HackerTrans
TopNewTrendsCommentsPastAskShowJobs

mathiasn

no profile record

Submissions

Show HN: Shadow IT Scan – Uncover SaaS Apps, Users and Risky OAuth Scopes

accessowl.io
69 points·by mathiasn·2 года назад·36 comments

Elixir: Sortable Unique IDs \O/

github.com
4 points·by mathiasn·2 года назад·0 comments

Elixir: Get Alerts for Timed Todos

github.com
1 points·by mathiasn·2 года назад·0 comments

Elixir: Better Solution for Waiting for Async Tasks in Tests

dockyard.com
1 points·by mathiasn·2 года назад·0 comments

[untitled]

1 points·by mathiasn·2 года назад·0 comments

Show HN: Ending the Absurdity of SSO Tax – Introducing ssotax.org

ssotax.org
14 points·by mathiasn·3 года назад·4 comments

Ask HN: Is there still a reason to use Okta for SSO? Okta vs. Google SSO

37 points·by mathiasn·3 года назад·34 comments

Show HN: Skip the SSO Tax, access your user data with OSS

github.com
220 points·by mathiasn·3 года назад·103 comments

How I found user accounts in my SaaS tools that should have been offboarded

2 points·by mathiasn·3 года назад·1 comments

What would you do if you could read out any SaaS application? [OSS]

2 points·by mathiasn·3 года назад·6 comments

comments

mathiasn
·в прошлом году·discuss
Is that something you want to open source?
mathiasn
·2 года назад·discuss
https://ssotax.org gets more updates. There is also a Friends of SSO page :-)
mathiasn
·2 года назад·discuss
What are other potential platforms?
mathiasn
·2 года назад·discuss
Or better ssotax.org which is already way ahead.
mathiasn
·2 года назад·discuss
Yeah that's the old not very much up2date page. https://ssotax.org has more data and even has a Friends of SSO page.
mathiasn
·2 года назад·discuss
Depending on the point of view it can also be a strength. Actually many of our customers like that we're in Slack because their people are already there:

- no login required to request an access - they don't need to "learn a new application"

So for end users that's great. There is still a web app for admins with more details.

But I can see where you're coming from. We plan to offer an alternative to Slack to be independent if the customers want that.
mathiasn
·2 года назад·discuss
Slack is required for AccessOwl. It's used for things like approval workflows, task management and notifications in general.

What do you use instead?
mathiasn
·2 года назад·discuss
From a legal point of view that might be true, but I believe people are not aware that this is a problem. They just register, check the "Agree terms of service" box and do whatever they want to do. I saw that often, especially with Marketing.
mathiasn
·2 года назад·discuss
Which makes it even worse because you cannot detect that then :/

Shouldn't people just be able to try out new things? How can a company be innovative otherwise? And at a specific point (e.g. putting customer data into it), they need to start a proper vendor assessment process.
mathiasn
·2 года назад·discuss
Have you seen Livebook? Best Jupyter Notebook ever!! https://livebook.dev/
mathiasn
·2 года назад·discuss
or even better https://ssotax.org
mathiasn
·2 года назад·discuss
BTW: https://ssotax.org is more up2date
mathiasn
·2 года назад·discuss
It's a community project, you can just update it :-)
mathiasn
·2 года назад·discuss
There is a better ssotax.org which is more up2date and has even a Friends of SSO page.
mathiasn
·3 года назад·discuss
Yes, that's what I heard too. I mean they still have SCIM which allows you create/remove user accounts via API. Although that's still security relevant, giving at least SSO out for free would help already. Still, I would prefer something that does not relate to security.

What do you mean with Docker? I saw on their page that they offer SSO on the highest tier, so they do not look solely on ARR then?!
mathiasn
·3 года назад·discuss
Hmm audit compliance? Google gives you a log of who logged in where, doesn't it? And with "proper RBAC" you mean that you can put somebody into the "Developer" role, hence he gets AWS, GCP, Datadog, right?
mathiasn
·3 года назад·discuss
Oh yeah, that's indeed a step back when you compare it like this. Especially today, automation should be possible everywhere. There is no real reason for that. SaaS apps could just stop blocking that and everyone would be happy. Some just need to start...
mathiasn
·3 года назад·discuss
Did you also consider building it with Elixir and LiveView?
mathiasn
·3 года назад·discuss
Indeed, that became a bad practice... Zoom, Calendly just to name a few do that. That's so stupid and just not customer-friendly at all. Whenever I see this, I start searching for an alternative... But there are also role models in the market like Slack that prorate even based on days after a user was deactivated. And they even remove users from billing when there were inactive for a longer period. Very kind :-)
mathiasn
·3 года назад·discuss
Oh yeah, Elixir is just amazing <3. We use it for our commercial platform accessowl.io. Parts of OpenOwl are originated from there. It was the fastest way to push OpenOwl out. Moreover doing it like this allows us to use OpenOwl as library there.

But yeah I was thinking longer about it as Playwright is pretty good for scraping/RPA and works best with Node. One (expected) limitation is that we cannot easily open a browser window to let the user enter a OTP or solve a captcha as we encapsulated everything into Docker. Not sure how we can solve it yet...