<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>OpenID Connect &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/openid-connect/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Mon, 30 Jan 2023 20:14:34 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Reduce risk by implementing HttpOnly cookie authentication in Amazon API Gateway</title>
		<link>https://noise.getoto.net/2023/01/30/reduce-risk-by-implementing-httponly-cookie-authentication-in-amazon-api-gateway/</link>
		
		<dc:creator><![CDATA[Marc Borntraeger]]></dc:creator>
		<pubDate>Mon, 30 Jan 2023 20:14:34 +0000</pubDate>
				<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[api gateway]]></category>
		<category><![CDATA[authentication]]></category>
		<category><![CDATA[Best practices]]></category>
		<category><![CDATA[Http-Only cookie]]></category>
		<category><![CDATA[OAuth2]]></category>
		<category><![CDATA[OpenID Connect]]></category>
		<category><![CDATA[security]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=4d107efdceaaa5adcd8daaf3ebc55dc4</guid>

					<description><![CDATA[Some web applications need to protect their authentication tokens or session IDs from cross-site scripting (XSS). It’s an Open Web Application Security Project (OWASP) best practice for session management to store secrets in the browsers’ cookie store with the HttpOnly attribute enabled. When cookies have the HttpOnly attribute set, the browser will prevent client-side JavaScript […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to add authentication to a single-page web application with Amazon Cognito OAuth2 implementation</title>
		<link>https://noise.getoto.net/2020/10/09/how-to-add-authentication-to-a-single-page-web-application-with-amazon-cognito-oauth2-implementation/</link>
		
		<dc:creator><![CDATA[George Conti]]></dc:creator>
		<pubDate>Fri, 09 Oct 2020 17:26:10 +0000</pubDate>
				<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[Amazon Cognito]]></category>
		<category><![CDATA[authentication]]></category>
		<category><![CDATA[authorization]]></category>
		<category><![CDATA[javascript]]></category>
		<category><![CDATA[Oauth]]></category>
		<category><![CDATA[OIDC]]></category>
		<category><![CDATA[OpenID Connect]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Single Page App]]></category>
		<category><![CDATA[SPA]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=cce7e4f64db1053a39e0bee50eaf3500</guid>

					<description><![CDATA[In this post, I&#8217;ll be showing you how to configure Amazon Cognito as an OpenID provider (OP) with a single-page web application. This use case describes using Amazon Cognito to integrate with an existing authorization system following the OpenID Connect (OIDC) specification. OIDC is an identity layer on top of the OAuth 2.0 protocol to [&#8230;]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 31/91 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-10 23:32:25 by W3 Total Cache
-->