CIS14: Enterprise Identity APIs

•

0 likes•454 views

Bhagyashree Prabhakar, E*Trade How to create APIs that enable developers without IAM expertise to implement IAM consistently and correctly.

Technology

Enterprise Auth APIs
...WHEEL GREASE FOR IAM

BHAGYA PRABHAKAR

E*TRADE FINANCIAL

Enterprise Auth APIs
§ What?

§ Standard
IAM
APIs

for
the
enterprise

§ Why?

§ Separa6on
of
concerns

§ How?

§ IAM
exper6se
and
good
so<ware
engineering

Familiar?
Internet

OAuth

Server

Auth

Agent

API

API

API

App

Access
Tokens

SAML

Server

SAML

Asser6ons

Mutual
Authen6ca6on

Client
Side
SSL

HTML
Basic

HTML
Basic

User

App
Sec

Developers

Kerberos

App

Desiderata something that is needed or wanted
§ Standardized
solu6on
across
applica6ons

§ Consistent
user
experience

§ Loose
coupling
to
IAM
systems

§ New
auth
methods,
minimal/no
app
changes

§ Enforce
policy

§ More
control
and
granularity

Enterprise Auth API
Internet

OAuth

Server

Auth

Agent

API

SAML

Server

SAML

Asser6ons

Mutual
Authen6ca6on

Over
SSL

HTML
Basic

HTML
Basic

User

App
Sec

Developers

API
API

App
Enterprise
Auth

API/SDK

Enterprise
Auth
API
Core
Impl

Kerberos

App

Example : Get AuthenIcated User’s Details
thisMustBeSimpler
()
{

SecurityContext
securityContext=SecurityContextHolder.getContext();

if
(securityContext
!=
null)
{

Authen6ca6on
authen6ca6on=securityContext.getAuthen6ca6on();

if
(authen<ca<on
!=
null)
{

if
(authen<ca<on.getPrincipal()
instanceof
EnterpriseUserDetails)
{

EnterpriseUserDetails
userDetails=(EnterpriseUserDetails)

authen6ca6on.getPrincipal();

String
sessionId=userDetails.getServerSessionId();

}

}

}

}

With an Enterprise Auth API

Authen<ca<onInfo
{

isAuthen<cated();

getUserId();

getUserName();

getRoles();

getUserDetails();

}

nowThisIsMuchBeLer()
{

Authen6ca6onInfo
authnInfo
=
Authen<ca<onInfo.newInstance();

UserDetails
userDetails=authnInfo
.getUserDetails();

String
sessionId=userDetails.getServerSessionId();

}

A Couple More Examples

 Federator
{

 

federate(aLributes,
endpoint);

 }

 Authoriza<onInfo
{

 

hasRole(role);

 

getRoles();

 }

CreaIng an API
…THAT DEVELOPERS WANT TO USE

GeQng Started
§ Derive
from
exis6ng
use-‐cases

§ Talk
to
applica6on
developers

§ Beware
of
an6
paXerns
-‐
bullet
point
engineering,
abstrac6on

inversion

§ Build
on
top
of
modular
Auth
framework

§ Spring
Security,
Shiro,
my-‐favorite-‐framework

§ Simplify
and
constrain

§ Enterprise
speciﬁc
rules

Make it Modular and Portable
§ No
kitchen
sink
of
all
APIs
to
integrate
with

§ Separate
API
and
impl
modules

§ Consumers
depend
on
API

§ Swap
out
underlying
impl

§ Integra6on
in
other
languages

§ Dis6ll
into
a
web
service
layer

§ Language
speciﬁc
SDK

Maintain...Maintain...Maintain
§ Support
the
developers
who
use
it

§ Help
developers
proac6vely

§ Implement
ﬁxes
and
extensions
quickly

§ Keep
up
with
the
IAM
industry

§ Make
it
SOLID

§ Use
Seman6c
Versioning

Return on Investments
§ De
facto
standard
auth
API
in
the
Enterprise

§ Mix
and
match
several
IAM
systems

§ No
vendor
lock
in

§ Rapid
prototype
development

§ Quick
applica6on
integra6on

§ Improved
upon
our
applica6on
security
prac6ce

§ Detec6on
and
remedia6on

What’s Important...
§ Façade
away
auth
frameworks
and
IAM
systems

§ Enhance
and
constrain
3rd
party
components
with

organiza6on
rules

§ Make
it
modular,
portable
and
easy
to
use

§ Keep
up
with
the
IAM
industry

So?
§ Beneﬁt
from
a
standardized
IAM
solu6on
across

applica6ons

Thanks!
To
Adam
Migus
and
E*TRADE
Financial

E-‐mail:
bhagyashree.prabhakar@etrade.com

Links

hXp://semver.org/

hXp://en.wikipedia.org/wiki/SOLID_(object-‐oriented_design)

