2017-06-17#

Gluu Server#

The Gluu Server includes a variety of components, each of which serves a different purpose. You can use any or all of the following:

Using oxd to support federation in an application provides both technical and business advantages:

oxd consolidates the OAuth2 code in one package. If new vulnerabilities are discovered in OAuth2/OpenID Connect, oxd is the only component that needs to be updated. The oxd APIs remain the same, so you don’t have to change and regression test your applications;

oxd is written, maintained, and supported by developers who specialize in application security. Because of the complexity of the standards–and the liability associated with poor implementations–it makes sense to rely on professionals who have read the specifications in their entirety and understand how to properly implement the protocols;

Centralization reduces costs. By using oxd across your IT infrastructure for application security (as opposed to a handful of homegrown and third party OAuth2 implementations), the surface area for vulnerabilities, issue resolution, and support is significantly reduced. Plus you have someone to call when something goes wrong!

OAuth 2.0 #

SAML vs OpenID Connect#

Metadata#

Both SAML and OpenID Connect have Discovery Mechanisms

Clients#

SAML has

More Information#

There might be more information for this subject on one of the following: ...nobody

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-10) was last changed on 17-Jun-2017 11:07 by jim