feide-updates

Download

feide-updates@lister.sikt.no

Oktober 2022

1 participants
2 discussions

Feide IdP update on Wednesday October 12th at 11:30
by Morten Knutsen 12 Okt '22

12 Okt '22

On Wednesday the 12th of October at 11:30 we will update the Feide login systems. Important: This update includes a change to prevent external sites from embedding the login page using iframes. This is done to improve security with regards to clickjacking attacks. Any services where more than 1% of logins have been done through embedding will continue to work as before for now. If you are relying on embedding the login page, please start work on alternate flows as soon as possible. Changes: * Send headers for login page to prevent embedding in iframes * Update of underlying SimpleSAMLphp library version * Minor bugfixes and internal improvements If you have any questions or concerns about this update, please contact us at kontakt(a)sikt.no. A side note: This message is sent via our new mailing list feide-updates(a)lister.sikt.no. All existing subscribers have been transfered. -- Regards, Morten Knutsen Sikt / Feide

1 1

Feide network update on Tuesday October 11th at 13:00
by Morten Knutsen 11 Okt '22

11 Okt '22

On Tuesday the 11th of October at 13:00 we will update the Feide login systems. All endpoints serving OpenID Connect authentication and APIs will get IPv6 addresses in addition to their existing IPv4 addresses. This includes the hosts: auth.dataporten.no api.dataporten.no The endpoints serving SAML authentication already have IPv6 addresses, and these will not change. If you have any questions or concerns about this update, please contact us at kontakt(a)sikt.no. -- Regards, Morten Knutsen Sikt / Feide

1 1