Questions tagged [oidc]

Does the near-equivalence between DOMAIN\username and username@DOMAIN only hold for users or also for groups? In particular, can ADFS clients that request groups as claims with option Token-Groups - Qualified by Long Domain Name assume that the…

extraEnvVars: - name: MINIO_LOG_LEVEL value: DEBUG - name: MINIO_IDENTITY_OPENID_CONFIG_URL value: "https://authentik.righive.local/application/o/minio/.well-known/openid-configuration" - name: MINIO_IDENTITY_OPENID_CLIENT_ID …

We have a REST-based application (non-browser application) that uses Kerberos-based SPNEGO authentication, and which has been working with Flask. We want to convert this application to run under FastAPI, but we haven't figured out to get the…

I don't understand why AWS Cognito require a client secret when configuring an external IdP (e.g. Azure AD). AFAIK, AWS Cognito merely forwards federated identities to the external IdP for (OIDC) authorization code grant flows, which in turn results…