A nice diagram that I found on Okta illustrates the workflow of both SP-initiated and IDP-initialed SSO. Reference: https://developer.okta.com/standards/SAML/index http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf
Service Catalog in OpenShift
OpenShift 3.7 is now able to create and use some AWS services via the Service Catalog. Here is a quick demo that I found out on YouTube: https://www.youtube.com/watch?time_continue=5&v=vqHNwJVDNlQ The technology behind it is called 'Open Service Broker API'. I am not sure for now if supports multi AWS accounts, it would be nice if it … Continue reading Service Catalog in OpenShift
Difference between custom domain names of AWS API Gateway
AWS API gateway currently supports two types custom domain names: Edge Optimized and Regional. Let me share what the differences that I have found out so far: Target Domain Name Edge optimized: target domain name is called distributionDomainName, and it is the format of <distribution-id>.cloudfront.net Regional: target domain name is called regionalDomainName, and it is the format of <api-id>.execute-api.<region>.amazonaws.com … Continue reading Difference between custom domain names of AWS API Gateway
Apple Watch 3 Review
I was a bit struggling to decide which watch to buy, Garmin or Apple Watch? If you are in the same dilemma, here is my suggestion: Garmin watch is a sports watch, while Apple watch is a smart watch but with sports features. If you are very sporty, Gamin watch might be a better choice. … Continue reading Apple Watch 3 Review
Google Assistant is blocked on this device
If you see the message 'Google Assistant is blocked on this device' when trying to use Google Assistant on your phone, it is most likely that your Gmail account is managed by G suite, and the 'web & App Activity' is set as off. Changing the settings to on should be able to fix it. … Continue reading Google Assistant is blocked on this device
Jackie Chen's IT Workshop 