Aaron Parecki

#openid

• When PKCE Cannot Protect Your Confidential OAuth Client (www.hackmanit.de)

  #oauth #openid #pkce #nonce #security

  Mon, Oct 26, 2020 10:02am -07:00
• Internet Identity Workshop XXXI

  Oct

  20

  Oct

  21

  Oct

  22

  October 20-22, 2020
  3 days

  Online

  #iiw #oauth #openid #identity

  permalink
• What's New in OAuth and OpenID Connect

  Sep

  16

  September 16, 2020 11:20am - 11:50am (+1000)

  Online

  API Days Live Australia

  View Slides

  #apidays #security #oauth #openid

  permalink
• What's New in OAuth 2.1

  Aug

  19

  August 19, 2020 10:50am - 11:15am (+0800)

  Online

  API Days Live Singapore

  #oauth #openid #security #apidays

  permalink
• Hans Zandbelt https://twitter.com/hanszandbelt

  So at first Apple shortcutted OIDC protocol steps in SIWA which rendered them insecure, after fixing that they went on to add extras on top of OIDC which now renders them insecure again. It should be clear to everyone now: don't roll your own. #openid #siwa

  Portland, Oregon • 60°F

  #openid #siwa

  Sun, May 31, 2020 6:43pm +00:00 (liked on Sun, May 31, 2020 12:47pm -07:00)
• PKCE vs. Nonce: Equivalent or Not? (danielfett.de)

  #oauth #security #pkce #openid #nonce

  Mon, May 18, 2020 4:04pm -07:00
• 

  Something about Apple's decision to do "OAuth-but-not-quite" rubbed me the wrong way, but this is a great example of how it breaks down very concretely.
  
  https://twitter.com/atomicbird/status/1163478833326108673

  Santa Ana, California, USA

  18 likes 9 reposts 6 replies

  #apple #oauth #openid #oidc

  Mon, Aug 19, 2019 2:29pm -07:00
• Open Letter from the OpenID Foundation to Apple Regarding Sign in with Apple | Hacker News (news.ycombinator.com)

  #openid #appleid

  Sat, Jun 29, 2019 9:51pm -07:00
• Vidoop secures Messina and Norris – Silicon Florist (siliconflorist.com)

  #pdxtech #vidoop #openid

  Sat, Feb 2, 2019 7:18pm -08:00
• Steve Hutchinson https://twitter.com/IdentityHutch

  Nice rebuttal by @scottbrady91 from @rskltd to Okta's “Nobody Cares About #OAuth or #OpenID Connect.” I agree that developers should care and #identity professionals should elevate the discourse. @idpro_org @openid #OIDC https://www.scottbrady91.com/OAuth/Why-Developers-Do-Care-About-OAuth-and-OpenID-Connect

  Portland, Oregon • 42°F

  #OAuth #OpenID #identity #OIDC

  Mon, Jan 28, 2019 3:57pm +00:00 (liked on Mon, Jan 28, 2019 8:04am -08:00)
• W3C Workshop on Strong Authentication & Identity

  Dec

  10

  Dec

  11

  December 10-11, 2018
  

  Microsoft Building 27

  Redmond, Washington, US

  #oauth #openid

  permalink
• Petition · OpenID Connect Community Stakeholders: Reform Governance for OpenID Connect · Change.org (www.change.org)

  #openid #openidconnect

  Thu, Jul 26, 2018 11:02am -07:00
• Aaron Parecki https://aaronparecki.com/   •   Mar 7

  End of an era. StackOverflow is dropping support for OpenID. https://meta.stackexchange.com/questions/307647/support-for-openid-ends-on-july-1-2018
  

  In related news, indieauth.com usage is steadily growing. However the vast majority of that is people logging in to StackExchange since it was one of the last remaining OpenID consumers 😂

  

  Portland, Oregon • 40°F

  5 likes 1 reply

  #openid

  Wed, Mar 7, 2018 8:25am -08:00
• 

  End of an era. StackOverflow is dropping support for OpenID. https://meta.stackexchange.com/questions/307647/support-for-openid-ends-on-july-1-2018

  Portland, Oregon • 39°F

  6 likes 3 reposts 5 replies 3 mentions

  #openid #stackoverflow

  Wed, Mar 7, 2018 8:08am -08:00
• OpenID Connect Federation – notiz.Blog (notiz.blog)

  #openid #oauth #indieauth

  Wed, Feb 14, 2018 12:53pm -08:00
• Why we need a id_token in openID Connect & Facebook Connect | Thread Safe (www.thread-safe.com)

  

  #openid #oidc #openidconnect #id_token

  Tue, Apr 25, 2017 6:27pm -07:00
• Building the Social Web with OpenID (www.slideshare.net)

  

  #openid

  Fri, Mar 31, 2017 2:34pm -07:00

• Day 73: Updated Documentation for indieauth.com #100DaysOfIndieWeb

  Today I updated the documentation for indieauth.com to include a setup guide for using indieauth.com as your OpenID provider, and added more prominent links to the OpenID and PGP instructions in various places on the site.

  continue reading...

  2 mentions

  #100daysofindieweb #indieauth #openid

  Fri, Mar 3, 2017 8:38pm -08:00
• Wanda Lotus http://wandalotus.net   •   Feb 17

  The @wordpress OpenID plugin no longer works with my site. I’m having a hell of a time finding an easy way to use my WP domain as an OpenID.
  

  @wanda_lotus I use https://indieauth.com for the few sites left that consume OpenID. Setup instructions: https://indieweb.org/indieauth.com#OpenID

  Portland, Oregon, USA

  1 like

  #openid

  Fri, Feb 17, 2017 9:21am -08:00
• Joel Purra https://joelpurra.com   •   Jan 9

  Will consider #indieauth, but negatively angled "why not #openid" info had (has) me thinking otherwise https://indieweb.org/OpenID
  

  @joelpurra There also seem to be almost no OpenID providers left except indieauth.com, since myopenid shut down.

  Portland, Oregon, USA

  1 like 1 reply

  #indieauth #openid

  Mon, Jan 9, 2017 11:09am -08:00