[Openid-specs-ab] Spec Call note 9-Sep-2013

Nat Sakimura sakimura at gmail.com
Thu Sep 12 15:11:06 UTC 2013


So, how are you mitigating the CSRF and redirect attack?


2013/9/11 Chuck Mortimore <cmortimore at salesforce.com>

>
> On Mon, Sep 9, 2013 at 8:44 PM, Edmund Jay <ejay at mgi1.com> wrote:
>
>> Spec Call notes 9-Sep-2013
>>
>> Attendees
>>  Nat Sakimura
>>  John Bradley
>>  Edmund Jay
>>
>>
>> Due to lack of participants, no specific issues were discussed.
>>
>> John mentioned that Intel is planning on implementing OpenID Connect that
>> is tied to the processor.
>>
>> Nat mentioned Zendesk SSO using JWT at
>> https://support.zendesk.com/entries/23675367-Setting-up-single-sign-on-with-JWT-JSON-Web-Token-
>>
>>
> On a related note, Salesforce and ExactTarget are both supporting JWT
> based IDP-initiated SSO in our App echosystems as well.
>
> -cmort
>
>
>>
>>
>>
>> _______________________________________________
>> Openid-specs-ab mailing list
>> Openid-specs-ab at lists.openid.net
>> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>>
>>
>
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>
>


-- 
Nat Sakimura (=nat)
Chairman, OpenID Foundation
http://nat.sakimura.org/
@_nat_en
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20130913/c13b6c38/attachment.html>


More information about the Openid-specs-ab mailing list