Michael Schwartz
Michael Schwartz
Let's not be paternalistic about password complexity for LDAP (or any database). Jans admins are grownups. They can decide what kind of password entropy they need. If you want a...
When you create an OpenID Connect client, there is actually only one required field: `redirect_uri` The default for `client_type` should be `web` The default for include_claims_in_id_token should be `false` The...
You should be able to "escape" from something. For example, if I try to update a script, it asks for `inum`... but what if I don't know it. There is...
I installed the server as `root`. I copied `.config/jans-cli.ini` to my local user, but when I try to run the CLI, I get the following error: ``` Traceback (most recent...
I tried installing the latest release on SUSE Leap `jans-1.0.0-suse15.x86_64.rpm`, but I get the following error when running setup:  ``` # cat /etc/os-release NAME="openSUSE Leap" VERSION="15.3" ID="opensuse-leap" ID_LIKE="suse opensuse"...
This customer challenge is just getting worse. While supporting draft specs is normally not encouraged, I think this would be helpful sooner rather then later. https://openid.net/specs/openid-connect-native-sso-1_0.html See video from Identiverse:...
We need to add content to the docs Architecture Guide (formerly Deployment and Planning) - [x] Platform Goal - [x] Use Cases - [x] Components - [ ] Cloud Native...
[OAuth 2.0 Step-up Authentication Challenge Protocol](https://datatracker.ietf.org/doc/draft-ietf-oauth-step-up-authn-challenge/) ``` It is not uncommon for resource servers to require different authentication strengths or freshness according to the characteristics of a request. This document...
[Initiating User Registration via OpenID Connect 1.0 - draft 06](https://openid.net/specs/openid-connect-prompt-create-1_0.html) Several years of deployment and implementation experience with [OpenID Connect Core 1.0](https://openid.net/specs/openid-connect-prompt-create-1_0.html#OpenID.Core) [[OpenID.Core](https://openid.net/specs/openid-connect-prompt-create-1_0.html#OpenID.Core)] has uncovered a need, in some circumstances,...
``` { "error": "invalid_client_metadata", "error_description": "The value of one of the Client Metadata fields is invalid and the server has rejected this request. Note that an Authorization Server MAY choose...