July 2017 uPortal Slack summary


In July 2017, 5 people participated substantially in conversation in the slack.apereo.org #uportal channel. (This is around half as many participants as in June.)

  • Andrew Petro
  • Benito Gonzalez
  • Christian Murphy
  • Drew Wills
  • KaJuan Johnson

Conversation highlights include:

On Slack

I have concerns about the openness properties of Slack as implemented by Apereo. You can’t access it or read its logs anonymously; it’s not Google search indexed. Past ten thousand messages back, messages aren’t available even if you log in.

Summarizing the conversations in this anonymously, publicly accessible, and Google indexable context somewhat mitigates these problems. But not necessarily other problems that make email list communications preferable in open source projects.

Arguably, all of the conversations held in the #uportal Slack channel this month could have been held via email on uportal-dev@ or uportal-user@ email lists additionally or instead. Some relevant email list threads are linked above.

-Andrew

Related Posts

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS Spring Framework RCE Vulnerability Disclosure

Disclosure of the Spring framework RCE security issue with the Apereo CAS software.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS Log4J Vulnerability Disclosure

Disclosure of a security issue with the CAS software as a consumer of the Log4j logging framework.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

Publish Private CAS Releases

GitHub Actions workflows allow publishing to private repositories.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

CAS Vulnerability Disclosure

Disclosure of a security issue with the CAS software.

CAS Multifactor Authentication with U2F and Bypass

A short walkthrough to demonstrate how one might turn on multifactor authentication with CAS using U2F and default bypass rule.