If you go to most Fortune 500 companies they will have a whole team of people dedicated to running an IdP and doing integrations. Most people on these teams cannot explain oauth, oidc, or saml even though they work with it every single day. Itβs that bad.
just getting knoll's law'd or gell-mann triggered as HN does, "modern enterprise security" is a 20-layer cake of serious itu and nist cryptographic protocols like radius and x509 kerberos (which we're depressed about for some reason? is it because it can't be implemented in javascript?) but it's saml that's used at the web (shit) application-tier for customers of saas products so that's the technology that makes the world go round according to HN... just ignore me, most of HN's database threads do this to me as well
