On May 11, 2024, attackers injected 84 malicious versions across 42 @tanstack packages into the npm registry, all bearing valid SLSA Level 3 signatures, by hijacking TanStack's CI/CD workflow through a Pwn Request, cache poisoning, OIDC token extraction, and rapid release, exposing a critical supply‑chain vulnerability.
Argo CD 3.3 introduces a suite of production‑ready features—including native PreDelete hooks for safe resource cleanup, an enhanced Source Hydrator with Git notes and inline parameters, automatic OIDC token refresh, shallow Git cloning for large repos, and built‑in KEDA autoscaling—plus detailed upgrade guidance and best‑practice recommendations.
This guide walks you through configuring Keycloak as an OAuth2/OIDC identity provider for Nightingale monitoring, covering prerequisites, client and user creation in Keycloak, Nightingale OIDC settings, and verification steps to achieve seamless single sign‑on in enterprise environments.
This guide explains why an EKS cluster can fail to provision EBS volumes due to a missing OIDC provider, describes the role of the aws_iam_openid_connect_provider resource, and provides step‑by‑step Terraform code to create the provider, configure IAM roles, and verify the fix.
This article explains the fundamentals of Single Sign‑On (SSO), compares the two most common protocols—SAML and OAuth2 (with OpenID Connect)—covers their terminology, workflows, benefits, and provides guidance on which to use in different scenarios.
On February 14, the Keycloak team announced the deprecation of most adapters—including Spring Security and Spring Boot integrations—detailing which adapters will be discontinued, which will remain, and a timeline for the phase‑out, while noting the rise of Spring Authorization Server as a replacement.
This guide shows how to configure KubeSphere’s multi‑tenant authentication by integrating Dex as an OIDC provider with GitLab, covering Dex installation via Helm, customizing values, updating KubeSphere’s cluster configuration, and verifying the new “Login via Dex” flow.
This guide walks you through creating a Keycloak realm, registering a client, defining roles and mappings, obtaining and refreshing JWT tokens, and configuring a Spring Boot application with the Keycloak Spring Boot starter to protect endpoints via OIDC authentication.
