Chris Wysopal<p>These SAMLStorm vulnerabilities have been public for a couple weeks now. Anyone seeing exploitation in the wild? How’s patching going across vendors and infra? <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://infosec.exchange/tags/NodeJS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NodeJS</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AppSec</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
social.coop is one of the many independent Mastodon servers you can use to participate in the fediverse.
A Fediverse instance for people interested in cooperative and collective projects. If you are interested in joining our community, please apply at https://join.social.coop/registration-form.html.
Administered by:
Server stats:
487active users
social.coop: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.4
#saml
1 post · 1 participant · 0 posts today
pelzvieh<p>Du verwendest <a href="https://mastodon.flying-snail.de/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://mastodon.flying-snail.de/tags/Authentifizierung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authentifizierung</span></a>?<br>Die letzten <a href="https://mastodon.flying-snail.de/tags/Mastodon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mastodon</span></a> <a href="https://mastodon.flying-snail.de/tags/Releases" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Releases</span></a> enthalten wichtige Sicherheitsupdates.<br><a href="https://github.com/mastodon/mastodon/releases" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/mastodon/mastodon/r</span><span class="invisible">eleases</span></a></p>
Bill<p>Hivemind:</p><p>Roll your own SAML (like, no IdP)?</p><p><a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a></p>
Olly 👾<p>:github: GitHub uncovers new Ruby-SAML Vulnerabilities allowing Account Takeover Attacks.</p><p>Two high-severity security flaws have been disclosed in the open-source ruby-saml library that could allow malicious actors to bypass Security Assertion Markup Language (SAML) authentication protections.</p><p><a href="https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.blog/security/sign-in-a</span><span class="invisible">s-anyone-bypassing-saml-sso-authentication-with-parser-differentials/</span></a></p><p><a href="https://nerdculture.de/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://nerdculture.de/tags/ruby" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ruby</span></a> <a href="https://nerdculture.de/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a> <a href="https://nerdculture.de/tags/library" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>library</span></a> <a href="https://nerdculture.de/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a> <a href="https://nerdculture.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://nerdculture.de/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://nerdculture.de/tags/engineer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>engineer</span></a> <a href="https://nerdculture.de/tags/media" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>media</span></a> <a href="https://nerdculture.de/tags/programming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>programming</span></a> <a href="https://nerdculture.de/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://nerdculture.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
Hacker News<p>Sign in as anyone: Bypassing SAML SSO authentication with parser differentials</p><p><a href="https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.blog/security/sign-in-a</span><span class="invisible">s-anyone-bypassing-saml-sso-authentication-with-parser-differentials/</span></a></p><p><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HackerNews</span></a> <a href="https://mastodon.social/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://mastodon.social/tags/SSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSO</span></a> <a href="https://mastodon.social/tags/Authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authentication</span></a> <a href="https://mastodon.social/tags/Bypass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bypass</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/ParserDifferentials" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ParserDifferentials</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vulnerability</span></a></p>
sekurak News<p>GitLab naprawia podatności związane z biblioteką ruby-saml</p><p>GitLab ogłosił wydanie nowych wersji oprogramowania. Aktualizacja dotyczy zarówno Community Edition, jak i Enterprise Edition. Poprawione wersje to 17.9.2, 17.8.5 oraz 17.7.7. Najważniejsza poprawka dotyczy dwóch podatności (CVE-2025-25291, CVE-2025-25292), zgłoszonych w bibliotece ruby-saml, która jest wykorzystywana przez GitLab do SAML SSO (security assertion markup language; single sign-on). W pewnych okolicznościach...</p><p><a href="https://mastodon.com.pl/tags/WBiegu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WBiegu</span></a> <a href="https://mastodon.com.pl/tags/Cve" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cve</span></a> <a href="https://mastodon.com.pl/tags/Gitlab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gitlab</span></a> <a href="https://mastodon.com.pl/tags/Graphql" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Graphql</span></a> <a href="https://mastodon.com.pl/tags/Podatno%C5%9Bci" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Podatności</span></a> <a href="https://mastodon.com.pl/tags/Rce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rce</span></a> <a href="https://mastodon.com.pl/tags/Ruby" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ruby</span></a> <a href="https://mastodon.com.pl/tags/Saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Saml</span></a></p><p><a href="https://sekurak.pl/gitlab-naprawia-podatnosci-zwiazane-z-biblioteka-ruby-saml/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">sekurak.pl/gitlab-naprawia-pod</span><span class="invisible">atnosci-zwiazane-z-biblioteka-ruby-saml/</span></a></p>
