Windows Credential Provider Support

Windows Credential Providers are the primary mechanism for user authentication—they currently are the only method for users to prove their identity which is required for logon and other system authentication scenarios. With Windows 10 and the introduction of Microsoft Passport, credential providers are more important than ever; they will be used for authentication into apps, … Read more

Identity Wallet now with distributed Document Vault

Storing and sharing your valuable documents in the cloud has many disadvantages such as lack of security, limited quotas and missing redundancies. CodeB’s Self-Sovereign Identities are built for the secure storage of valuable attributes and credentials. In combination with its distributed offchain storage system every identity contract can store and manage an unlimited amount of … Read more

Send authenticated but anonymous messages from Identity Wallet

Is the seemingly paradoxical notion of “Authenticated Anonymity” possible or is authentication essentially incompatible with anonymity? Anonymity and specifically sender anonymity have become essential requirements for many privacy-related applications. On the other hand, anonymity may be abused for various malicious activities. With the new feature “Authenticated Anonymity” CodeB addresses both with protocols for authenticated anonymous … Read more

OpenID Connect and OAuth2 in WIX

As with NextCloud, WordPress and Auth0 it is very easy to integrate CodeB’s Self-Sovereign Identities into other systems. To Integrate CodeB’s SSI into WIX follow the steps below: Add Values in “Secrets Manager” The following 4 values are essential for the OpenID Scripts to work: clientId: javascript clientSecret: CodeB scope: openid profile email picture short … Read more

Integrate CodeB into Auth0 as Social Connection

In our article “Integrate CodeB into Auth0 as Enterprise Connection” we explained how to integrate the distributed identities of CodeB into Auth0. But not every Auth0 subscription allows to create enterprise connections. To integrate CodeB via plain OAuth2 (Social Connection) is very easy. Go to Authentication -> Social Press button “Create Connection” Use “https://portal.codeb.io/” as … Read more

Integrate CodeB into Auth0 as Enterprise Connection

The Self-Sovereign Identity System of CodeB does not only support W3C DID’s but comes also with an inbuilt OpenID Connect (OIDC) Identity Provider. OpenID Connect meets distributed Self-Sovereign Identities. Integration of the Identity Provider into existing systems is extremely easy. In this article we use Auth0 as an example: Go to: Authentication -> Enterprise Connections -> … Read more

CodeB OpenID Connect Client Sample

Most popular web based applications such as NextCloud, WordPress, etc. are supported by many OpenID Connect Clients available but it looks complete different for less popular or in-house applications. For demonstration purpose we have created a plain vanilla JavaScript Library so that OpenID Connect Connectivity can be implemented with just one include directive referencing our … Read more

Use CodeB SSI as OpenID Connect Identity Provider for WordPress

The Self-Sovereign Identity System of CodeB does not only support W3C DID’s but comes also with an inbuilt OpenID Connect (OIDC) Identity Provider. OpenID Connect meets distributed Self-Sovereign Identities. Integration of the Identity Provider into existing systems is extremely easy. In this article we use WordPress as an example. Install WordPress Plugin: “OpenID Connect generic … Read more

CodeB CommandLine Interface (CLI)

For testing purposes we created an easy to use CommandLine Interface (CLI) to interact with the CodeB WebSocket API. Contact us in case you are interested to try it out! The CodeB CLI support verbs (such as ping, add and check) with various options and parameters. It displays help messages if you call it with … Read more

STIR/SHAKEN and CLI Spoofing Mitigation

STIR/SHAKEN is a framework of interconnected standards. STIR/SHAKEN are acronyms for the Secure Telephone Identity Revisited (STIR) and Signature-based Handling of Asserted Information Using toKENs (SHAKEN) standards. This means that calls traveling through interconnected phone networks would have their caller ID “signed” as legitimate by originating carriers and validated by other carriers before reaching consumers. … Read more