a year ago
Stuart Larsen #article
Over the last year, most of the time has been spent on support and maintenance.
But, feature development has started again, and one of the most requested changes has been made.
SAML has been moved from the enterprise plan to the business plan.
Previously SAML was part of the enterprise plan. Sadly Csper is a business and needs to make money, so features like SAML were gate-kept behind the higher cost plan. The idea being that large enterprises that have the budget to pay for enterprise plans also probably have the strongest requirements for SAML.
But, without SAML, the only other options for user authentication are Google/Github OAuth and local login. And not all organizations are able to use Google/Github OAuth. So some organizations are forced to use local username/password. From a security standpoint, this is terrible.
While Csper might lose money in the short term (enterprise plans are many multiples above business plans), I'd rather we promote best security practices and get rid of username/passwords for vendor websites (including Csper).
So, starting next week, if you're a business plan customer, SAML is available to your organization. To get started email support@csper.io. All major SAML IDPs are supported.
I've started drafting an in-depth CSP video series I plan on releasing to Youtube. This should be released in the next few weeks.
I'm also working on making Csper more opinionated, which will allow better indexes on queries so the app should be even faster.
If this or anything else sounds interesting, please let us know! product@csper.io.
Stay up to date with the latest Content Security Policy news, product updates, discounts, and more!