Hi,๐Ÿ‘‹ we have updated the app and fixed multiple bugs. We are lacking funds, request to free user not to use Adblock. Ads are non intrusive. ๐Ÿ˜Š

@milan_milanovic: ๐—›๐—ผ๐˜„ ๐—ฑ๐—ผ๐—ฒ๐˜€ ๐—ฆ๐—ถ๐—ป๐—ด๐—น๐—ฒ ๐—ฆ๐—ถ๐—ด๐—ป-๐—ข๐—ป (๐—ฆ๐—ฆ๐—ข) ...

@milan_milanovic
28 views Dec 19, 2023
1
๐—›๐—ผ๐˜„ ๐—ฑ๐—ผ๐—ฒ๐˜€ ๐—ฆ๐—ถ๐—ป๐—ด๐—น๐—ฒ ๐—ฆ๐—ถ๐—ด๐—ป-๐—ข๐—ป (๐—ฆ๐—ฆ๐—ข) ๐˜„๐—ผ๐—ฟ๐—ธ?

Single sign-on (SSO) is an authentication process that allows a user to access multiple applications with a single login. This is accomplished using a central authentication server that stores the user's credentials and verifies them for each application.

Here are ๐˜๐—ต๐—ฒ ๐˜€๐˜๐—ฒ๐—ฝ๐˜€ that happen if you want to access Trello by using your Google account:

1. Use the Trello login web page and select Google account as a login method
2. Trello redirects the user to the Google login page
3. User is served with the Google login page
4. The user enters their Google credentials
5. Trello forwards credentials to Google
6. Google sends authentication info to the SSO Authorization server
7. If credentials are valid, the Authorization server returns the auth token (SAML)
8. Google send the auth token to the Trello
9. In the last step, Trello sends the token to the Google Authorization server to validate its
10. If the token is valid, Trello will allow access to the user and store the session for future interactions

The ๐—ฏ๐—ฒ๐—ป๐—ฒ๐—ณ๐—ถ๐˜๐˜€ of SSO are:

๐Ÿ”น Improved user experience: Users do not need to remember multiple usernames and passwords.

๐Ÿ”น Increased security: Users are less likely to reuse passwords across applications.

The ๐—ฑ๐—ถ๐˜€๐—ฎ๐—ฑ๐˜ƒ๐—ฎ๐—ป๐˜๐—ฎ๐—ด๐—ฒ๐˜€ are:

๐Ÿ”ธ Single point of failure: One of the most notable disadvantages is that SSO creates a single point of failure. The attacker could access all connected applications and services if the SSO system is compromised.

๐Ÿ”ธSecurity risks: If credentials are compromised, the security of all connected applications could be at risk.

Some ๐—ฐ๐—ผ๐—บ๐—บ๐—ผ๐—ป ๐˜๐˜†๐—ฝ๐—ฒ๐˜€ ๐—ผ๐—ณ ๐—ฆ๐—ฆ๐—ข are:

๐Ÿ”น ๐—ฆ๐—”๐— ๐—Ÿ-๐—ฏ๐—ฎ๐˜€๐—ฒ๐—ฑ ๐—ฆ๐—ฆ๐—ข: This is the most common type of SSO. It uses the SAML protocol to exchange authentication information between the SSO server and applications.

๐Ÿ”น ๐—ข๐—”๐˜‚๐˜๐—ต ๐Ÿฎ.๐Ÿฌ: It provides delegated access to server resources on behalf of a resource owner. It specifies how tokens are transferred, allowing a user's identity to be authenticated by an IDP and the credentials to be used to access APIs.

๐Ÿ”น ๐—ข๐—ฝ๐—ฒ๐—ป๐—œ๐—— ๐—–๐—ผ๐—ป๐—ป๐—ฒ๐—ฐ๐˜: This is a newer type of SSO based on OAuth 2.0. It is a more straightforward protocol than SAML and is easier to integrate with web applications.

Some ๐—ฝ๐—ผ๐—ฝ๐˜‚๐—น๐—ฎ๐—ฟ ๐—ฆ๐—ฆ๐—ข ๐˜€๐—ผ๐—น๐˜‚๐˜๐—ถ๐—ผ๐—ป๐˜€ are:

๐Ÿ”น Azure Active Directory
๐Ÿ”น Okta
๐Ÿ”น Ping Identity
๐Ÿ”น OneLogin
๐Ÿ”น Google Cloud Identity Platform

#programming #web
Media image
2
To expand your knowledge and personal growth, subscribe to my free weekly newsletter with 20,000+ people: https://t.co/MMCXxQQR4F.
Actions
Visual Editor Carousel Maker NEW
Update Thread
What You Can Do
  • Download as PDF
  • Save to Notion
  • Export as Markdown
  • Visual Editor
  • LinkedIn & Instagram Carousel Maker
Create Free Account

Includes 7-day Premium trial