hXp://projects.spring.io/spring-‐security/

hXp://shiro.apache.org/

hXp://en.wikipedia.org/wiki/Desiderata

The document discusses CloudStack's plans to implement an Identity and Access Management (IAM) service. It describes CloudStack's current limited IAM capabilities and the goal to provide a pluggable IAM service. The proposed architecture includes hosting an independent IAM server and integrating an IAM plugin with CloudStack via adapter interfaces. The plugin would support new IAM APIs and policies to control access at the user, group, and resource levels. Example use cases are provided to demonstrate how the IAM service could enable cross-account access policies and role-based access controls.

IdP, SAML, OAuth

Dan Brinkmann

IdP, SAML, OAuth are new acronyms for identity in the cloud. SAML is used for federated authentication between an identity provider (IdP) like Active Directory and a service provider (SP) like Office 365. The IdP authenticates the user and sends a SAML token with claims to the SP. OAuth streamlines authentication for mobile by issuing short-lived access tokens instead of passing full credentials or SAML assertions between each service. It allows authorization without passwords and tokens can be revoked, reducing risks of compromised apps. Office 365 uses Azure Active Directory as an IdP with SAML or OAuth to authenticate users from an on-premises Active Directory via federation or synchronization.

Uncovering XACML to solve real world business use cases

WSO2

This document discusses XACML (eXtensible Access Control Markup Language), which is an OASIS standard for access control policy language and request/response protocol. It describes key XACML concepts like policy-based access control and attribute-based access control. The document then outlines some advantages of XACML, challenges in using it, and provides examples of how XACML can be used for real-world use cases like controlling access to SOAP/REST APIs, web applications, and databases. Specific business use cases demonstrated include X.509 certificate-based authorization, externalizing authorization for a portal, and building a centralized entitlement system.

Authentication across the Atlassian Ecosystem - AtlasCamp 2011

Atlassian

Why lasagna is better than spaghetti: baking authorization into your applicat...

David Brossard

Next-generation access control is undergoing a bit of an identity crisis. Some call it eXternalized Authorization Management, others Dynamic Access Control and still others just refer to it as Attribute Based Access Control (ABAC). Until now, XACML and ABAC have been the two pillars supporting next-gen AuthZ. Gartner predicts that 70% of enterprises will adopt ABAC by 2020. With ALFA, REST, and JSON, even the most complex authorization scenarios become extremely simple to implement. It's haute cuisine made simple. In this session, we will go hands-on with examples, live demos, coding, and delicious samples.

XACML for Developers - Updates, New Tools, & Patterns for the Eager #IAM Deve...

David Brossard

OAuth Authorization flows in salesforce

Kishore B T

Spring Security is a framework for authentication and authorization in Java applications. It provides components for authentication filters, providers, and managers as well as user details services. Basic authentication uses HTTP basic auth with a username and password encoded in the request header. Form authentication displays a login form and uses CSRF protection. Custom authentication allows multiple auth types by implementing custom auth providers, users, grants, and handlers. The documentation covers getting started, architecture, basic auth, form auth, and custom auth configurations and demos.

Saml in cloud

Nagraj Rao

The document discusses security challenges in cloud computing and how Security Assertion Markup Language (SAML) can address them. It provides an overview of cloud computing models and trends. It then outlines key security challenges like single sign-on, authentication, identity management, and access to data in heterogeneous cloud environments. The document explains the basic concepts and components of SAML like assertions, protocols, bindings, and profiles. It provides examples of how SAML can enable single sign-on, distributed transactions, authorization, and secure web services. Finally, it discusses how SAML can specifically address security challenges in cloud computing through identity federation, trust domains, token translation, and delegated authentication.

Azure API Management

jeremysbrown

This document discusses Azure API Management and how it can help create a successful API program. It outlines key components like developer engagement, analytics, and security. It also describes the logical architecture of API Management and how it can host APIs from any platform or framework. Several demos are included that showcase features like adding the API Management service, creating APIs and products, configuring policies, and using OAuth 2.0 for security.

