Hi,๐Ÿ‘‹ we have updated the app and fixed multiple bugs. We are lacking funds, request to free user not to use Adblock. Ads are non intrusive. ๐Ÿ˜Š

โœจ Visual Editor

close

palette Canvas & Background

Gradient:arrow_forward
Text Color:
135ยฐ

style Card Style

40px
16px

text_fields Typography

16px
Dr Milan Milanoviฤ‡
@milan_milanovic
๐—›๐—ผ๐˜„ ๐—ฑ๐—ผ๐—ฒ๐˜€ ๐—ฆ๐—ถ๐—ป๐—ด๐—น๐—ฒ ๐—ฆ๐—ถ๐—ด๐—ป-๐—ข๐—ป (๐—ฆ๐—ฆ๐—ข) ๐˜„๐—ผ๐—ฟ๐—ธ?

Single sign-on (SSO) is an authentication process that allows a user to access multiple applications with a single login. This is accomplished using a central authentication server that stores the user's credentials and verifies them for each application.

Here are ๐˜๐—ต๐—ฒ ๐˜€๐˜๐—ฒ๐—ฝ๐˜€ that happen if you want to access Trello by using your Google account:

1. Use the Trello login web page and select Google account as a login method
2. Trello redirects the user to the Google login page
3. User is served with the Google login page
4. The user enters their Google credentials
5. Trello forwards credentials to Google
6. Google sends authentication info to the SSO Authorization server
7. If credentials are valid, the Authorization server returns the auth token (SAML)
8. Google send the auth token to the Trello
9. In the last step, Trello sends the token to the Google Authorization server to validate its
10. If the token is valid, Trello will allow access to the user and store the session for future interactions

The ๐—ฏ๐—ฒ๐—ป๐—ฒ๐—ณ๐—ถ๐˜๐˜€ of SSO are:

๐Ÿ”น Improved user experience: Users do not need to remember multiple usernames and passwords.

๐Ÿ”น Increased security: Users are less likely to reuse passwords across applications.

The ๐—ฑ๐—ถ๐˜€๐—ฎ๐—ฑ๐˜ƒ๐—ฎ๐—ป๐˜๐—ฎ๐—ด๐—ฒ๐˜€ are:

๐Ÿ”ธ Single point of failure: One of the most notable disadvantages is that SSO creates a single point of failure. The attacker could access all connected applications and services if the SSO system is compromised.

๐Ÿ”ธSecurity risks: If credentials are compromised, the security of all connected applications could be at risk.

Some ๐—ฐ๐—ผ๐—บ๐—บ๐—ผ๐—ป ๐˜๐˜†๐—ฝ๐—ฒ๐˜€ ๐—ผ๐—ณ ๐—ฆ๐—ฆ๐—ข are:

๐Ÿ”น ๐—ฆ๐—”๐— ๐—Ÿ-๐—ฏ๐—ฎ๐˜€๐—ฒ๐—ฑ ๐—ฆ๐—ฆ๐—ข: This is the most common type of SSO. It uses the SAML protocol to exchange authentication information between the SSO server and applications.

๐Ÿ”น ๐—ข๐—”๐˜‚๐˜๐—ต ๐Ÿฎ.๐Ÿฌ: It provides delegated access to server resources on behalf of a resource owner. It specifies how tokens are transferred, allowing a user's identity to be authenticated by an IDP and the credentials to be used to access APIs.

๐Ÿ”น ๐—ข๐—ฝ๐—ฒ๐—ป๐—œ๐—— ๐—–๐—ผ๐—ป๐—ป๐—ฒ๐—ฐ๐˜: This is a newer type of SSO based on OAuth 2.0. It is a more straightforward protocol than SAML and is easier to integrate with web applications.

Some ๐—ฝ๐—ผ๐—ฝ๐˜‚๐—น๐—ฎ๐—ฟ ๐—ฆ๐—ฆ๐—ข ๐˜€๐—ผ๐—น๐˜‚๐˜๐—ถ๐—ผ๐—ป๐˜€ are:

๐Ÿ”น Azure Active Directory
๐Ÿ”น Okta
๐Ÿ”น Ping Identity
๐Ÿ”น OneLogin
๐Ÿ”น Google Cloud Identity Platform

#programming #web
Thread image
Dr Milan Milanoviฤ‡
@milan_milanovic
To expand your knowledge and personal growth, subscribe to my free weekly newsletter with 20,000+ people: https://t.co/MMCXxQQR4F.
Generated by Thread Navigator
100%
view_carousel Carousel Studio NEW
Press โŒ˜ + S to quick-export