Comparing OAuth2, OpenID Connect (OIDC), and SAML — With Real Examples
A practical comparison of OAuth2, OpenID Connect, and SAML—what problems they solve, how they work, and when to use each.
Dec 16, 20255 min read7
Command Palette
Search for a command to run...
#developer-guide
Articles tagged with #developer-guide
Implementing an OIDC Callback in PHP/Yii/HumHub (with Code Examples)
A practical, end-to-end guide to handling OIDC redirects, token exchange, identity mapping, and secure session creation inside a Yii/HumHub app
Dec 15, 20256 min read5
Security Analysis of my implemented Web App Authentication System
A detailed look at the security mechanisms behind the authentication flow—how threats are mitigated, tokens are validated, and sessions are protected
Dec 11, 20256 min read15
Deep Dive: The User Authentication Flow in my implemented Web App
A step-by-step walkthrough of how the browser, IdP, Redis, HumHub, and CloudFront work together to authenticate a user in a real production system.
Dec 10, 20256 min read19
Architecture Overview of my implemented Web App Authentication System
A high-level walkthrough of how the CSL web app authenticates users through a hybrid IdP + server-session design
Dec 9, 20258 min read47
Sessions vs Token-Based Authentication
A practical look at how stateful sessions, stateless tokens, and hybrid models work—and how they shape real-world authentication.
Dec 9, 20258 min read10