BDD Approach with Karate Framework in Service Tests

kloia

This document discusses using the Karate framework for behavior driven development (BDD) in service tests. It provides an overview of test approaches in software like test driven development, data driven development, acceptance test driven development and BDD. It also discusses what web services and web service testing are. The document then introduces the Karate framework, describing that it is open-source, supports mocks, performance and UI tests, and uses BDD. It provides an example of using Karate to test an LDAP authentication scenario and outlines Karate's capabilities like hooks, transforms, loops, authentication handling and more. The document concludes with a demo and Q&A contact details.

Security enforcement of Java Microservices with Apiman & Keycloak

Charles Moulliard

This document summarizes approaches for securing Java microservice applications at different levels: 1) The endpoint level using frameworks like Spring Security or interceptors to apply authentication and authorization. 2) The web container level by applying constraints to restrict access to resources based on roles. 3) An external API management layer that acts as a proxy, enforcing centralized policies before requests reach endpoints.

Spring Boot Authentication...and More!

Stormpath

Sign up for Stormpath: https://api.stormpath.com/register More from Stormpath: https://stormpath.com/blog Join Stormpath Java Developer Evangelist Micah Silverman for a technical overview of the common pain points with Java authentication. We'll cover how to solve them with Stormpath in a Spring Boot application, and demonstrate how to quickly add a complete user management system to your Spring Boot app. By the end of this webinar, you’ll be on your way to a fully functioning Spring Boot app backed by Stormpath. Topics Covered: Authentication Pain Points in Java Stormpath, Spring Boot, and Your Architecture Demo: Auth in Spring Boot, with these features: A complete user registration and login system Pre-built login screens Password reset workflows Group-based authorization Advanced user features: API authentication, Single Sign-On, social login, and more Technical Q&A

API as-a-Product with Azure API Management (APIM)

Bishoy Demian

Transitions from a single App or a closed system to an open ecosystem that drives innovation and delivers value-add Apps and services for your end-users. Monetise your data with minimal hassle & cost. Reach your end-users on any platform. Enable your IoT strategy with a strong cloud-based API platform. Using Azure API Management, you can build a modern interactive developer portal for your APIs. Learn about your API usage patterns with analytics. Secure access, and manage subscriptions with quotas and throttling.

SAML Smackdown

Pat Patterson

Azure AD B2C Webinar Series: Identity Protocols OIDC and OAuth2 part 2

Vinu Gunasekaran

This document summarizes a webinar about integrating Azure Active Directory B2C (AAD B2C) with applications using the Microsoft Authentication Libraries (MSAL). It discusses how MSAL can be used to acquire tokens to call protected APIs and validate tokens in web APIs and applications. It provides an overview of using MSAL in .NET Core web apps to sign users in with AAD B2C, redeem authorization codes to acquire tokens, and implement token caching for silent authentication. The document demonstrates how to build a .NET Core web app that signs users in with AAD B2C using MSAL.

Password less auth using Azure AD

CloudFronts Technologies LLP.

Hands on with ASP.NET MVC

rahulsahay19

Contents of Hands on with ASP.NET MVC book. This book gives complete insight of how to develop and End To End Application using MVC right from the scratch. In this book I have also covered MVC 6 upcoming version apart from MVC 5 and MVC 4. Best thing about this book, it is drafted in such a way, that even college passouts who have no knowledge of MVC, will grasp the concepts easily and see the implementation live.

Secure API Services in Node with Basic Auth and OAuth2

Stormpath

How to Use Stormpath in angular js

Stormpath

Single Page Apps bring a unique set of concerns to authentication and user management. Robert Damphousse, lead Javascript engineer at Stormpath, will show you how to use Stormpath to secure an Angular.js app with any backend: Java, Node, PHP, .NET and more! Robert will deep dive into Angular.js authentication best practices and an extended technical example. Join us! Topics Covered: - Authentication in Single Page Apps (SPA) - Using JWTs instead of Session IDs - Secure Cookie storage - Cross-Origin Resource Sharing - Where does Stormpath fit in your architecture? - End-to-end example with Angular.js + Express.js - Password-based registration and login - How to secure your API endpoints - Implement User Authorization - Design for a frictionless User Experience

Best Practices for API Security

MuleSoft

APIs have become a strategic necessity for your business. They facilitate agility and innovation. However, the financial incentive associated with this agility is often tempered with the fear of undue exposure of the valuable information that these APIs expose. With data breaches now costing $400m or more, senior IT decision makers are right to be concerned about API security. In this SlideShare, you'll learn: -The top API security concerns -How the IT industry is dealing with those concerns -How Anypoint Platform ensures the three qualifications needed to keep APIs secure

API Security and Management Best Practices

CA API Management

Iam f42 a

SelectedPresentations

OAuth 2.0 is an open standard for authorization that enables apps to securely access APIs on behalf of users. It has become widely adopted for consumer apps but presents challenges for enterprise use cases. The presentation discusses adapting OAuth 2.0 for enterprises by supporting administrative authorization, mobile SSO federation, and server-to-server flows that exchange credentials or assertions for API tokens to enable API federation and password-less access across clouds. Future directions include further standardizing assertion flows and mobile app federation.

