Tag oidc

Bookmark

Bookmarked Hacking Github AWS integrations again - Meanderings by Daniel Grzelak

Post details

Tue, 08 Aug 2023 18:08 by Jamie Tanna . #aws #github-actions #oidc.

Liked I'm deleting all of my AWS IAM keys | Man Yells at Cloud | Man Yells at Cloud

Post details

Tue, 21 Mar 2023 08:04 by Jamie Tanna . #aws #oidc #github-actions.

Liked Alex Wilson (@probablyfine@tech.lgbt)

Post details

Attached: 1 image Trying to find original attribution for parts of the OIDC spec and it's just

Wed, 25 Jan 2023 07:42 by Jamie Tanna . #oidc.

Liked Improve GitHub Actions OIDC security posture with custom issuer

Post details

GitHub Actions has supported using OIDC tokens for about 15 months now. It is a much better of providing AWS credentials to workflows than creating IAM users and storing long-lived access keys in GitHub Actions secrets.

Wed, 11 Jan 2023 09:02 by Jamie Tanna . #aws #github #oidc.

Repost

This is very cool! Looks like I need to implement OpenID Connect for my #IndieAuth server so I can get in on this 👀

Quoted a post on Twitter

Post details

The @projectsigstore documentation has a new Gitsign section explaining everything you need to know to start signing your commits with an OpenID identity, such as your GitHub or Google account. No need for dealing with GPG keys! docs.sigstore.dev/gitsign/overvi…
Erika Heidi 🌵✨ (@erikaheidi)Thu, 16 Jun 2022 13:51 +0000

Fri, 17 Jun 2022 08:29 by Jamie Tanna . #oidc #indie-auth.

Article

Getting the OpenID Connect thumbprint for AWS on the command-line with Go (2 mins read).

How to automagically retrieve an OpenID Connect thumbprint for use with AWS' OpenID Connect federated identity.

Fri, 06 May 2022 21:20 by Jamie Tanna . #blogumentation #go #certificates #aws #oidc.

Liked GitHub - zitadel/oidc: Easy to use OpenID Connect client and server library written for Go and certified by the OpenID Foundation

Post details

Easy to use OpenID Connect client and server library written for Go and certified by the OpenID Foundation - GitHub - zitadel/oidc: Easy to use OpenID Connect client and server library written for ...

Fri, 06 May 2022 21:04 by Jamie Tanna . #go #oidc.

Article

Protecting an Architect Framework Application with OAuth2 or OpenID Connect Authentication (4 mins read).

How to set up OAuth2/OpenID Connect authentication with an Architect Framework application.

Mon, 11 Apr 2022 11:10 by Jamie Tanna . #blogumentation #architect-framework #nodejs #aws-lambda #oidc #indieauth #oauth2.

Liked GitHub - panva/node-openid-client: OpenID Certified™ Relying Party (OpenID Connect/OAuth 2.0 Client) implementation for Node.js.

Post details

OpenID Certified™ Relying Party (OpenID Connect/OAuth 2.0 Client) implementation for Node.js. - GitHub - panva/node-openid-client: OpenID Certified™ Relying Party (OpenID Connect/OAuth 2.0 Client) ...

Sun, 10 Apr 2022 10:25 by Jamie Tanna . #nodejs #oauth2 #oidc.

Article

Automagically deploying Architect Framework applications to AWS uisng GitLab CI (3 mins read).

How to use GitLab's OpenID Connect support with AWS, to allow deployment using the Architect Framework automagically on GitLab CI.

Wed, 30 Mar 2022 15:17 by Jamie Tanna . #blogumentation #oidc #architect-framework #aws #gitlab #gitlab-ci.

Liked https://identityunlocked.auth0.com/public/49/Identity%2C-Unlocked.--bed7fada/8876c26c .

Wed, 19 Jan 2022 08:30 by Jamie Tanna . #oidc #oauth2 #oauth #identity.

Note

Has anyone done anything interesting aside from cloud provider deployments with the #OIDC support in #GitLab and #GitHub? Thinking I may use it as a means to automatically publish notes to my site via #Micropub when publishing a new version of a library

Sun, 16 Jan 2022 16:42 by Jamie Tanna . #oidc #git-lab #git-hub #micropub.

Liked https://curity.io/resources/learn/token-designer/ .

Thu, 23 Dec 2021 17:05 by Jamie Tanna . #oauth #oauth2 #oidc.

Liked https://gitlab.com/guided-explorations/oidc/configure-oidc-in-aws .

Fri, 17 Dec 2021 10:14 by Jamie Tanna . #gitlab #gitlab-ci #aws #oidc.

Liked https://github.com/nov/openid_connect .

Thu, 16 Dec 2021 08:52 by Jamie Tanna . #ruby #oidc.

Liked https://www.youtube.com/watch?v=45eiv4BhXHI&t=1s .

Mon, 06 Dec 2021 16:41 by Jamie Tanna . #github #github-actions #oidc.

Liked https://github.blog/2021-11-23-secure-deployments-openid-connect-github-actions-generally-available/ .

Thu, 25 Nov 2021 12:42 by Jamie Tanna . #github #oidc.

Article

Why You Should Avoid using Client Secret Authentication for OAuth2 Client Credentials (7 mins read).

Why I recommend against using client secret authentication for OAuth2 and OpenID Connect APIs.

Tue, 09 Nov 2021 11:45 by Jamie Tanna . #oauth #oauth2 #oidc #security.

Liked https://github.com/OpenIdentityPlatform/OpenAM .

Mon, 08 Nov 2021 19:22 by Jamie Tanna . #oauth #openam #oauth2 #identity #oidc.

Article

Implementing IndieAuth Server Metadata (2 mins read).

Announcing support for OAuth Server Metadata on my IndieAuth Server.

Fri, 15 Oct 2021 22:35 by Jamie Tanna . #www.jvt.me #indieauth.jvt.me #indieauth #oauth2 #oidc.

Liked a post on Twitter

Post details

So with the recent discovery that GitHub Actions create an OIDC identity per run, it's possible to configure Vault to allow auth w/ Actions identities and subsequently use that to get access to... anything. Some cleanup required but this is very promising! (c/o @grantorchard)
Mitchell Hashimoto (@mitchellh)Mon, 20 Sep 2021 21:02 +0000

Mon, 20 Sep 2021 22:19 by Jamie Tanna . #github #oauth2 #oidc.

Bookmark

Bookmarked https://portswigger.net/research/hidden-oauth-attack-vectors .

Thu, 25 Mar 2021 19:20 by Jamie Tanna . #oauth #oauth2 #oidc #security.

Liked https://honeyryderchuck.gitlab.io/httpx/2021/03/15/oidc-provider-on-rails-using-rodauth-oauth.html .

Wed, 24 Mar 2021 16:24 by Jamie Tanna . #oauth #oauth2 #oidc #ruby #rails.

Article

Generating the Client Assertion JWT for private_key_jwt Authentication with Ruby (1 mins read).

A helper script to generate the client assertion required to authenticate to an Authorization Server that supports private_key_jwt, on the command-line with Ruby.

Mon, 15 Jun 2020 23:12 by Jamie Tanna . #blogumentation #ruby #command-line #jwt #json #oidc.