OpenID Connect: An Overview

•Descargar como PPTX, PDF•

5 recomendaciones•13,245 vistas

Pat Patterson

Brief overview of OpenID Connect - presented at Bay Area Identity Developers Meetup, Dec 2 2013.

Tecnología Noticias y política

OpenID Connect: An Overview
Pat Patterson
Developer Evangelist Architect
salesforce.com
@metadaddy

What is OpenID Connect?
• Specification defined by OpenID
Foundation ‘Connect’ Work Group
– NRI, Ping
Identity, Microsoft, Google, Salesforce etc

• Built on OAuth 2.0
• REST-based
• Successor to SAML?

OpenID Connect Status
• ‘Nearly complete’
– Second set of OpenID Connect
Implementer’s Drafts approved in July, 2013
– Interop testing under way
– Waiting for dependencies to be
standardized
• JWT, JWS etc

OpenID Connect Roles

Web-based, mobile, or
JavaScript Clients verify the
identity of End-Users based on
authentication performed by an
Authorization Server.

$OpenID Connect Token Response { "access_token":"SlAV32hkKG", "token_type":"Bearer", "expires_in":3600, "refresh_token":"tGzv3JOkF0XG5Qx2TlKWIA", "id_token":"eyJ0 ... NiJ9.eyJ1c ... ZXso” } • id_token is a JSON Web Token (JWT) – Signed, URL/filename-safe base64 encoded JSON data$

$OpenID Connect ID Token { "iss": "https://server.example.com", "sub": "24400320", "aud": "s6BhdRkqt3", "exp": 1311281970, "iat": 1311280970 } • Issuer, Subject, Audience, Expiry, Issued At • Also optional email, auth_time, nonce etc$

Who is Deploying OpenID Connect?
• Services:
Google, Salesforce, eBay, AOL, Deutsche
Telekom, Orange
• Vendors: IBM, Microsoft, Ping
Identity, Layer
7, ForgeRock, Gluu, MITRE, NRI

OpenID Connect in Action

• Client: Salesforce Community
• Auth Server: Google
• End User: Me!

Questions?
Pat Patterson
Developer Evangelist Architect
salesforce.com
@metadaddy

Más contenido relacionado

La actualidad más candente

Keycloak for Science Gateways - SGCI Technology Sampler Webinar

marcuschristie

An introduction to OAuth 2

Sanjoy Kumar Roy

Building secure applications with keycloak

Abhishek Koserwal

OAuth 2

ChrisWood262

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorisation. He will explore the existing impl More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro. Authentication is normally a stateful service. Most of the implementations rely on the HTTP session, thus introducing state as the session is an in-memory data structure in the application server. In the microservices era, most of the companies are developing such called RESTful services, where one of the principles is to create stateless systems. In such scenario, authentication should be stateless too. There is a standard specification to secure web application and API's, that is being adopted massively by the industry: OAuth 2. The specification doesn't explicitly cover how to make a stateless implementation. And most of the existing ones depend on some sort of external storage (such as a DB) to store the tokens generated for a later validation. Fortunately, there is another specification by the IETF called JSON Web Token, that can be combined with OAuth 2 to achieve a stateless authentication system. In the session, Alvaro will explain the core concepts of OAuth 2, as well as JWT and how can them be used together to achieve the last 2 letters of REST: State Transfer.

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

Alvaro Sanchez-Mariscal

OpenId Connect Protocol

Michael Furman

OAuth2 and Spring Security

Orest Ivasiv

SIngle Sign On with Keycloak

Julien Pivotto

Draft: building secure applications with keycloak (oidc/jwt)

Abhishek Koserwal

Understanding OpenID

Prabath Siriwardena

Mit 2014 introduction to open id connect and o-auth 2

Justin Richer

Demystifying SAML 2.0,Oauth 2.0, OpenID Connect

Vinay Manglani

OAuth2 - Introduction

Knoldus Inc.