JW<p>another lunchtime update, while I'm taking a break from doing :drupal: <a href="https://stlouist.social/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> updates. :mastodon: 4.3.6 <a href="https://stlouist.social/tags/mastoadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mastoadmin</span></a> :EPNX:</p>
LavX News<p>GitLab Addresses Critical Security Flaws: A Deep Dive into Recent Vulnerabilities</p><p>GitLab has released crucial updates to patch nine vulnerabilities, including two critical authentication bypass issues in the ruby-saml library. This article explores the implications of these vulnera...</p><p><a href="https://news.lavx.hu/article/gitlab-addresses-critical-security-flaws-a-deep-dive-into-recent-vulnerabilities" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.lavx.hu/article/gitlab-ad</span><span class="invisible">dresses-critical-security-flaws-a-deep-dive-into-recent-vulnerabilities</span></a></p><p><a href="https://mastodon.cloud/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a> <a href="https://mastodon.cloud/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://mastodon.cloud/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.cloud/tags/GitLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitLab</span></a> <a href="https://mastodon.cloud/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a></p>
Frehi<p>If you run <a href="https://fosstodon.org/tags/gitlab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gitlab</span></a> with <a href="https://fosstodon.org/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> authentication, you better upgrade as soon as possible</p><p><a href="https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">about.gitlab.com/releases/2025</span><span class="invisible">/03/12/patch-release-gitlab-17-9-2-released/</span></a></p><p><a href="https://fosstodon.org/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Worteks<p>🎙️ Nous avons eu le plaisir de participer aujourd'hui à l'enregistrement d'un épisode du Podcast "Tout est sous CTRL" produit par nos amis de Centreon.</p><p>Interviewé par Vincent Untz , <span class="h-card" translate="no"><a href="https://framapiaf.org/@clementoudot" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>clementoudot</span></a></span> est venu parler de gestion des identités et des accès (IAM), d'authentification mutli-facteurs (2FA/MFA) et de PasswordLess, mais surtout d'Open Source !</p><p><span class="h-card" translate="no"><a href="https://fosstodon.org/@ow2" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ow2</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@opensource_experts" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>opensource_experts</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@fsfe" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>fsfe</span></a></span> </p><p><a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/IAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IAM</span></a> <a href="https://mastodon.social/tags/FreeSoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FreeSoftware</span></a> <a href="https://mastodon.social/tags/2FA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>2FA</span></a> <a href="https://mastodon.social/tags/MFA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MFA</span></a> <a href="https://mastodon.social/tags/PasswordLess" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordLess</span></a> <a href="https://mastodon.social/tags/IGA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IGA</span></a> <a href="https://mastodon.social/tags/LDAP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LDAP</span></a> <a href="https://mastodon.social/tags/SSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSO</span></a> <a href="https://mastodon.social/tags/WebSSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebSSO</span></a> <a href="https://mastodon.social/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://mastodon.social/tags/OpenIDConnect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenIDConnect</span></a></p>
hikari<p>USSO is a third-party cookie-based SSO (for now), built to work across multiple domains and businesses. It has been in development for over a year by Mahdi Kiani.</p><p>Right now, it's written in Python, but a Go rewrite is coming soon. After the rewrite, OAuth, SAML, and other authentication methods will be added.</p><p>For now, USSO doesn’t have a frontend to manage all SSO operations, but everything is available through an API.</p><p>A couple of microservices also work with USSO:</p><p>A global S3-based file manager</p><p>UFAAS, a Function-as-a-Service platform, optimized for Iran</p><p>UFAAS currently only supports IRT/IRR currencies and integrates with Iranian payment gateways, but accounts can also be manually charged.</p><p>A Rust module for USSO has also been released, making it easier to integrate with Rust-based applications. Additionally, I've recently joined the development team.</p><p>USSO is planned to be used on Parch Linux, and detailed deployment documentation will be written for all major platforms, including cloud, Docker, Kubernetes, and Jails.