Showing posts with label OpenID Connect. Show all posts
Showing posts with label OpenID Connect. Show all posts

Thursday, July 4, 2019

Mobile Single Sign-On

The other day, we were at customer's site and the discussion was on Mobile Single Sign-On (MSSO). This customer will be launching a few mobile applications and he would like users to have the convenience of not having to sign-on every time a mobile application is launched.


Traditional Mobile Single Sign-On

The traditional method of achieving MSSO is to develop yet another mobile application to act as a SSO Wallet and the SSO Wallet will act as the bridge between the various mobile applications and the Identity Provider (IdP). 

I'm using Gluu Server as an example now. But IdP can be any federation solution. 



Modern Mobile Single Sign-On

In iOS and Android, simple MSSO solutions are provided by tapping on the Cookie concept in browser.

For iOS, SFSafariViewController is recommended, while in Android, Chrome Custom Tabs is suggested. 




Quite convenient to implement.

Of course, we did discuss about a scenario whereby Chrome browser is not installed, then MSSO on Android will fail. This can be overcome by user education.


.

Posted by at 1 comment:
Labels: , , , , , ,

Tuesday, October 29, 2013

OpenID Connect - Nutshell - Part III

I was cleaning up my Dropbox this morning and came across this presentation slide from Forrester - ForgeRock Webinar - Portable Identity Makes IT a Business Enabler.

This compares OpenID Connect against the traditional SAML 2.0 / OpenID 2.0 and the recently more popular OAuth 2.0.



Pretty good.


.

Posted by at 1 comment:
Labels:

Saturday, October 19, 2013

OpenID Connect - Nutshell - Part II

There you are.. in ForgeRock European Summit, OpenID Connect is one of the OpenAM 11.0 Highlights. 



Below is another slide showing how OpenID Connect works...




By the way, OpenAM 11.0 will be released in a few weeks time. Stay tuned!

.

Posted by at No comments:
Labels: ,

Tuesday, October 15, 2013

OpenID Connect - Nutshell

In the next release of OpenAM 11.0, we'll see OpenID Connect being rolled out.




There has been a little bit of a hype trying to roll out OpenID Connect, even though the Standard Specification 1.0 is still at Draft 21 as of July 5, 2013. Read here. I'm not saying OpenAM in particular, but many others. :>

So what's OpenID Connect actually?




I found these 2 links from Nat Sakimura a good read to get started with:

1. Dummy’s guide for the Difference between OAuth Authentication and OpenID
2. OpenID Connect in a nutshell





.



Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)