|
|
|
|
|
|
by tptacek
2251 days ago
|
|
|
1. I don't think this particular thread is a good venue to litigate SAML vs. OIDC. 2. I think the product complexity issues are, like, 95% the same whether you use OIDC or SAML. 3. I think no matter how much simplification you got from using OIDC instead of SAML, none of it is going to offset the actual reason why SSO integration is a paid feature. 4. I agree that SAML is much worse than OIDC from a protocol implementor's perspective even if I'm not so sure that it's much better from a developer's perspective, so wouldn't want to find new reasons to disagree. |
|
|
Ironically, the first point makes me realize that half the work to bring in a product in an entreprise is to deploy and set it up -properly with authentication- while the other half is to get the budget and approvals to buy it. Thus it's rather relevant to the thread in an unfortunate way.