OIDC - B2B vs. B2C Patterns
Enterprise needs differ from consumer apps. We’ll explore architectures for multi-tenancy, organization-specific login policies, and "Identity Brokering" (Log in with Google/Microsoft).
OIDC - Identity Providers (IdP) Comparison
Auth0, Keycloak, or Cognito? We’ll compare managed SaaS solutions against self-hosted options, evaluating costs, customization limits, and operational overhead to help you pick the right stack.
OIDC - ACR & AMR (Authentication Context Class Reference)
Not all logins are equal. Use these values to demand higher security standards—like forcing Multi-Factor Authentication (MFA)—or to audit exactly how a user authenticated (e.g., password vs. bio).
OIDC - Dynamic Client Registration
Move beyond manual setup. Learn how Relying Parties can programmatically register with OpenID Providers, automating the exchange of client IDs and secrets for scalable, multi-tenant architectures.
OIDC - Session Management & Logout
Logging in is easy; logging out is hard. We’ll tackle Single Logout (SLO), distinguishing between front-channel and back-channel mechanisms to ensure sessions are terminated cleanly across all apps.
Member discussion