Tour of Heroku + Salesforce Integration Methods

Salesforce Developers

Combining customer-facing apps on Heroku with employee-facing apps on Salesforce enables a whole new generation of connected and intelligent experiences. There are four primary ways to do this integration: Heroku Connect, Canvas, Apex / Process Callouts, and the Salesforce REST APIs. Using code and architectural examples, we'll walk through these different methods. You will walk away knowing when you should use each and how to use them.

Advanced Administration: Kaseya BYOD Suite

Kaseya

This document discusses setting up and managing a BYOD program using Kaseya's mobile access tools. It describes defining allowed data sources for users to access, including websites, documents, and email. Sources can be segmented by Active Directory groups. The document also covers configuring document repositories, setting permissions, and using direct or relayed access. It emphasizes leveraging single sign-on via NTLM authentication and using logs to monitor access and troubleshoot issues.

Camunda BPM - Said Mengi

kloia

Salesforce Integration

Joshua Hoskins

Security & Compliance for Modern Serverless Applications (SRV319-R1) - AWS re...

Amazon Web Services

Serverless architecture and a microservices approach has changed the way we develop applications. Increased composability doesn't have to mean decreased auditability or security. In this talk, we discuss the security model for applications based on AWS Lambda functions and Amazon API Gateway. Learn about the security and compliance that comes with Lambda right out of the box and with no extra charge or management. We also cover services like AWS Config, AWS Identity and Access Management (IAM), Amazon Cognito, and AWS Secrets Manager available on the platform to help manage application security.

What API Specifications and Tools Help Engineers to Construct a High-Security...

Hitachi, Ltd. OSS Solution Center.

Yoshiyuki Tabata from Hitachi presented on API specifications and tools that help engineers construct high-security API systems. He discussed standards like OAuth 2.0, OIDC, PKCE, and OAuth MTLS. Useful features for testing include decoding tokens to check validity, and calling authorization server endpoints to validate access control. Implementing these features in mock servers and clients allows engineers to efficiently test if high-security requirements are met before production.

What's hot

Spring Security

Manish Sharma

Saml in cloud

Nagraj Rao

Azure API Management

jeremysbrown

BDD Approach with Karate Framework in Service Tests

kloia

Security enforcement of Java Microservices with Apiman & Keycloak

Charles Moulliard

Spring Boot Authentication...and More!

Stormpath

API as-a-Product with Azure API Management (APIM)

Bishoy Demian

SAML Smackdown

Pat Patterson

Azure AD B2C Webinar Series: Identity Protocols OIDC and OAuth2 part 2

Vinu Gunasekaran

Password less auth using Azure AD

CloudFronts Technologies LLP.

Hands on with ASP.NET MVC

rahulsahay19

Secure API Services in Node with Basic Auth and OAuth2

Stormpath

How to Use Stormpath in angular js

Stormpath

Best Practices for API Security

MuleSoft

API Security and Management Best Practices

CA API Management

Iam f42 a

SelectedPresentations

Tour of Heroku + Salesforce Integration Methods

Salesforce Developers

Advanced Administration: Kaseya BYOD Suite

Kaseya

Camunda BPM - Said Mengi

kloia

Salesforce Integration

Joshua Hoskins

What's hot (20)

Spring Security

Saml in cloud

Azure API Management

BDD Approach with Karate Framework in Service Tests

Security enforcement of Java Microservices with Apiman & Keycloak

Spring Boot Authentication...and More!

API as-a-Product with Azure API Management (APIM)

SAML Smackdown

Azure AD B2C Webinar Series: Identity Protocols OIDC and OAuth2 part 2

Password less auth using Azure AD

Hands on with ASP.NET MVC

Secure API Services in Node with Basic Auth and OAuth2

How to Use Stormpath in angular js

Best Practices for API Security

API Security and Management Best Practices

Iam f42 a

Tour of Heroku + Salesforce Integration Methods

Advanced Administration: Kaseya BYOD Suite

Camunda BPM - Said Mengi

Salesforce Integration

Similar to CIS14: Enterprise Identity APIs

Security & Compliance for Modern Serverless Applications (SRV319-R1) - AWS re...

