This repository is used to track all work for the BCGov Platform Services Team (This includes work for: 1. Platform Experience, 2. Developer Experience 3. Platform Operations/OCP 3)
To improve OIDC integration, Sysdig is updating how it provides OIDC SSO integrations with the Sysdig Platform. We have added a new parameter to our Relaying Party (RP) SSO URL called “External ID”. This identifier allows for the use of a unique URL per customer instance to use with their Identity Provider (IdP).
Sysdig will deprecate the previous non-unique RP SSO URL and fully transition to the unique URL on July 1st, 2024. All customers currently using OIDC need to configure their Sysdig SSO integration and IdP to use the new unique URL.
Instructions for the configuration update are attached to this email and available in the Sysdig support knowledge base at the following url.
https://kb.sysdig.com/portal/app/portlets/results/viewsolution.jsp?solutionid=240520193651390
Items of Note
This change is needed because a security risk was identified as part of Sysdig’s regular PEN testing activities and identified as a critical risk to address immediately.
If you do not make the change by the deadline, the endpoint will no longer be functional, and access to Sysdig via OIDC will not function.
There were no related Security incidents. This change is part of Sysdig’s efforts to continually improve its security posture.
To improve OIDC integration, Sysdig is updating how it provides OIDC SSO integrations with the Sysdig Platform. We have added a new parameter to our Relaying Party (RP) SSO URL called “External ID”. This identifier allows for the use of a unique URL per customer instance to use with their Identity Provider (IdP).
Sysdig will deprecate the previous non-unique RP SSO URL and fully transition to the unique URL on July 1st, 2024. All customers currently using OIDC need to configure their Sysdig SSO integration and IdP to use the new unique URL.
Instructions for the configuration update are attached to this email and available in the Sysdig support knowledge base at the following url. https://kb.sysdig.com/portal/app/portlets/results/viewsolution.jsp?solutionid=240520193651390 Items of Note This change is needed because a security risk was identified as part of Sysdig’s regular PEN testing activities and identified as a critical risk to address immediately. If you do not make the change by the deadline, the endpoint will no longer be functional, and access to Sysdig via OIDC will not function. There were no related Security incidents. This change is part of Sysdig’s efforts to continually improve its security posture.