Our #Keycloak highlights from #Kubecon EU London! Watch the recoded talk about #OpenIDConnect and #Observability, and join our survey at https://www.keycloak.org/2025/04/keycloak-kubecon25-eu-recap

One login to rule them all.

The more tools a company uses, the more passwords employees juggle. Over 65% reuse passwords, creating serious security risks.

That’s why Single Sign-On is essential for modern teams. And with the latest Zammad 6.5 release, it’s now even more powerful: OpenID Connect is officially supported!

We’ve created a practical blog post on what #SSO is, how it works in Zammad, and how to set it up:
https://zammad.com/en/blog/secure-yor-helpdesk-with-single-sign-on

LemonLDAP::NG 2.21 is out!

This new release includes improvements on OpenID Connect and CAS protocols, Loki logger, public notifications and much more.

Read our release notes: https://projects.ow2.org/view/lemonldap-ng/lemonldap-ng-2-21-0-is-out/

@ow2 @worteks_com

Nous avons eu le plaisir de participer aujourd'hui à l'enregistrement d'un épisode du Podcast "Tout est sous CTRL" produit par nos amis de Centreon.

Interviewé par Vincent Untz , @clementoudot est venu parler de gestion des identités et des accès (IAM), d'authentification mutli-facteurs (2FA/MFA) et de PasswordLess, mais surtout d'Open Source !

@ow2 @opensource_experts @fsfe

The Voxxed Days Zurich schedule is out!
Looking for ward to meet you there on March 25 in my talk "Authenticate and authorize users your way" that is featuring #Keycloak and #OpenIDConnect!
https://zurich.voxxeddays.com/

New videos about #OpenIDConnect and #Keycloak from #FOSDEM 2025

Several talks have been recorded, and are now available online to re-watch. See our blog post for the list of talks and developer rooms:
https://www.keycloak.org/2025/02/recordings-available-fosdem

I'm super confused after reading http://www.thread-safe.com/2012/01/problem-with-oauth-for-authentication.html and its take-home message that we should *not* be using #OAuth2 for authentication: that's what #OpenIDConnect is for.

If that's the case, why does #Forgejo, Gitea etc. allow OAuth2 to be used this way?

That blog post was from 2012 but I've seen the same advice in 2019 at https://github.com/zmartzone/lua-resty-openidc/issues/261#issuecomment-483841062 : “OAuth 2.0 cannot be used for user authentication”. (That GH issue is part of what I'm chasing down as part of dev work.)

So this is where I'm at now. A not so insignificant OpenID Connect SSO plugin for WordPress that I pretty much maintain on my own will now no longer get updates.

https://wordpress.org/plugins/daggerhart-openid-connect-generic/

https://github.com/oidc-wp/openid-connect-generic/issues/568

Du bist noch auf der Suche nach einem #KEYCLOAK IAM & SSO #Training!?

Dann komm zu mir in meine Onsite Training in #Darmstadt am 17. und 18. September 2024! Hier erhältst Du den perfekten Einstieg in die Welt der #Authentifizierung mit #OpenIDConnect

Jetzt #anmelden: https://www.socreatory.com/de/trainings/keycloak?ref=niko

In Zusammenarbeit mit @socreatory

What would you choose? Please leave your reason or your thoughts as a comment. #OIDC #OpenIDConnect #Oauth #SAML #Authentication #Security

Was würdet ihr wählen? Der Grund bzw. eure Gedanken dazu bitte als Kommentar. #OIDC #OpenIDConnect #Oauth #SAML #Authentifizierung #Sicherheit #Security

I decided to write a post about OIDC. This post is about Babka Socially specifically but I think it generalizes as well

https://blog.emacsen.net/blog/2024/06/03/oidc-didnt-work-for-me/

#Mediawiki
#OpenIDConnect

Are #developers reading here?

I am working on the OpenIDConnect extension since a couple of days.

What are your #suggestions for improvement of the extension, GUI, further features etc.?

On my list are:
show subject/issuers info
show registration time
allow multi OIDC accounts
OIDC identity deletion button
better merging-in with existing accounts (fixing some present issues which prevent this in certain cases)

Im UCS Technik-Track auf dem #UniventionSummit stellt Emanuel Holzmann von h2 invent die Integration des Videotools #Meetling über #Keycloak in UCS vor.  

Emanuel zeigt, wie durch #SAML und #OpenIDConnect eine nahtlose Anbindung möglich wird und die Nutzer*innen durch den Einsatz von #Kerberos weder Medienbrüche erleben noch separate Login-Fenster nutzen müssen.

Sehr spannend für alle, die mehr über die einfache Authentifizierung von Nutzer*innen erfahren möchten.

Streamline your team's login process with Passbolt Pro single-sign on plugin for #OpenID providers! Visit our blog for the full details: https://www.passbolt.com/blog/openid-for-sso #OpenIDConnect #keycloak

Wir modernisieren #UCS u.a. mit der Etablierung von #Keycloak als Identity Provider. Damit können sich Benutzer mit einem Single Sign-on an IT-Diensten anmelden, egal ob diese #OpenIDConnect oder #SAML für die Authentifizierung nutzen.

Mehr zu der Umstellung und der damit einhergehenden Abkündigung von #SimpleSAMLphp und #KopanoConnect lest ihr im Blogpost:

https://www.univention.de/blog-de/2023/09/idp-ucs-5-2-keycloak/

This is the official Mastodon account for LemonLDAP::NG, a Web Single Sign On free software compatible with many open standards like CAS, SAML and OpenID Connect.

We will publish here information about releases and new features. Please follow us!

See also our official website: https://www.lemonldap-ng.org

While I’m busy creating training courses at illuminated-security.com, I am also available for consultancy and short-term contracting work. Check out my website for details.