please-open.it

Lock your session without logging out in Keycloak by using a PIN code https://t.co/lP3zSMi9cx

oauth2proxy configuration generator for Keycloak https://t.co/Ydn1vQVnoI

European Companies: if you host your data with a US cloud provider, you are not GDPR-compliant. ⚠️ The Cloud Act overrides data location. Yes, even if your servers are in Europe. ⬇️ https://t.co/OxTr8Wi3tj

An authentication proxy is the best pattern for deploying SSO on existing and new apps. The proxy is in charge of the authentication mechanism, the application receive authenticated requests with the user's details in HTTP Headers. https://t.co/XouQ3Bz4qL

After oidc-bash, we tried to make a JWT Decoder in bash. It was so complicated with the signatures! https://t.co/jxkBAMtRa8

Another module for Keycloak : user attribute regexp mapper Because in Keycloak user attributes are multivalued (with ability to aggregate them with "user attribute mapper"), we added a regexp filter only to send back attribute if it matches. https://t.co/10kHpfnqcP

New Keycloak module : groups regexp mapper. Map only groups (to a token, userinfo...) that only matches to a RegExp https://t.co/lRbUCAocEK

Keycloak has announced "workflows" as a preview feature. A welcome feature we already implemented years ago with... n8n. This is how we did : https://t.co/jeCdEOQJMz

Postgres 18 now supports oauth2.0 authentication 🥳 https://t.co/0kUZmISluM https://t.co/zMaQPCrxCM

Map HTTP headers to claims in tokens. We built this to support locales during a client_credentials authentication process https://t.co/MqEkbLU3lQ

An authenticator to match rfc8252 8.12 ! "native apps MUST NOT use embedded user-agents to perform authorization requests and allows that authorization endpoints MAY take steps to detect and block authorization requests in embedded user-agents" https://t.co/zeV69CtOkY