Be skeptical of “definitions” that collide with marketing imperatives. There’s been news recently related to a tightening relationship between Google and Okta. Here’s a quote from a recent ZD Net article: “Together, [Okta and Google] will provide a multi-cloud reference architecture. As customers transition to a multi-cloud environment, they’ll be able to use the Okta … Read more >>

Earlier this year one of our partners, Amido, commissioned a piece of research to uncover how senior IT and marketing decision makers across six vertical markets are utilizing ever-increasing amounts of customer data to identify customers and personalize the customer experience. Amido spoke to leaders across the following six vertical markets: retail, media, financial services, … Read more >>

In a WebView any malicious code in the page has the same rights as your application, so you should make sure you only load trusted content. But there is another risk–a malicious app may also have access to browser content (like cookies) and may snoop passwords or intercept OAuth codes. So if you download some … Read more >>

This blog highlights a new Java sample application that illustrates authentication using a simple servlet and Gluu’s OpenID Connect libraries. This example assumes you already have an OpenID Connect client registered (i.e. you have a client id and secret). The source code is in the oxAuth Github repository. There are three important steps that we … Read more >>

Last year at the Cloud Identity Summit Google’s Product Management Director of Identity, Eric Sachs, gave an insightful talk about OpenID Connect. It was mostly the normal stuff about Account Chooser, and the idea of “identifier first” authentication workflow (great idea!). But then came a surprise. I’ll have to paraphrase since the talk was almost … Read more >>

Note: Gluu does not support SPNEGO. Chatting this week at EIC with Jackson Shaw from Dell, I mentioned my frustration with Gluu customers requesting SPNEGO, “a web-specific implementation of GSSAPI which is an IETF standard” says Dan McDougall, from Kitkoff Software (see his other interesting comments at the end of this post). In practice, its … Read more >>

Today we are pleased to announce general availability of the Gluu Server Community Edition (CE) 2.4.3, our industry leading free open source software (FOSS) identity and access management (IAM) platform.  Deploy the Gluu Server 2.4.3 Upgrade to the Gluu Server 2.4.3 Here are some of the notable updates included in Gluu Server CE 2.4.3: Support for … Read more >>