{R}R 開発ノート
合計 8 件の記事が見つかりました。
Chapter 13: Threat Modeling OpenID Systems — Thinking Like the Adversary
Chapter 13 of the OpenID: Modern Identity series — threat modeling for OIDC systems: token theft vectors and defenses, replay attacks and nonce validation, CSRF and state parameter mismanagement, redirect abuse and mix-up attacks.
2026-03-19
Chapter 12: User Lifecycle Management — Provisioning, SCIM, and the De-Provisioning Problem
Chapter 12 of the OpenID: Modern Identity series — user lifecycle management: JIT and bulk provisioning, SCIM for cross-system sync, de-provisioning done right, role mapping from IdP claims, and identity architecture for multi-tenant SaaS.
2026-03-18
Chapter 9: SPA and Mobile Patterns — Auth in Hostile Environments
Chapter 9 of the OpenID: Modern Identity series — SPAs and mobile apps in hostile environments: XSS and CSRF defense, PKCE in the browser, the Backend-for-Frontend pattern, native app patterns, and refresh token rotation with reuse detection.
2026-03-15
Chapter 8: Securing Backend APIs — Bearer Tokens, Scopes, and Service-to-Service
Chapter 8 of the OpenID: Modern Identity series — securing backend APIs with bearer tokens, scope design for least privilege, token introspection versus local JWT validation, and the three mechanisms for service-to-service authentication.
2026-03-14
Chapter 13: Encapsulating Knowledge with Agent Skills — From Conversations to Autonomous Procedures
Chapter 13 of Master Claude Chat, Cowork and Code introduces Skills — reusable, encapsulated procedures that Claude executes autonomously. Covers SKILL.md structure, YAML frontmatter, trigger descriptions, and the Skills Library pattern for team distribution.
2026-03-14
Chapter 7: Your First OpenID Application — The Handshake, End to End
Chapter 7 of the OpenID: Modern Identity series — building a real OIDC login end to end: the minimal flow, state and nonce, strict redirect URI matching, sessions from tokens, and the three flavors of logout.
2026-03-13
Chapter 11: CI/CD Integration and Automation — Claude Code in Your Pipeline
Chapter 11 of Master Claude Chat, Cowork and Code shows how to deploy Claude Code into CI/CD pipelines — GitHub Actions, GitLab CI, automated PR reviews, security audits, documentation sync, cost management, and production safety patterns.
2026-03-12
OpenID: Modern Identity for Developers and Architects — A 22-Part Blog Series
Introduction and index for the 22-part blog series based on OpenID: Modern Identity for Developers and Architects by Sho Shimoda — with links to every chapter from Why Identity Is Hard through Identity in AI Systems.
2026-03-06
カテゴリー
タグ
検索ログ
Hello World bot 939
IT assistant bot 877
Deploy Teams bot to Azure 875
Microsoft Bot Framework 849
Azure CLI webapp deploy 820
Adaptive Card Action.Submit 781
Teams bot development 776
Bot Framework example 754
Adaptive Cards 752
Microsoft Graph 749
Bot Framework Adaptive Card 748
Graph API token 743
Teams app zip 741
Microsoft Teams Task Modules 740
Teams bot packaging 738
C 731
Teams bot tutorial 731
Teams production bot 731
Task Modules 729
bot for sprint updates 728
Zendesk Teams integration 726
Azure Bot Services 725
Azure App Service bot 724
Teams chatbot 722
Bot Framework CLI 719
ServiceNow bot 715
Azure bot registration 710
Bot Framework proactive messaging 710
Bot Framework prompts 708
proactive messages 694
Development & Technical Consulting
Working on a new product or exploring a technical idea? We help teams with system design, architecture reviews, requirements definition, proof-of-concept development, and full implementation. Whether you need a quick technical assessment or end-to-end support, feel free to reach out.
Contact Us