Amazon Web Services

What API Specifications and Tools Help Engineers to Construct a High-Security...

Hitachi, Ltd. OSS Solution Center.

SharePoint Fest Chicago 2015 - Anatomy of configuring provider hosted add-in...

Nik Patel

Preparing for Data Residency and Custom Domains

Atlassian

Atlassian customers have long requested the ability to control where they host their content in Atlassian Cloud. They’ve also long desired the ability to configure their cloud products to be accessible via a custom domain. These features are coming soon to Jira and Confluence Cloud! What will this mean for Marketplace app developers? Join Nuwan Ginige, Principal Product Manager on the Cloud Platform team, as he walks through how the evolution of Atlassian’s cloud platform has shaped the development of these capabilities. Learn how these changes will impact Marketplace apps, and how you can get involved in app vendor early access progress before general availability.

SAP HANA Cloud – Virtual BootcampSecuring SAP HANA Cloud Applications

SAP PartnerEdge program for Application Development

SID305 AWS Certificate Manager Private CA

Amazon Web Services

AWS Certificate Manager (ACM) Private Certificate Authority (CA) is a managed private CA service that helps you easily and securely manage the lifecycle of your private certificates. In this session, learn how ACM Private CA extends ACM’s certificate management capabilities to private certificates and enables you to centrally manage public and private certificates. We also demonstrate how ACM Private CA enables you to create a Private CA and use it to create and deploy private certificates for your AWS resource and internal resources. We also discuss case studies demonstrating how customers use ACM Private CA to automate security and certificate management.

Community call: Develop multi tenant apps with the Microsoft identity platform

Microsoft 365 Developer

Building an application that can be provisioned and used in multiple Azure AD tenants goes far beyond just flipping a switch in your app configuration. The developer has to undertake application provisioning, decide on a provisioning strategy, push changes to customers, manage identities flowing from multiple tenants, collect essential information from authentication signals, learn to differentiate the different types of users they will encounter and understand the key differences from the B2B scenarios. In this community call, Kalyan Krishnan reviews the steps and considerations required to develop, configure, provision, and manage multi-tenant applications. For more information, visit https://aka.ms/identityplatform

Everything you always wanted to know about API Management (but were afraid to...

Massimo Bonanni

Azure API Management is an Azure service that allows developers to implement a consistent and secure access layer to their APIs. It provides features like throttling to prevent DOS attacks, JWT token validation for security, and a developer portal for API documentation and testing. The key components of API Management include the API gateway, publisher portal, developer portal, and policies for pre/post processing requests. Products are used to surface APIs to developers through subscriptions.

Enterprise Security

Amazon Web Services

Complex architectures for authentication and authorization on AWS

Boyan Dimitrov

In this talk we discuss key architecture patterns for designing authentication and authorization solutions in complex microservices environments. We focus on the key advantages and capabilities of AWS Cognito User Pools and Federated Identities and explore how this service can address the challenges of implementing client to service, service to service and service to infrastructure auth. In addition, we discuss patterns and best practices around building a highly available and resilient decentralised authorization solution for microservices environments based on OIDC. We present a simple RBAC implementation together with fine-grained permissions and end to end automation.

CQRS and Event Sourcing

Inho Kang

The document discusses CQRS (Command Query Responsibility Segregation) and event sourcing patterns for building distributed applications. CQRS separates commands, which change data, from queries, which read data. Event sourcing records all state changes as a sequence of immutable events. This allows reconstructing any past state and enables easy distribution of data. The document provides examples of how event sourcing and CQRS can be implemented using event stores, event projections, and read models to support both commands and queries independently.

[Hands-on] CQRS(Command Query Responsibility Segregation) 와 Event Sourcing 패턴 실습

Oracle Korea

Dave Carroll Application Services Salesforce

deimos

The document discusses enterprise grade business application services provided through the Force.com platform as a service (PaaS). It provides an overview of Force.com's capabilities including building any type of business application, flexibility to integrate with other systems, security, and trust due to many customers and developers using the platform. Key aspects of Force.com covered include the multi-tenant architecture, APIs for development, and security options like single sign-on and two-factor authentication.

