Identity & Security
-
IoT
Surprised? Turns out, consumers don’t trust IoT security
What customers and developers think of IoT security
-
Mitigations
5 Ways to Make Your App More Secure in Less than 20 Minutes
How to improve your app's security with features like MFA, encryption and more with just a few lines of Javascript.
-
Open Standards
Refresh Tokens: When to Use Them and How They Interact with JWTs
Learn about refresh tokens and how they fit in the modern web. Get a working sample of how to implement it with NodeJS
-
JWT
5 Steps to Add Modern Authentication to Legacy Apps Using JWTs
Conventional authentication is challenging for today's web applications. Learn about the reasons and how to use JSON Web Tokens (JWT) for modern authentication.
-
SSO
What Is and How Does Single Sign-On Authentication Work?
In this post you will learn about Single Sign-On authentication and how to use it for your web apps
-
JWT
JWT: 2 years later
Json Web Tokens (JWT) gets a logo, new website and more
-
Vulnerabilities
Critical vulnerabilities in JSON Web Token libraries
Which libraries are vulnerable to attacks and how to prevent them.
-
JWT
Adding JSON Web Token API Keys to a DenyList
Learn how to add JWT API keys to a DenyList so they are no longer valid.
-
SSO
SSO for Legacy Apps with Auth0, OpenID Connect & Apache
Auth0 SDKs make it really easy to add SSO to any app, on any platform. But sometimes, apps cannot be modified. What to do then? A very simple solution is to
-
OAuth Vulnerability
Covert Redirect OAuth vulnerability
TL;DR: If you use Auth0 you are not vulnerable to this attack. This attack is not new. It would only affect your application if it connects with OAuth
-
OpenID Connect
OpenID Connect 1.0 specs are final!
OpenID Connect final specs 1.0 were published today! This is a milestone for the identity community and we are happy to have been part of its development.
-
SSO
Connecting WS-Fed (WIF) based apps to Auth0
WS-Federation has been supported in Auth0 for quite some time. After all, it is the protocol used by SharePoint, MS-CRM, Rights Management Server, all of them supported by Auth0 from the very beginning
-
SSO
SSO with New Relic
A few days ago we released integration between Auth0 and New Relic. You can now login to New Relic with your Github, Google, Amazon, Twitter, Active Directory