WordPress deployment workflow to Google Container Engine using Circle-CI, Docker hub and Kubernetes

We would like a github repository to include deployment configuration of a WordPress blog. We would like to run an instance of this deployment on a Google Container Engine / Kubernetes. In fact, we would like to run two instances, a pre-prod instance matching the master branch of the deployment configuration. We would like the operated deployment instances to automatically update when we commit to the configuration repository.

Continue reading

Dataporten.no, an advanced API Platform for education and research in Norway, based upon OAuth 2.0 and OpenID Connect is going live!

Making education in Norway a more interesting market for targeting digital services

Today, any developer or service provider may use the free of charge, 100% self service, developer dashboard to register OAuth 2.0 and OpenID Connect clients. The service provider may choose to enable various authentication backends, such as Feide, ID-porten, Facebook, LinkedIn, Twitter and Feide guest OpenIdP.

Continue reading

HTTPjs – a new API debugging, prototyping and test tool

Today, we released a new API debugging, prototyping and test tool that is available at:

When you arrive at the site, you’ll immediately be delegated a separate sub domain, such as http://f12.http.net. This subdomain is now ready to receive any kind of HTTP requests. At the site, you get a javascript editor window, where you can prototype the server side of the API server.

All requests sent to your new domain, will be processed in your browser with your custom javascript implementation. The web site will display the full HTTP log for you to inspect.

This tool is very useful for rapid development, and testing of API clients. In example, you may select a template OAuth Server implementation to start from, then attempt to return variations, invalid responses and similar to inspect how your client behaves.

The tool was made possible with Node.js, Websockets with Socket.io, Expressjs, requirejs, Grunt, Bower.io, nconf, select2, ace, bootstrap, momentjs, highlightjs.

API Authorization as a Service

Authentication and authorization with APIs are slightly more complex than with traditional access to web sites. The client is typically more intelligent, it being a javascript web application or a mobile native app; and communicates with a backend using an API. APIs typically also are exposed to third party app developers that may obtain access by both authenticating the third party client and the end user using it. This three-tier trust model is often referred to as “delegated authorization”.

Read more

Results from most of my current work will be primarily published on the blog.uwap.org blog.

Announcing UNINETT WebApp Park

I’ve spent a few months working on a prototype of UNINETT WebApp Park. The UNINETT WebApp Park is a simple, scalable, efficient and secure ecosystem for rapid development of modern web applications for higher education. I’ve created a 20 minutes walk-through video of the prototype. This is just the beginning, and I’ve got a bunch of ideas of further work on the platform. If you take the time to watch it, I really appreciate it, thanks!

I really appreciate feedback. Thanks.

Announcing New Sparkling SAML 2.0 Debugger

I’ve done a rewrite of the old webbased SAML 2.0 debugger, which will help you to decode the various SAML bindings for easier debugging SAML messages.

I hope you like it.

This tool is part of the Federation Lab suite of test, validation and debugging tools for Identity protocols, such as SAML and OpenID Connect. Please contact me about any problems or bugs with the tool.

You may also be interested in the SAML-tracer Firefox Plugin.