OpenID Connect 4 SSI

Torsten Lodderstedt

Json Web Token - JWT

Prashant Walke

It seems that OAuth 2.0 is everywhere these days. Whether you are building a hot new single page web application (SPA), a native mobile experience, or just trying to integrate with the API economy, you can't go far without running into the popular authorization framework for REST/APIs and social authentication. During Oktane15 (https://www.okta.com/oktane15/), Karl McGuinness, our Senior Director of Identity, demystified the powerful, yet often misunderstood, world of OAuth 2.0 and shared details on Okta’s growing support for OpenID Connect.

Demystifying OAuth 2.0

Karl McGuinness

This slide deck gives an introduction to OAuth 2.0, starting with some concepts, explaining the flow plus a few hints. The reminder of the slides are about implementing an OAuth 2.0 server using the Apache Amber library (renamed to Apache Oltu lately). My impression is that many developers shy away as soon as they hear "security" and so I did not only want to talk about the concepts of OAuth 2.0 but also wanted to show how easily you can implement an OAuth 2.0 server ... hope it reduces the fear of contact a bit ... ;-)

OAuth 2.0

Uwe Friedrichsen

Spring security oauth2

axykim00

Implementing WebAuthn & FAPI supports on Keycloak

Yuichi Nakamura

An Introduction to OAuth2

Aaron Parecki

La actualidad más candente (20)

Keycloak for Science Gateways - SGCI Technology Sampler Webinar

An introduction to OAuth 2

Building secure applications with keycloak

OAuth 2

Stateless authentication with OAuth 2 and JWT - JavaZone 2015

OpenId Connect Protocol

OAuth2 and Spring Security

SIngle Sign On with Keycloak

Draft: building secure applications with keycloak (oidc/jwt)

Understanding OpenID

Mit 2014 introduction to open id connect and o-auth 2

Demystifying SAML 2.0,Oauth 2.0, OpenID Connect

OAuth2 - Introduction

OpenID Connect 4 SSI

Json Web Token - JWT

Demystifying OAuth 2.0

OAuth 2.0

Spring security oauth2

Implementing WebAuthn & FAPI supports on Keycloak

An Introduction to OAuth2

Similar a OpenID Connect: An Overview

OpenID Connect "101" Introduction -- October 23, 2018

OpenIDFoundation

OpenID Foundation Workshop at EIC 2018 - OpenID Connect Working Group Update

MikeLeszcz

OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...

OpenIDFoundation

CIS 2013 Ping Identity Chalktalk

Craig Wu

OpenID Foundation Connect Working Group Update - October 22, 2018

OpenIDFoundation

OpenID for SSI

Torsten Lodderstedt

ざっくり解説 LINE ログイン

Naohiro Fujie

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

CloudIDSummit

Five Things You Gotta Know About Modern Identity

Mark Diodati

Microservice architectures bring many benefits to software applications. But at the same time, new challenges of distributed systems have also been introduced. One of these challenges is how to implement a flexible, secure and efficient authentication and authorization scheme in such architectures. The common solution for this is to use stateless token-based authentication and authorization by adopting standard protocols like OAuth 2.0 and OpenID Connect (OIDC). In this talk, you will get a concise introduction into OAuth 2.0 and OIDC. We will look at OAuth 2.0 and OIDC grant flows and discuss the differences between OAuth 2.0 and OpenID Connect. Finally, you will be introduced to the current best practices currently evolved by the working group. So If you finally want to understand the base concepts of OAuth 2.0 and OIDC in a short time then this is the talk you should go for.

AllTheTalks.Online 2020: "Basics of OAuth 2.0 and OpenID Connect"

Andreas Falk

SSO with the WSO2 Identity Server

WSO2

Sso with the wso2 identity server

sureshattanayake

Implementing Microservices Security Patterns & Protocols with Spring

VMware Tanzu

How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...

