InfoQ Homepage Identity Management Content on InfoQ
-
Outsource User Management and Authentication with Stormpath
Most applications these days require user management, authentication, and authorization from the beginning and even a minor mistake can be disastrous. To help developers focus more on what the application actually does, Stormpath is offering turnkey user management and authentication services. Using these services, applications can authenticate users via a single API call.
-
Multi-Factor Authentication For Windows Azure Hosted Apps
Microsoft recently announced preview of Multi-Factor Authentication in Windows Azure. This can be enabled for Windows Azure Management portal, Microsoft Online Services such as Office 365, as well as custom applications.
-
Twitter API v1.1 with JSON and OAuth1.0a Support
The recently released Twitter API V1.1 ships with support for JSON and provides an ability to authenticate apps via OAuth1.0a.
-
The Gospel of MBaaS- According to Anypresence Co-Founder (Part 2 of 2)
Part 2 of Infoq’s exclusive virtual interview with Anypresence cofounder Richard Mendis. The CMO weighs in on Facebook’s acquisition of competitor Parse and provides intel on the pricing structure of Anypresence.
-
Google+ Sign-In: Federated Identity, Authorization and Semantic Activity Streams
Google+ Sign-In extends the Google+ social network into third-party websites, desktop applications and mobile apps. This service, announced on February 26th, provides features for authentication, authorization and activity sharing. There is also support for user engagement, hangouts and automatic Android app downloads.
-
Powering Your Apps with Microsoft Accounts
A central theme with Windows 8 is the Microsoft Account. This is another attempt to offer a single sign-on system for both Microsoft and third-party services. Microsoft Account is available for Windows 8 apps, normal websites, Windows Phone, Android, and iOS.
-
Windows Identity Foundation Now Included in .NET 4.5
Windows Identity Foundation, Microsoft's framework for integrating claims-based authentication into applications, is now part of the .NET Framework. It was created to simplify work with access control and authentication, and to allow for single sign-on across multiple applications.
-
Google’s New IaaS Offering Runs Linux VMs in the Cloud
Google today disclosed details of Compute Engine, an IaaS offering that runs Linux VMs on demand utilizing Google’s cloud infrastructure. Google Compute Engine (GCE) supports 1, 2, 4 and 8 virtual core VMs with 3.75GB RAM per virtual core
-
Ron Monzillo on Java Identity API and JSR 351
The Java Identity API provides a framework for representing and interacting with identity attributes in Java applications. Ron Monzillo, specification lead for JSR 351, the spec for this API, spoke at the JavaOne 2011 Conference last week about the JSR proposal scope, its current state and future plans for the specification.
-
Twitter Experiences Site Instability Following Google, Microsoft Outages
Twitter is the latest to experience downtime when yesterday the company issued a status update indicating instability within the site. This was the second such report from Twitter this week and follows on the heels of outages experienced this week by Google’s Blogger service and Microsoft’s Business Productivity Online Suite (BPOS).
-
Google Debuts OAuth 2.0 Support for Google APIs
Today Google announced experimental support for OAuth 2.0 with bearer tokens. In addition, as a side announcement they've launched a new consent page for OAuth 2.0 designed with cleanliness and simplicity in mind.
-
Goodbye, CardSpace; Hello, U-Prove!
Last week, Microsoft announced: the cancellation Version 2.0 of its Windows CardSpace identity service, thus deprecating CardSpace; and the immediate availability of Release 2 of the Community Technology Preview of its U-Prove identity service. These announcements are just the latest moves in Microsoft's decade-long struggle to solve the Internet's "identity problem."
-
A Proposal for an HTTP Digital Signature Protocol and API
Bill Burke, JBoss's Chief Architect and REST Easy Project Lead, published last week a proposal for a Digital Signature Protocol over HTTP. "DSig" is rapidly gaining popularity, more than 10 years after it was designed, due to the emergence of composite applications and the need to establish trusted relationships between their clients and services.
-
Is OpenID Living Up to Our Expectations?
OpenID has promised to simplify the user authentication process across multiple websites, but some complain it has actually created more problems. 37signals, an early supporter of OpenID, has announced the decision to stop using it across its products. Is OpenID delivering what it promised?
-
Is OAuth 2.0 Bad for the Web?
Eran Hammer-Lahav, one of the editors of the OAuth 2.0 specification, published a diatribe on the latest standard draft. For him, the current proposal mortgages the future of the Web. He sees the current specification focusing too much on simplicity for the application developer while severely limiting the ability to create discoverable and interoperable services.