What are Claims ? A claim is a piece of information about a particular subject. It can be anything that the subject is owned by or associated with, such as name, group, preferences, etc. Claim-based identity is a common way for any application to acquire identity information. …

The caching is a technique used in computer systems to boost the performance. The limitation of latency for the I/O bound tasks reduce the performance of the systems and caching is introduced to keep the more frequent data close to the application. There are several caching patterns which can be…

The OAuth 2.0 framework introduced a mechanism to delegate resource access for a third party on behalf of the resource owner. This paradigm revolutionised the authorization flows in the software applications and yet it is the de facto standard for access delegation. The traditional approach of sharing resource owner’s credentials…

Hi folks, In this blog I am going to setup WSO2 Identity Server as a clustered deployment. WSO2 Identity Server (WSO2 IS) is an API-driven open source Identity and Access Management (IAM) product designed to help developers build effective CIAM solutions in a short stretch of time. In the modern…

Hi folks, this is the beginning of logging with log4J2 blog series which I hope to share my experience on logging in Java with different frameworks and best practices. In day today life, we do log normally to make it useful when we need work on investigation on certain things…

Hi Folks, here I am going to share my experiences on vulnerability scanning using Trivy. Trivy is an open-source vulnerability scanner used for scanning container images, file systems, and git repositories. First and for most, What is Vulnerability? As per Wikipedia, “In computer security, a vulnerability is a weakness which…

The OAuth 2.0 is an industry standard protocol for access delegation. This well known authorization framework is widely used over variety of applications. The OAuth grant types play a major role to accomplish that by adhering to the required security aspects with respect to the variety of applications. …

Nginx is a web server and also can be used as a reverse proxy. apt install nginx First, we can disable the default virtual host that is pre-configured when Nginx is installed. unlink /etc/nginx/sites-enabled/default We can edit nginx.conf …

Kubernetes is an open-source container-orchestration system for automating application deployment, scaling, and management. There are few more container-orchestration systems, but Kubernetes has become the leading service. Let’s assume a Python web application is deployed over 2 virtual machines including 2 containers. HAProxy is set up as a load balancer. …