Trusted by Default: The Forge Security & Privacy Model

Atlassian

Security and trust have become increasingly important requirements for our customers in Cloud. We’re working to make it easier for you to build and maintain secure apps for Atlassian products. In this session, Engineering Team Lead Dugald Morrow and Principal Product Manager Joël Kalmanowicz will explain how security and trust have been baked into the Forge framework and the benefits the platform can offer you and your users. Learn how much less work it can be to build trusted apps customers will love on Forge by going deep on the safeguards we’re putting in place. Developers or attendees with some software security experience will get the most out of this session.

Extending Oracle SSO

kurtvm

With a complete new Identity/Access Management Suite on the Oracle market, one might forget the good old SSO server, bundled with each and every IAS server. Although it has some out-of-the-box capabilities like WNA and X509 certificate support, it can be quite hard to set up an authentication scheme just the way you (or your customers) like it. Using a case study, this presentation discusses how you can extend Oracle’s Single Sign On (SSO) server to your needs. It will discuss : - Integration & authentication with smartcard passports (eID) - Authentication with digital certificates - Implementing fallback authentication schemes - Integration with SSL terminators and reverse proxies - DIY federated authentication - writing your own SSO plugin The solutions presented are part of AXI NV/BV's portfolio.

Secure and Optimize APIs using Azure API Management

BizTalk360

Policy enabling your services - using elastic dynamic authorization to contro...

David Brossard

This document discusses policy-based authorization approaches for APIs and microservices. It describes the limitations of traditional token-based authorization using SAML and OAuth and proposes a policy-based approach using the ALFA language. ALFA allows declarative attribute-based policies that can consider identity, action, resource attributes and relationships to make dynamic authorization decisions. The document recommends enforcing authorization at API gateways and data sources using a centralized or distributed policy decision engine. It demonstrates how ALFA policies can be used to authorize and redact fields in API responses.

The Automation of Supervision Governance in the Cloud

Amazon Web Services

The document discusses automating security governance in the cloud. It recommends establishing foundational security controls by leveraging native AWS services for identity, visibility, and encryption. It also advocates implementing continuous compliance by automating assessments using AWS Config and other services. The "governance layer cake" model involves assessing AWS services, implementing baseline controls, and adding workload-specific controls to provide automated yet flexible governance that scales with the cloud.

Security as a Service - Tian Wang

VMware Tanzu

The document provides an overview of security services available on the Cloud Foundry platform including UAA (Universal Authentication and Authorization) and Credhub. UAA provides identity and access management capabilities including single sign-on (SSO), OAuth 2.0/OpenID Connect protocols, and user authentication and authorization. Credhub provides secure credential management through generation, storage, and rotation of credentials. The document discusses how Spring applications can leverage these services through UAA's identity broker and Spring CredHub client to integrate SSO and manage credentials in a Cloud Foundry deployment. Demo sections show examples of UAA for SSO and Credhub for credential management.

SAP Single Sign-On 2.0 Overview

SAP Technology

Similar to CIS14: Enterprise Identity APIs (20)

Security & Compliance for Modern Serverless Applications (SRV319-R1) - AWS re...

What API Specifications and Tools Help Engineers to Construct a High-Security...

SharePoint Fest Chicago 2015 - Anatomy of configuring provider hosted add-in...

Preparing for Data Residency and Custom Domains

SAP HANA Cloud – Virtual BootcampSecuring SAP HANA Cloud Applications

SID305 AWS Certificate Manager Private CA

Community call: Develop multi tenant apps with the Microsoft identity platform

Everything you always wanted to know about API Management (but were afraid to...

Enterprise Security

Complex architectures for authentication and authorization on AWS

CQRS and Event Sourcing

[Hands-on] CQRS(Command Query Responsibility Segregation) 와 Event Sourcing 패턴 실습

Dave Carroll Application Services Salesforce

Trusted by Default: The Forge Security & Privacy Model

Extending Oracle SSO

Secure and Optimize APIs using Azure API Management

Policy enabling your services - using elastic dynamic authorization to contro...

The Automation of Supervision Governance in the Cloud

Security as a Service - Tian Wang

SAP Single Sign-On 2.0 Overview

More from CloudIDSummit

CIS 2016 Content Highlights

CIS14: Enterprise Identity APIs

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to CIS14: Enterprise Identity APIs

Similar to CIS14: Enterprise Identity APIs (20)

More from CloudIDSummit

More from CloudIDSummit (20)

Recently uploaded

Recently uploaded (20)

CIS14: Enterprise Identity APIs