OAuth and SAML: Mobile meets enterprise

By |2016-10-13T14:31:23-04:00May 13th, 2013|IDM360|

OAuth and SAML: Mobile meets enterprise OAuth has become the de-facto standard for mobile application authentication.  SAML is the single sign-on mechanism of choice for enterprise web applications.  Why would you need both?  Imagine this common scenario.  You are deploying a cool new mobile application on a Mobile App Server in the cloud. Some [...]

Comments Off on OAuth and SAML: Mobile meets enterprise

Is OAuth a good protocol for Single Sign-on?

By |2016-10-13T14:31:26-04:00May 13th, 2013|IDM360|

I've seen a number of posts stating that Open Authorization (OAuth) is not a good/safe/efficient protocol for Single Sign-on (SSO). The main argument is that OAuth is intended for authorization (asking permission to use a resource) rather than authentication (confirming a user is who they say they are). The reality is that before you can [...]

Comments Off on Is OAuth a good protocol for Single Sign-on?