June 2017 uPortal Slack summary


In June 2017, 11 people participated substantially in conversation in the slack.apereo.org #uportal channel.

  • Aaron Grant
  • Andrew Petro
  • Brandon Powell
  • Christian Cousquer
  • Christian Murphy
  • David Sibley
  • Drew Wills
  • Jim Helwig
  • Marissa Warner-Wu
  • Matt Clare
  • Tim Vertein

Conversation highlights include:

On Slack

I have concerns about the openness properties of Slack as implemented by Apereo. You can’t access it or read its logs anonymously; it’s not Google search indexed. Only the most recent ten thousand messages are available, so in practice this means logs are unavailable older than about a month back.

Summarizing the conversations in this anonymously, publicly accessible and Google indexable context somewhat mitigates these problems. But not necessarily other problems that make email list communications preferable in open source projects.

Arguably, all of the conversations held in the #uportal Slack channel this month could have been held via email on uportal-dev@ or uportal-user@ email lists additionally or instead. Some relevant email list threads are linked above.

-Andrew

Related Posts

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS Spring Framework RCE Vulnerability Disclosure

Disclosure of the Spring framework RCE security issue with the Apereo CAS software.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS Log4J Vulnerability Disclosure

Disclosure of a security issue with the CAS software as a consumer of the Log4j logging framework.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

Publish Private CAS Releases

GitHub Actions workflows allow publishing to private repositories.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

CAS Multifactor Authentication with U2F and Bypass

A short walkthrough to demonstrate how one might turn on multifactor authentication with CAS using U2F and default bypass rule.