Torsten Lodderstedt

Microservice with OAuth2

◄ vaquar khan ► ★✔

OpenID Foundation/Open Banking Workshop - OpenID Foundation Overview

MikeLeszcz

Keycloak SSO basics

Juan Vicente Herrera Ruiz de Alejo

As the industry’s first enterprise identity bus (EIB), WSO2 Identity Server is the central backbone that connects and manages multiple identities across applications, APIs, the cloud, mobile, and Internet of Things devices, regardless of the standards on which they are based. The multi-tenant WSO2 Identity Server can be deployed directly on servers or in the cloud, and has the ability to propagate identities across geographical and enterprise borders in a connected business environment.

WSO2 Identity Server - Product Overview

WSO2

Authorization and Authentication using IdentityServer4

Aaron Ralls

Getting Started with Spring Authorization Server

VMware Tanzu

Similar a OpenID Connect: An Overview (20)

OpenID Connect "101" Introduction -- October 23, 2018

OpenID Foundation Workshop at EIC 2018 - OpenID Connect Working Group Update

OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...

CIS 2013 Ping Identity Chalktalk

OpenID Foundation Connect Working Group Update - October 22, 2018

OpenID for SSI

ざっくり解説 LINE ログイン

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

Five Things You Gotta Know About Modern Identity

AllTheTalks.Online 2020: "Basics of OAuth 2.0 and OpenID Connect"

SSO with the WSO2 Identity Server

Sso with the wso2 identity server

Implementing Microservices Security Patterns & Protocols with Spring

How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...

Microservice with OAuth2

OpenID Foundation/Open Banking Workshop - OpenID Foundation Overview

Keycloak SSO basics

WSO2 Identity Server - Product Overview

Authorization and Authentication using IdentityServer4

Getting Started with Spring Authorization Server

Más de Pat Patterson

Keynote at Developer Week Global: Cloud on Sep 15, 2021. There are many, many resources for DevOps engineers: learning paths, guides and tutorials for using tools such as Terraform, Packer and Ansible to save time in provisioning and configuring reliable, predictable systems. This session looks at the other side of the equation: creating the plugins, modules and providers that abstract away upstream APIs for use by DevOps tools. Director of Developer Evangelism Pat Patterson will explain how Citrix implemented DevOps tooling for its App Delivery & Security products, and how the company is working with its community to create tooling for its Virtual Apps & Desktops Service. Pat will explain the different approaches to creating tooling, trade-offs between them, and the lessons that Citrix has learned along the way. This session will NOT be death-by-PowerPoint! Come prepared for semi-colons, curly braces and monospaced text!

DevOps from the Provider Perspective

Pat Patterson

Imprivata is a healthcare-focused IT security company. Using data integration tools from StreamSets, they built a pipeline to consolidate data from NetSuite, Salesforce, and Oracle in a cloud-based PostgreSQL data warehouse. Hear how their analytics team combined transaction, product, and support data in Einstein Analytics to support decision-making across their business functions: sales, marketing operations, product owners, and CxOs.

How Imprivata Combines External Data Sources for Business Insights

Pat Patterson

Presented at Orange County Advanced Analytics and Big Data Meetup, June 21 2019. Apache Kafka has fast become the dominant messaging technology for the enterprise; if you're a data scientist or data engineer and you have not yet worked with Kafka, that situation will likely change soon! In this session, Pat Patterson, director of evangelism at StreamSets, explains what Kafka is, why it has disrupted the previous generation of messaging products, and how you can use open source products to build dataflow pipelines with Kafka, without writing code.

