↳
In-reply-to
»
Speaking of SSO and a draft blog post I'm writing that I think I'll call Protecting Internal Web Resources (comments, feedback welcome before I publish 🙏) -- I've been thinking for a while now about building a new project based around Indie Auth that provides a full solution to managing a set of users that you could use in place of the more traditional approach of LDAP or Active Directory (shudder 🙄). The use-case I have in mind is to (for example) have
⤋ Read More
auth.example.com that runs this software, lets me manage users, users can manage their credentials, information, etc. Then other software like Gitea, Authelia, or basically anything you want could use it as an "Authentication backend" / "Identity Provider".
@ocdtrekkie@twtxt.net You may be right in that Capability based Security is the “better” way of securing applications and data access, sure, but we do probably need to innovate here, right now I feel like I’m at a point where my understanding of and experience with CAS (if that’s a valid acronym for this?) is limited and whilst I will continue to think about it, I’m unlikely to adopt the Sandstorm model as-is.