Explanation¶
Explanation is "understanding-oriented". It deepens the reader's understanding of a subject.
🏛️ Foundations¶
- About LuCI SSO - Project history and core goals.
- Design Philosophy - Core tenets and why they exist.
- Architecture - The "Functional Core / Imperative Shell" design.
- About Crypto Backends - Understanding the trade-offs between mbedTLS, WolfSSL, and OpenSSL.
🔐 Authentication¶
- About the OIDC Login Flow - What happens when a user clicks "Login with SSO".
- About the Session Lifecycle - How sessions are created, why they last one hour, and what happens at logout.
🛡️ Security¶
- Security Model - Our "Paranoid" approach to OIDC.
- Threat Model - Analysis of attack vectors and mitigations.