OAuth Proof of Possession draft are here!

April 28th, 2014

One of the concerns about OAuth 2.0 is that it uses bearer tokens, that are a kind of tokens that are not tied to any context at all. That means that any party in possession of a token can get access to the associated resources, without any other demonstration. This month, the IETF team has […]

Releasing Astor: A developer tool for token-based authentication

April 13th, 2014

I’ve just published in NPM the first version of Astor. Astor is a command line developer tool that helps you when you work with token-based authentication systems. At this moment, it allows you to issue tokens (right now it supports JWT and SWT formats) to tests your APIs, basically you can do something like this: […]

Code Coverage in Node.js

March 11th, 2014

This time I want to share with you something I found very useful. Istanbul (http://gotwarlost.github.io/istanbul/) a code coverage report tool. It’s very easy to use, you just need to use, you just need to install it like: $ npm install -g istanbul And run it on your solution, for example If you use mocha: $ […]

SAML 2.0 Tokens and Node.js

March 5th, 2014

As part of my work at Kidozen related to identity management I’ve just published a new version of a Node.js module that allows you to parse and validate SAML 2.0 Assertions (Just like the ones that ADFS uses). It also supports SAML 1.1 tokens. Installation $ npm install saml20 Usage The module exposes two methods, […]

Kidozen Raises 5 Million in Series A Funding

December 10th, 2013

We are celebrating! 2013 has been an amazing year for Kidozen. We started the year announcing the public availability of the platform, on February, and now we are closing it announcing that we raised 5 Million dollars in Series A funding!!! Looking back the growing of the platform is astonishing, I’m still amazed with what […]