Data Integration with Apache Kafka: What, Why, How

Pat Patterson

On a typical day we see hundreds of downloads of StreamSets Data Collector, our open source data integration tool. We used to wrangle our download logs using a combination of the AWS S3 command line, sed, grep, awk and other tools, all run from a shell script (on my laptop!) once a week. This was a classic example of a brittle, hard to maintain, custom data integration. One day it dawned on me, "This is crazy, we have a tool that can do all this!". In this session, I'll explain how I built a dataflow pipeline to stream content delivery network (CDN) logs from S3 to MySQL in real-time, allowing us to gain valuable insights into our open source community. You'll also learn how we use the same techniques to not only gain insights into our community on Slack, but also build tools to better serve them.

Project Ouroboros: Using StreamSets Data Collector to Help Manage the StreamS...

Pat Patterson

Presented at San Diego Predictive Analytics Meetup, Dec 5, 2017 Cox Automotive comprises more than 25 companies dealing with different aspects of the car ownership lifecycle, with data as the common language they all share. The challenge for Cox was to create an efficient engine for the timely and trustworthy ingest of data capability for an unknown but large number of data assets from practically any source. Discover how their big data engineering team overcame data drift and are now populating a data lake, allowing analysts easy access to data from their subsidiary companies and producing new data assets unique to the industry.

Dealing with Drift: Building an Enterprise Data Lake

Pat Patterson

Einstein Analytics (previously known as Wave Analytics) allows developers to not only create analytics applications, but also to create application templates that allow end-users to create their own analytics applications based on your master app. You, the developer, can define parameters and rules as part of the template, allowing the end-user to customize the app to their requirements. This Dreamforce 2017 session explains how to use Analytics Templates and the Analytics External Data API to automate the ingest of data from outside the platform, manipulating datasets and dataflows to provide a seamless experience for the user.

Integrating with Einstein Analytics

Pat Patterson

Apache Avro allows data to be self-describing, but carries an overhead when used with message queues such as Apache Kafka. Confluent’s open source Schema Registry integrates with Kafka to allow Avro schemas to be passed ‘by reference’, minimizing overhead, and can be used with any application that uses Avro. Learn about Schema Registry, using it with Kafka, and leveraging it in your application.

Efficient Schemas in Motion with Kafka and Schema Registry

Pat Patterson

Data drift, the gradual morphing of data structure and semantics, is a fact of life in enterprise IT. New requirements force schema changes, the meaning of database columns changes over time, and infrastructure upgrades add new fields to log files. Left unchecked, drift in data sources can cause applications and dataflows to fail, with costly downtime and, in the worst case, corruption in downstream data stores. Cox Automotive comprises more than 25 companies dealing with different aspects of the car ownership lifecycle, with data as the common language they all share. The challenge for Cox was to create an efficient engine for the timely and trustworthy ingest of data capability for an unknown but large number of data assets from practically any source. Discover how their big data engineering team overcame data drift and are now populating a data lake, allowing analysts easy access to data from their subsidiary companies and producing new data assets unique to the industry.

Dealing With Drift - Building an Enterprise Data Lake

Pat Patterson

Big data tools such as Hadoop and Spark allow you to process data at unprecedented scale, but keeping your processing engine fed can be a challenge. Metadata in upstream sources can ‘drift’ due to infrastructure, OS and application changes, causing ETL tools and hand-coded solutions to fail. StreamSets Data Collector (SDC) is an Apache 2.0 licensed open source platform for building big data ingest pipelines that allows you to design, execute and monitor robust data flows. In this session we’ll look at how SDC’s “intent-driven” approach keeps the data flowing, with a particular focus on clustered deployment with Spark and other exciting Spark integrations in the works.

Building Data Pipelines with Spark and StreamSets

Pat Patterson

Presented at Cassandra Summit 2016. Cassandra is a perfect fit for consuming high volumes of time-series data directly from users, devices, and sensors. Sometimes, though, when we consume data from the real world, systematic and random errors creep in. In this session, we'll see how to use open source tools like RabbitMQ and StreamSets Data Collector with Cassandra features such as User Defined Aggregates to collect, cleanse and ingest variable quality data at scale. Discover how to combine the power of Cassandra with the flexibility of StreamSets to implement adaptive data cleansing.

