Second Brain

❯

❯

cleanup 2026 04 17 conversation flush bulk

❯

❯

❯

r same azure ad sso deferred v1 local auth only

r-same-azure-ad-sso-deferred-v1-local-auth-only

Apr 17, 20261 min read

ops/security
infra/networking

r-same-azure-ad-sso-deferred-v1-local-auth-only

Azure AD SSO was planned for v1 but deferred because Runwal’s AD infrastructure is not yet complete. v1 uses local auth only: argon2id (OWASP 2024 params), TOTP MFA via pyotp, JWT in HttpOnly+Secure+SameSite=Lax cookies (15min access / 7d refresh). Stub interfaces exist for future AD migration path: dual-mode → per-user email-match → deprecate local.

Related

r-dash-auth-amendment-local-auth-v1-azure-ad-sso-deferred
r-dash-azure-ad-deferred-local-auth-v1-stack
r-same-local-auth-v1-azure-ad-deferred
azure-ad-sso-deferred-local-auth-v1-stub-interfaces
r-same-azure-ad-sso-deferred-local-auth-v1
azure-ad-sso-deferred-v1-uses-local-auth
azure-ad-sso-deferred-local-auth-is-v1
r-same-azure-ad-deferred-local-auth-v1

Graph View

r-same-azure-ad-sso-deferred-v1-local-auth-only
Related

Backlinks

azure-ad-sso-deferred-local-auth-is-v1
r-dash-azure-ad-deferred-local-auth-v1-stack
r-same-azure-ad-deferred-local-auth-v1
r-same-azure-ad-sso-deferred-local-auth-v1
azure-ad-sso-deferred-local-auth-v1-stub-interfaces
azure-ad-sso-deferred-v1-uses-local-auth
r-same-local-auth-v1-azure-ad-deferred
azure-ad-sso-deferred-local-auth-is-v1

Created with Quartz v4.5.2 © 2026

CIOS
Mission Control