← All Tags
# authentication oidc

2 links tagged with all of: authentication + oidc

Click any tag below to further narrow down your results

+ cicd (1) + security (1) + vulnerabilities (1) + passkeys (1) + self-hosted (1) + docker (1)

Links

GitHub - pocket-id/pocket-id: A simple and easy-to-use OIDC provider that allows users to authenticate with their passkeys to your services.

Pocket ID is a straightforward OIDC provider that enables authentication using passkeys instead of passwords, positioning itself as a simpler alternative to more complex self-hosted providers like Keycloak and ORY Hydra. It supports various setup methods, with Docker being the easiest, and encourages contributions from the community.
Saved by tldr-importer · Last saved October 29, 2025 · 1 min read
oidc ✓ authentication ✓ + passkeys + self-hosted + docker

OH-MY-DC: OIDC Misconfigurations in CI/CD

Unit 42 researchers identified critical security risks in the implementation of OpenID Connect (OIDC) within CI/CD environments, revealing vulnerabilities that threat actors could exploit to access restricted resources. Key issues include misconfigured identity federation policies, reliance on user-controllable claim values, and the potential for poisoned pipeline execution. Organizations are urged to strengthen their OIDC configurations and security practices to mitigate these risks.
Saved by tldr-importer · Last saved October 29, 2025 · 6 min read
oidc ✓ + cicd + security + vulnerabilities authentication ✓