Web Blog_blogentry_170617_1


Gluu Server#

The Gluu Server includes a variety of components, each of which serves a different purpose. You can use any or all of the following:

Using oxd to support federation in an application provides both technical and business advantages:

oxd consolidates the OAuth2 code in one package. If new vulnerabilities are discovered in OAuth2/OpenID Connect, oxd is the only component that needs to be updated. The oxd APIs remain the same, so you don’t have to change and regression test your applications;

oxd is written, maintained, and supported by developers who specialize in application security. Because of the complexity of the standards–and the liability associated with poor implementations–it makes sense to rely on professionals who have read the specifications in their entirety and understand how to properly implement the protocols;

Centralization reduces costs. By using oxd across your IT infrastructure for application security (as opposed to a handful of homegrown and third party OAuth2 implementations), the surface area for vulnerabilities, issue resolution, and support is significantly reduced. Plus you have someone to call when something goes wrong!

OAuth 2.0 #

SAML vs OpenID Connect#


Both SAML and OpenID Connect have Discovery Mechanisms


SAML has

More Information#

There might be more information for this subject on one of the following: ...nobody