Explore the strengths and weaknesses of OpenID Connect (OIDC) as a Single Sign-On (SSO) solution in this conference talk. Dive into the fundamental concepts of OIDC, its functionality, and how it compares to other federated authentication systems like SAML. Examine integration examples with Harbor and Kubernetes, and address common challenges such as user onboarding and role management. Learn how to implement OIDC in non-OIDC aware applications using Nginx proxy authentication delegation. Gain insights into OAuth flows, JSON Web Tokens, and practical tools for working with OpenID. Through real-world examples and demonstrations, understand the intricacies of OIDC implementation, including application support and potential caveats, to make informed decisions about adopting this SSO solution for your cloud-native environment.
OpenID Connect as SSO Solution - Strengths and Weaknesses
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Intro
Agenda
What is SSO
What is OAuth Connect
OAuth Flows
User Interaction
State parameter
Post request
Implicit flow
The callback
Other options
SAML
OAuth2 vs OpenID
JSON Web Tokens
Why use OpenID
Useful tools
OpenID
Flask
Callback
Login Page
Dashboard
Real World Example
Application Support
Nexus Support
Caveats
Recap
Questions
Authentication
Taught by
CNCF [Cloud Native Computing Foundation]
