Posts tagged 'explainer'

  • What happens to the tokens after an OAuth Authorization Code grant?

    What happens to the tokens after an OAuth Authorization Code grant?
    Dan Moore  |  Jan 19th, 2023

    At the end of the OAuth Authorization Code grant, after a user presents their credentials at login, a code is returned which can be exchanged for one or more tokens at the token endpoint.

    These tokens include an access token, an optional refresh token, and an optional id token. The access token is used to get access to different APIs and protected resources. The refresh token lets you mint new access tokens, and the id token is used by the client to display information about the user.

    READ MORE
  • OIDC vs SAML: What's the Difference?

    OIDC vs SAML: What's the Difference?
    Paul Ibeabuchi  |  Jan 9th, 2023

    It’s essential for digital platforms to keep their data and resources secure, which is why authentication protocols are so necessary. Authentication protocols are sets of rules used to determine the identity of an entity (such as an end user, application, or device) before granting access. This differs from authorization in that authentication is concerned with identity, while authorization is concerned with permissions. Although authentication is followed by authorization, the reverse is not typically true.

    READ MORE
  • How single sign-on works

    How single sign-on works
    Dan Moore  |  Sep 8th, 2022

    Single sign-on (SSO) is a key part of any customer identity and access management (CIAM) strategy.

    Why? Because your organization will almost always have more than one application for your customers. Even if you begin with one custom application, SaaS tools such as support forums, ticketing systems, or chat systems require authentication. You won’t want your users to have to log in to more systems than necessary, and SSO can help with that.

    READ MORE
  • What is SCIM?

    What is SCIM?
    Dan Moore  |  Jun 27th, 2022

    SCIM is a specification to add and remove users and groups using a standard protocol.

    READ MORE
  • Customer Identity and Access Management (CIAM) vs Identity and Access Management (IAM)

    Customer Identity and Access Management (CIAM) vs Identity and Access Management (IAM)
    Dan Moore  |  May 10th, 2022

    Both Customer Identity and Access Management (CIAM) and IAM (Identity and Access Management) are about people who are users of your system: who can access what, how do they prove who they are, and how you manage access over time. Though there are similarities between CIAM and IAM, at their heart they serve different needs.

    Let’s take a look at these two identity management archetypes and see how they differ.

    READ MORE