Adaptive Data Cleansing with StreamSets and Cassandra

Pat Patterson

Big data ingest frameworks ship with an array of connectors for common data origins and destinations, such as flat files, S3, HDFS, Kafka etc, but sometimes, you need to send data to, or receive data from a system that's not on the list. StreamSets includes template code for building your own connectors and processors; we'll walk through the process of building a simple destination that sends data to a REST web service, and show how it can be extended to target more sophisticated systems such as Salesforce Wave Analytics.

Building Custom Big Data Integrations

Pat Patterson

Ingest and Stream Processing - What will you choose?

Pat Patterson

Big Data tools such as Hadoop and Spark allow you to process data at unprecedented scale, but keeping your processing engine fed can be a challenge. Upstream data sources can 'drift' due to infrastructure, OS and application changes, causing ETL tools and hand-coded solutions to fail, inducing heartburn in even the most resilient data scientist. This session will survey the big data ingestion landscape, focusing on how open source tools such as Sqoop, Flume, Nifi and StreamSets can keep the data pipeline flowing.

Open Source Big Data Ingestion - Without the Heartburn!

Pat Patterson

Ingest and Stream Processing - What will you choose?

Pat Patterson

One of the basic tenets of the REST paradigm is that resources are individually identified by URLs. REST APIs provide access to resources by HTTP operations such as GET and POST on those URLs. While this approach makes for a clean abstraction, it can be inefficient - an application that makes an HTTP request for each resource it wishes to act on may deliver a poor user experience, especially in a high latency environment such as mobile. 'Boxcarring' allows us to bundle multiple operations into a single HTTP call. For example, an application might POST a whole set of resource representations for creation. Resources carried in the boxcar can be independent, or form a tree of linked resources. This session will explore the boxcar approach, show an implementation in action, and discuss whether this can still be considered a RESTful approach. Presented 9/30/15 at Integrate 2015.

All Aboard the Boxcar! Going Beyond the Basics of REST

Pat Patterson

Provisioning IDaaS - Using SCIM to Enable Cloud Identity

Pat Patterson

Why would anyone but the most pedestrian enterprise developer be interested in a data access protocol originally designed by Microsoft, implemented in XML and handed to OASIS for standardization? The Open Data Protocol, or OData for short, has evolved into a clean, RESTful interface for CRUD operations against data services. Alongside the usual enterprise suspects such as Microsoft, Salesforce and IBM, OData has been adopted by government and non-profit agencies to open up their data and make it accessible to the public. For developers wanting to consume data, or create their own OData services, there's no shortage of open source options, from Apache Olingo in Java to node-odata and ODataCpp. Whether you're accessing customer orders in SAP or the Whitehouse visitor book, you're going to need some OData smarts.

OData: Universal Data Solvent or Clunky Enterprise Goo? (GlueCon 2015)

Pat Patterson

Enterprise IoT: Data in Context

Pat Patterson

The Open Data Protocol, or OData for short, provides a RESTful interface for CRUD operations against data services. OData services, such as Microsoft Azure, SAP, and WebSphere expose data and metadata as typed name/value pairs in JSON or XML, allowing 'off-the-shelf' data consumers to integrate with services without custom code. This session gives an overview of OData, and explains why salesforce.com selected it as a protocol to integrate with external data services.

OData: A Standard API for Data Access

Pat Patterson

Presented at IRM Summit, June 4 2014. Abstract: Move over Thomas the Tank Engine! If developers are the train conductors of the railway, then APIs are the bullet trains of the future. In this session, Pat Patterson will explain how identity allows API ecosystems to flourish, enabling developers to build ever more elaborate integrations. Whether it be ExactTarget, Minecraft, or other great services, APIs are the basis for empowering developers to build boundary-less railways across the web. ALLLLLL ABOOOOOOOOOAAAARD!

