all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How to convince client that homebrew SSO and URL tokens is the wrong way to go.

Add to bookmarks
May 25, 2022, 9:40 p.m. | /u/schnllr

cybersecurity www.reddit.com

tl;dr: how can I convince the client that a homebrew SSO with URL tokens is a bad idea? Can you point me to material?

Our tiny company just went into business with this huge American corporation (S&P 400), and we need to integrate their tool into our Auth system, effectively turning their own login into an identity provider from our app's perspective.

Even though we are able to integrate via a proper SAML 2.0 flow, they insist on having a …

client cybersecurity go homebrew sso tokens url

Visit resource

More from www.reddit.com / cybersecurity

What's a free SIEM tool that's compatible with Windows Server? 7 hours ago | www.reddit.com
central college console cybersecurity +12
Copilot‘s screen-snapping Recall data stored in plain text 10 hours ago | www.reddit.com
copilot cybersecurity data plain text +3
Cops Swarm Global Cybercrime Botnet Infrastructure in 2 Massive Ops 12 hours ago | www.reddit.com
botnet cops cybercrime cybersecurity +4
What are the most common IAM and PAM solutions in cybersecurity? 13 hours ago | www.reddit.com
cybersecurity cybersecurity professional goal iam +5
How does hiring in APT groups work? 13 hours ago | www.reddit.com
apt apt groups can cybersecurity +5
State of WiFi Security in 2024 14 hours ago | www.reddit.com
article cybersecurity exploiting feedback +9
Prioritize Blue Team for Cybersecurity Success 16 hours ago | www.reddit.com
blue blue team box can +16
Reported a Critical Vulnerability, Retested, and Now I Guess I'm Just Shouting Into the Void? 19 hours ago | www.reddit.com
bypass critical critical vulnerability cvss +6
NIST unveils ARIA program to evaluate and verify AI capabilities & impacts. 20 hours ago | www.reddit.com
ai capabilities aria aria program capabilities +4

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com