This repository has been archived on 2023-08-14. You can view files and clone it, but cannot push or open issues or pull requests.
dex/Documentation
Eric Chiang 8b8c076ecf Documentation: clarify difference between LDAP ports and security guarantees
Now that LDAP supports an `insecureSkipVerify` option, clarify that
`insecureNoTLS` is an extremely bad choice and as such we may drop
support for 389 in the future.

However, since we send plain text passwords from our frontend to our
backend, this probably gets us into a bigger conversation about dex's
TLS story. For example when terminiation is approporate. cc'ing
@dghubble for thoughts on how that might apply to our internal uses.

We probably want an overaching security doc at some point, but that
can be another PR.
2016-11-23 12:26:44 -08:00
..
img *: add warning to README 2016-08-10 22:26:36 -07:00
logos Documentation/logos: add logos 2016-11-08 11:51:47 -08:00
proposals Documentation/proposals: added a caveats section to upstream refreshing proposal 2016-10-17 11:54:10 -07:00
api.md *: readme updates for v2 2016-11-08 14:36:29 -08:00
dev-integration-tests.md Documentation: adding documentation for running ldap tests locally 2016-10-27 13:20:32 -07:00
dev-releases.md *: prepare build scripts for a release 2016-10-05 23:43:44 -07:00
getting-started.md *: readme updates for v2 2016-11-08 14:36:29 -08:00
github-connector.md *: document the GitHub connector 2016-11-22 12:53:46 -08:00
kubernetes.md examples/k8s: update kubernetes examples 2016-11-17 14:10:55 -08:00
ldap-connector.md Documentation: clarify difference between LDAP ports and security guarantees 2016-11-23 12:26:44 -08:00
openid-connect.md Documentation: add incomplete intro to OpenID Connect 2016-08-10 22:25:15 -07:00
storage.md Documentation: fix a typo in the storage documentation 2016-11-15 15:14:11 -06:00
v2.md Small spelling fix. 2016-11-11 14:24:17 -07:00