API-Driven Relationships: Building The Trans-Internet Express of the Future

Pat Patterson

Más de Pat Patterson (20)

DevOps from the Provider Perspective

How Imprivata Combines External Data Sources for Business Insights

Data Integration with Apache Kafka: What, Why, How

Project Ouroboros: Using StreamSets Data Collector to Help Manage the StreamS...

Dealing with Drift: Building an Enterprise Data Lake

Integrating with Einstein Analytics

Efficient Schemas in Motion with Kafka and Schema Registry

Dealing With Drift - Building an Enterprise Data Lake

Building Data Pipelines with Spark and StreamSets

Adaptive Data Cleansing with StreamSets and Cassandra

Building Custom Big Data Integrations

Ingest and Stream Processing - What will you choose?

Open Source Big Data Ingestion - Without the Heartburn!

Ingest and Stream Processing - What will you choose?

All Aboard the Boxcar! Going Beyond the Basics of REST

Provisioning IDaaS - Using SCIM to Enable Cloud Identity

OData: Universal Data Solvent or Clunky Enterprise Goo? (GlueCon 2015)

Enterprise IoT: Data in Context

OData: A Standard API for Data Access

API-Driven Relationships: Building The Trans-Internet Express of the Future

Último

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

Manulife - Insurer Innovation Award 2024

The Digital Insurer

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

Scaling API-first – The story of a global engineering organization

Radu Cotescu

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

OpenID Connect: An Overview

1. OpenID Connect: An Overview Pat Patterson Developer Evangelist Architect salesforce.com @metadaddy

2. What is OpenID Connect? Simple Identity Layer for the Internet [OpenID Connect] allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.

3. What is OpenID Connect? • Specification defined by OpenID Foundation ‘Connect’ Work Group – NRI, Ping Identity, Microsoft, Google, Salesforce etc • Built on OAuth 2.0 • REST-based • Successor to SAML?

4. OpenID Connect Status • ‘Nearly complete’ – Second set of OpenID Connect Implementer’s Drafts approved in July, 2013 – Interop testing under way – Waiting for dependencies to be standardized • JWT, JWS etc

5. OpenID Connect Specification • OpenID Connect 1.0 Specification – Core – Discovery (optional) – Dynamic Registration (optional) – Session Management (optional) – OAuth 2.0 Multiple Response Types • Implementer’s Guides – Basic Client Profile – Implicit Client Profile

6. OpenID Connect Roles Web-based, mobile, or JavaScript Clients verify the identity of End-Users based on authentication performed by an Authorization Server.

7. OpenID Connect Basic Client Profile

8. OpenID Connect Implicit Client Profile

9. OpenID Connect Token Response { "access_token":"SlAV32hkKG", "token_type":"Bearer", "expires_in":3600, "refresh_token":"tGzv3JOkF0XG5Qx2TlKWIA", "id_token":"eyJ0 ... NiJ9.eyJ1c ... ZXso” } • id_token is a JSON Web Token (JWT) – Signed, URL/filename-safe base64 encoded JSON data

10. OpenID Connect ID Token { "iss": "https://server.example.com", "sub": "24400320", "aud": "s6BhdRkqt3", "exp": 1311281970, "iat": 1311280970 } • Issuer, Subject, Audience, Expiry, Issued At • Also optional email, auth_time, nonce etc

11. Who is Deploying OpenID Connect? • Services: Google, Salesforce, eBay, AOL, Deutsche Telekom, Orange • Vendors: IBM, Microsoft, Ping Identity, Layer 7, ForgeRock, Gluu, MITRE, NRI

12. OpenID Connect in Action • Client: Salesforce Community • Auth Server: Google • End User: Me!

13. Salesforce Community Login Page

14. Google Login Page

15. Google Authorization Page

16. Salesforce Community Home Page

17. Questions? Pat Patterson Developer Evangelist Architect salesforce.com @metadaddy