</p><p>Mahdi Kiani on X: <a href="https://x.com/mahdikiani" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">x.com/mahdikiani</span><span class="invisible"></span></a><br>Project GitHub: <a href="https://github.com/ussoio" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/ussoio</span><span class="invisible"></span></a><br>The File Manager: <a href="https://github.com/ufilesorg" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/ufilesorg</span><span class="invisible"></span></a><br>FaaS: <a href="https://github.com/ufaasio" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/ufaasio</span><span class="invisible"></span></a><br>profile manager based on usso: <a href="https://github.com/uprofile" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/uprofile</span><span class="invisible"></span></a><br>rustcrate: <a href="https://crates.io/crates/usso" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">crates.io/crates/usso</span><span class="invisible"></span></a></p><p><a href="https://mastodon.bsd.cafe/tags/USSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>USSO</span></a> <a href="https://mastodon.bsd.cafe/tags/SSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSO</span></a> <a href="https://mastodon.bsd.cafe/tags/OAuth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OAuth</span></a> <a href="https://mastodon.bsd.cafe/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://mastodon.bsd.cafe/tags/FaaS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FaaS</span></a> <a href="https://mastodon.bsd.cafe/tags/Rust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rust</span></a> <a href="https://mastodon.bsd.cafe/tags/Python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Python</span></a> <a href="https://mastodon.bsd.cafe/tags/Go" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Go</span></a> <a href="https://mastodon.bsd.cafe/tags/ParchLinux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ParchLinux</span></a> <a href="https://mastodon.bsd.cafe/tags/Cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cloud</span></a> <a href="https://mastodon.bsd.cafe/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Docker</span></a> <a href="https://mastodon.bsd.cafe/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Kubernetes</span></a> <a href="https://mastodon.bsd.cafe/tags/Microservices" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microservices</span></a> <a href="https://mastodon.bsd.cafe/tags/FileManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FileManager</span></a> <a href="https://mastodon.bsd.cafe/tags/UFAAS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UFAAS</span></a> <a href="https://mastodon.bsd.cafe/tags/TechDevelopment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechDevelopment</span></a> <a href="https://mastodon.bsd.cafe/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a></p>
Kushal Das :python: :tor:<p>One day I will learn enough about <a href="https://toots.dgplug.org/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a></p>
bertrand 🏃 👨💻 🎸<p><span class="h-card" translate="no"><a href="https://toot.berlin/@blindcoder" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>blindcoder</span></a></span> agreed! I'll tell my 2005 self right away! ... Oh wait... <br><a href="https://piaille.fr/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a> <a href="https://piaille.fr/tags/saml2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml2</span></a> <a href="https://piaille.fr/tags/idm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>idm</span></a> <a href="https://piaille.fr/tags/IAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IAM</span></a></p>
Benjamin<p>Could we please, please, PLEASE agree on /.well-known/saml/metadata.xml ? Yes?</p><p><a href="https://toot.berlin/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://toot.berlin/tags/SAML2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML2</span></a> <a href="https://toot.berlin/tags/IDM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IDM</span></a> <a href="https://toot.berlin/tags/IAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IAM</span></a></p>
Colan Schwartz<p><span class="h-card" translate="no"><a href="https://merveilles.town/@mikael" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mikael</span></a></span> <a href="https://mastodon.social/tags/auth0" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>auth0</span></a> has a free tier, which may or may not work for you. I set it up for a client, and it worked quite well. They even support <a href="https://mastodon.social/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a> for older relying parties. </p><p>They were bought by <a href="https://mastodon.social/tags/okta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>okta</span></a> recently, though, so they're no longer independent. </p><p><a href="https://mastodon.social/tags/sso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sso</span></a> <a href="https://mastodon.social/tags/idp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>idp</span></a> <a href="https://mastodon.social/tags/identityprovider" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identityprovider</span></a> <a href="https://mastodon.social/tags/oidc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oidc</span></a> <a href="https://mastodon.social/tags/openidconnect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openidconnect</span></a></p>
Silke Meyer<p>At the last <span class="h-card" translate="no"><a href="https://univention.social/@univention" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>univention</span></a></span> summit I gave an introduction to the Keycloak app in Nubus. You missed it? There is a blog post now:</p><p>Navigating the Keycloak Admin Console with Nubus: A Step-by-Step Introduction</p><p><a href="https://www.univention.com/blog-en/2024/10/navigating-the-keycloak-admin-console/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">univention.com/blog-en/2024/10</span><span class="invisible">/navigating-the-keycloak-admin-console/</span></a></p><p><a href="https://univention.social/tags/keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keycloak</span></a> <a href="https://univention.social/tags/nubus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nubus</span></a> <a href="https://univention.social/tags/univention" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>univention</span></a> <a href="https://univention.social/tags/singlesignon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>singlesignon</span></a> <a href="https://univention.social/tags/oidc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oidc</span></a> <a href="https://univention.social/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a></p>
