (Real Pipeline Walkthrough)

🖼️

0

How I Used OIDC to Eliminate Static AWS Keys from GitHub Actions (Real Pipeline Walkthrough)

DEV Community·Edwin Jonathan·26 days ago

#xXKzRzxe

#devops #aws #githubactions #terraform #github #actions

From Dev.to - aws: How I Used OIDC to Eliminate Static AWS Keys from GitHub Actions (Real Pipeline Walkthrough)

15s

How to Add SSO to Your AI-Coded Internal App (OIDC Guide)

🖼️

0

How to Add SSO to Your AI-Coded Internal App (OIDC Guide)

DEV Community·Sandro Munda·28 days ago

#r9kJaqAx

#how #option #sso #session #every #oidc

You built an internal app with Claude Code or Cursor. It works. The logic is solid. Your team wants...

15s

JWT verification in production: an 8-check field guide

🖼️

0

JWT verification in production: an 8-check field guide

DEV Community·Blue Hills·29 days ago

#maSWw6eI

#jwt #oidc #security #deved #token #issuer

The eight checks every production JWT verifier must do, what each one prevents, and structured error codes for each failure mode. A reference doc for backend and identity teams.

15s

Step-by-Step: Set Up Zero-Trust Security with HashiCorp Vault 1.16 and AWS IAM Identity Center 2026-02

🖼️

0

Step-by-Step: Set Up Zero-Trust Security with HashiCorp Vault 1.16 and AWS IAM Identity Center 2026-02

DEV Community·ANKUSH CHOUDHARY JOHAL·30 days ago

#cSSwg3jH

#stepbystep #zerotrust #security #hashicorp #vault #identity

From Dev.to - security: Step-by-Step: Set Up Zero-Trust Security with HashiCorp Vault 1.16 and AWS IAM Identity Center 2026-02

15s

Making OAuth Testable: Rethinking OIDC Clients in JavaScript

🖼️

0

Making OAuth Testable: Rethinking OIDC Clients in JavaScript

DEV Community·Eugene Yakhnenko·30 days ago

#B0JTvwpD

#testing #javascript #security #webdev #test #real

The real pain point Most OAuth/OIDC integrations in JavaScript are difficult to test in a...

15s

Three JWT bugs that ship to prod silently — and the 5-line CI test that catches them

🖼️

0

Three JWT bugs that ship to prod silently — and the 5-line CI test that catches them

DEV Community·Keynes Paul·about 1 month ago

#URpX13no

#bug #jwt #oidc #devsecops #jwks #token

Three concrete failure modes that take down OIDC in production: JWKS rotation without overlap, wrong audience claims, and issuer config drift.…

15s

Does Authentik support only one webfinger-discoverable OIDC issuer href for multiple applications per hostname?

📰

0

Does Authentik support only one webfinger-discoverable OIDC issuer href for multiple applications per hostname?

Reddit r/selfhosted·u/-jsteinke·about 1 month ago

#9ThLJVxd

#oidc #application #authentik #support #webfinger #article

I like Authentik and it's what I use but it seems like it doesn't support per application OIDC via a global application agnostic issuer href using webfinger which seems to basically mean you can only have one OIDC application per hostname unless you do…

15s

Identity Federation - Single Sign-On (SSO), OIDC, and the OAuth Lie (2026)

📰

0

Identity Federation - Single Sign-On (SSO), OIDC, and the OAuth Lie (2026)

DEV Community·Kaushikcoderpy·about 1 month ago

#dphJ6iPP

#section #day #programming #token #identity #oidc

From Dev.to - webdev: Identity Federation - Single Sign-On (SSO), OIDC, and the OAuth Lie (2026)

15s

📰

0

Part I: Developing Simple OpenID Authorization Server with Node.js & Typescript

DEV Community: koa·Ebrahim Hoseiny Fadae·about 1 month ago

#Rde3wT3z

#dev #class #code #highlight #oidc #article

Introduction In this tutorial, we will explore how to build an authorization server using the panava/node-oidc-provider library, which is built on top of the koajs/koa framework.…

15s

📰

0

Part II: Persisting OpenID Server Data on MongoDB with Node.js

DEV Community: koa·Ebrahim Hoseiny Fadae·about 1 month ago

#8PU8TQDv

#dev #class #code #highlight #oidc #article

Introduction In this article, we'll explore how to integrate MongoDB with an OIDC (OpenID Connect 1.0) authentication server. We'll be using the panava/node-oidc-provider library for implementing the OIDC server and the Mongoose for connecting to MongoDB.…

15s

Menu

Enhancing security of backend connectivity with OpenID Connect (OIDC)

Trusted Sources for Deployment Protection - Vercel

The 20-Minute Compromise: CI/CD Audit Guide for the TanStack Supply Chain Attack

OAuth 2.0 and OIDC Implementation Guide 2026: Complete Developer Walkthrough

Stop Putting AWS Access Keys in GitHub Secrets. Use OIDC Instead.

Stop Manually Wiring Azure AD Auth — Here's a Secure-by-Default .NET 8 Template

How I Used OIDC to Eliminate Static AWS Keys from GitHub Actions (Real Pipeline Walkthrough)

How to Add SSO to Your AI-Coded Internal App (OIDC Guide)

JWT verification in production: an 8-check field guide

Step-by-Step: Set Up Zero-Trust Security with HashiCorp Vault 1.16 and AWS IAM Identity Center 2026-02

Making OAuth Testable: Rethinking OIDC Clients in JavaScript

Three JWT bugs that ship to prod silently — and the 5-line CI test that catches them

Does Authentik support only one webfinger-discoverable OIDC issuer href for multiple applications per hostname?

Identity Federation - Single Sign-On (SSO), OIDC, and the OAuth Lie (2026)

Part I: Developing Simple OpenID Authorization Server with Node.js & Typescript

Part II: Persisting OpenID Server Data on MongoDB with Node.js