{R}R 開発ノート

合計 5 件の記事が見つかりました。

Chapter 10: Single Sign-On at Scale — Identity as Infrastructure

Chapter 10 of the OpenID: Modern Identity series — running identity at organizational scale: corporate IdPs (AD, Entra ID), the CIAM vendor ecosystem (Okta, Auth0, Entra ID), multi-tenant isolation, account linking, and external user access.
2026-03-16

Chapter 9: SPA and Mobile Patterns — Auth in Hostile Environments

Chapter 9 of the OpenID: Modern Identity series — SPAs and mobile apps in hostile environments: XSS and CSRF defense, PKCE in the browser, the Backend-for-Frontend pattern, native app patterns, and refresh token rotation with reuse detection.
2026-03-15

Chapter 8: Securing Backend APIs — Bearer Tokens, Scopes, and Service-to-Service

Chapter 8 of the OpenID: Modern Identity series — securing backend APIs with bearer tokens, scope design for least privilege, token introspection versus local JWT validation, and the three mechanisms for service-to-service authentication.
2026-03-14

Chapter 3: Core Concepts — The Vocabulary of OpenID Connect

Chapter 3 of the OpenID: Modern Identity series — the IdP/RP/user triangle, claims and JWTs, the three OIDC token types, consent and scopes, sessions vs tokens, and the boundary between authentication and authorization.
2026-03-09

OpenID: Modern Identity for Developers and Architects — A 22-Part Blog Series

Introduction and index for the 22-part blog series based on OpenID: Modern Identity for Developers and Architects by Sho Shimoda — with links to every chapter from Why Identity Is Hard through Identity in AI Systems.
2026-03-06

カテゴリー

タグ

検索ログ

Development & Technical Consulting

Working on a new product or exploring a technical idea? We help teams with system design, architecture reviews, requirements definition, proof-of-concept development, and full implementation. Whether you need a quick technical assessment or end-to-end support, feel free to reach out.

Contact Us