Why do you use SAML instead of OIDC?

I can’t wait for something better than OIDC to be introduced. - Poor user experience - Poor developer experience: “just use a library to hide all the complexity” doesn’t work, you have to understand the underlying protocol to ensure the library is used correctly

- Having a SSO authentication form as a web page instead of a special OS window facilitates various phishing attempts