Silke Meyer<p>Auf dem <span class="h-card" translate="no"><a href="https://univention.social/@univention" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>univention</span></a></span> Summit hatte ich eine Einführung in die Bedienung der Keycloak-App auf Nubus gegeben. Das habe ich nun nochmal verbloggt, für alle, die es gerne nachlesen möchten:</p><p>Keycloak Admin Console mit Nubus: Der Einstieg leichtgemacht</p><p><a href="https://www.univention.de/blog-de/2024/10/keycloak-admin-console/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">univention.de/blog-de/2024/10/</span><span class="invisible">keycloak-admin-console/</span></a></p><p><a href="https://univention.social/tags/keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keycloak</span></a> <a href="https://univention.social/tags/nubus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nubus</span></a> <a href="https://univention.social/tags/univention" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>univention</span></a> <span class="h-card" translate="no"><a href="https://univention.social/@univention" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>univention</span></a></span> <a href="https://univention.social/tags/singlesignon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>singlesignon</span></a> <a href="https://univention.social/tags/oidc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oidc</span></a> <a href="https://univention.social/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a></p>
Silke Meyer<p>Dear Keycloak friends, I would love to hear if/how you use category-specific logging! What do you recommend to sysadmins interested in database + ldap interaction, caching, user events/errors, the user attributes that are actually sent to clients - without getting spammed with other things at the same time. Would you mind sharing your start settings for "--log-level"? Boosts welcome! </p><p><a href="https://www.keycloak.org/server/logging#_configuring_category_specific_log_levels" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">keycloak.org/server/logging#_c</span><span class="invisible">onfiguring_category_specific_log_levels</span></a></p><p><a href="https://univention.social/tags/keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keycloak</span></a> <a href="https://univention.social/tags/sso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sso</span></a> <a href="https://univention.social/tags/singlesignon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>singlesignon</span></a> <a href="https://univention.social/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a> <a href="https://univention.social/tags/oidc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oidc</span></a> <a href="https://univention.social/tags/logging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>logging</span></a> <a href="https://univention.social/tags/jboss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>jboss</span></a> <a href="https://univention.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sysadmin</span></a> <a href="https://univention.social/tags/followerpower" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>followerpower</span></a></p>
Silke Meyer<p>Im Hinblick auf den Keycloak Identity Provider kann man sich übrigens bei openDesk schön angucken, wie die verschiedenen Clients angebunden sind. Der vorkonfigurierte Keycloak ist auch ein tolles Beispiel für eine möglichst datensparsame/gezielte Freigabe von Nutzerattributen an die angebundenen Anwendungen.</p><p><a href="https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk/-/raw/main/helmfile/apps/univention-management-stack/values-opendesk-keycloak-bootstrap.yaml.gotmpl" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gitlab.opencode.de/bmi/opendes</span><span class="invisible">k/deployment/opendesk/-/raw/main/helmfile/apps/univention-management-stack/values-opendesk-keycloak-bootstrap.yaml.gotmpl</span></a></p><p><a href="https://univention.social/tags/openDesk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openDesk</span></a> <a href="https://univention.social/tags/Keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Keycloak</span></a> <a href="https://univention.social/tags/sso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sso</span></a> <a href="https://univention.social/tags/OIDC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OIDC</span></a> <a href="https://univention.social/tags/SAML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SAML</span></a> <a href="https://univention.social/tags/datasovereignty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>datasovereignty</span></a> <a href="https://univention.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> <a href="https://univention.social/tags/freesoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>freesoftware</span></a> <a href="https://univention.social/tags/kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>kubernetes</span></a></p>
Gonçalo Valério<p>"Ruby-SAML pwned by XML signature wrapping attacks"</p><p><a href="https://ssoready.com/blog/engineering/ruby-saml-pwned-by-xml-signature-wrapping-attacks/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ssoready.com/blog/engineering/</span><span class="invisible">ruby-saml-pwned-by-xml-signature-wrapping-attacks/</span></a></p><p><a href="https://s.ovalerio.net/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://s.ovalerio.net/tags/ruby" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ruby</span></a> <a href="https://s.ovalerio.net/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>saml</span></a> <a href="https://s.ovalerio.net/tags/sso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sso</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
LoginDrag & drop to upload