Oauth vs saml - A software developer goes over the basics of the most used security protocols from a developer's perspective, such as SAML, OAuth, JSON Web Tokens, and more. Quick Guide to Sec: Basic Auth, SAML ...

 
Security Assertion Markup Language (SAML) is an open standard that attempts to bridge the divide between authentication and authorization. OAuth is an open authorization standard. OpenID Connect is an authentication standard that runs on top of OAuth 2.0. The differences in these standards and their roles in …. Leadership development training

SAML is designed for situations like web app SSO solutions, where a central identity provider and an app are in communication and SAML facilitates the AuthN/AuthZ between them. OAuth is generally used by the applications themselves, using external IdPs to authenticate access and authorize …OAuth vs. SAML. The Security Assertion Markup Language, or SAML, is another technology you’ll hear talked about in the same breath as OAuth.Get ratings and reviews for the top 7 home warranty companies in Roxborough Park, CO. Helping you find the best home warranty companies for the job. Expert Advice On Improving Your...Both protocols use tokens to communicate secrets. To learn more about SAML, see single sign-on SAML protocol. To learn more about OIDC/OAuth, see OAuth 2.0 and OpenID Connect protocols on Microsoft identity platform. This article outlines a common scenario where an app implements SAML but calls the Graph API, …Securing Applications and Services Guide. 1. Planning for securing applications and services. As an OAuth2, OpenID Connect, and SAML compliant server, Keycloak can secure any application and service as long as the technology stack they are using supports any of these protocols.Nov 19, 2021 · Both technologies support SSO. However, SAML and OAuth come at it from different directions. SAML’s purpose is to federate identity and reduce the friction associated with authentication. OAuth, on the other hand, lets an already-authenticated user delegate authorization. Feb 23, 2023 · 1 person found this answer helpful. SAML and OIDC are for authentication (i.e.: is this user who they say they are). OAuth is an authorization standard - i.e. "What resources does this user/other entity have access to". SCIM is a standard for provisioning of identity data (users, groups/members, etc) across systems. Download the Keycloak SAML Adapter XML. The last step will be downloading Keycloak SAML XML Adapter which needs to be installed in our WildFly application. To …Key Differences Between SAML and OAuth Purpose and Function. SAML: Primarily focuses on authentication and is used for SSO solutions to validate a user’s identity.; OAuth: Centers on authorization, allowing third-party services to access user data without exposing user credentials.; Technology and Format. …Aug 13, 2022 · OAuth、OpenID Connect、SAMLの違い. OAuthは認可のためのフレームワーク。. 認証として使用する場合、認証時の情報(だれがいつどのように認証したか)ユーザー情報を提供するための手段はOAuth2.0では定められていないため、HTTPサービス側で独自にそれらの情報 ... In this article. The Open Authorization (OAuth) 2.0 is the industry protocol for authorization. It allows a user to grant limited access to its protected resources. Designed to work specifically with Hypertext Transfer Protocol (HTTP), OAuth separates the role of the client from the resource owner. The client …WS-Fed is perceived to be less complex and light weight (certainly an exception for WS-* family), but SAML being more complex is also perceived to be more secure. At the end you have to look at your ecosystem including existing investments, partners, in house expertise, etc. and determine which one will provide higher value.SAML vs. OAuth. SAML (Security Assertion Markup Language) is an alternative federated authentication standard that many enterprises use for Single-Sign On (SSO). SAML enables enterprises to monitor who has access to corporate resources. There are many differences between SAML and OAuth. SAML uses …SAML is an XML-based standard that allows secure communication of identities between orgs. Find out how it works and why it's beneficial for IDPs and SPs. ... OAuth: OAuth (or OpenAuth, if you want to use the full name) is a standard that was jointly developed by Google and Twitter to enable streamlined logins between …OAuth is commonly used by social media platforms and other web services that require access to user data. While both SAML and OAuth are used for authentication and authorization, they have different use cases. SAML is used for SSO between enterprise applications, while OAuth is used for granting third-party access to …SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a …3. SAML is a protocol used for authentication. A more contemporary protocol is OpenId Connect. MSAL is a library that helps integrate your application with Azure AD. I'd suggest you start with the Microsoft identity platform (Azure Active Directory for developers) and get yourself familiar with how to integrate your …Learn the differences and similarities between SAML and OAuth, two protocols for authentication and authorization. Find out when to use SAML or OAuth and how to integrate …Jul 3, 2017 · Centralised identity source. SAML 2.0. Enterprise SSO. SAML 2.0. Mobile use cases. OAuth 2.0 (preferably with Bearer Tokens) Permanent or temporary access to resources such as accounts, files. OAuth 2.0. However, both can be used for web SSO, providing single sign-on for multiple web applications. Residential phone lines are provided by the telephone company. The phone lines lead up to the Network Interface Device or NID. It is the responsibility of the homeowner to set up t...In this article. The Open Authorization (OAuth) 2.0 is the industry protocol for authorization. It allows a user to grant limited access to its protected resources. Designed to work specifically with Hypertext Transfer Protocol (HTTP), OAuth separates the role of the client from the resource owner. The client …Some luxury cruises are pricier than others. We tell you about the luxury cruise itineraries that often are the least expensive. Luxury cruises range in price from expensive to out...Haunted by demonetisation and GST teething trouble. The goods and service tax (GST) introduced this year and the currency ban last year have taken the steam out of India’s growth s...To begin, what’s the difference Between OAuth, OpenID Connect, and SAML? It is important to note that OAuth 2.0 is an authorization framework, not an authentication protocol. OAuth 2.0 uses scopes for granular access and allows usage of back-channel communication from server-to-server in its authorization code flow, for …Jan 13, 2015 ... SAML has one feature that OAuth2 lacks: the SAML token contains the user identity information (because of signing). With OAuth2, you don't get ...3. SAML is a protocol used for authentication. A more contemporary protocol is OpenId Connect. MSAL is a library that helps integrate your application with Azure AD. I'd suggest you start with the Microsoft identity platform (Azure Active Directory for developers) and get yourself familiar with how to integrate your …American Diabetes Association 2451 Crystal Drive, Suite 900 Arlington, VA 22202 For donations by mail: P.O. Box 7023 Merrifield, VA 22116-7023 1-800-DIABETES (800-342-2383)OAuth 2, OIDC and SAML are great facilitators for different authentication and authorization (access control) schemes, but do not actually specify the actual underlying mechanisms. UPDATE 9/5/2018. Updated for 2018. UPDATE 4/26/2017. Fixed incorrect statement about SAML not supporting user consent - it …SAML vs. OpenID (OIDC) SAML (SAML 1.0 and 2.0) and OpenID Connect (OIDC) are identity protocols, designed to authenticate users, and provide identity data for access control and as a communication method for a user’s identity. Either protocol may be the basis for Identity Providers (IdPs) that offer a range of user identity … Although there are key differences between SAML and OAuth, when used in conjunction with one another, both can provide various benefits to a company. SAML can enable users to gain access to necessary applications, while OAuth can be used to provide access to protected resources in a safe, secure way. Documentation. Documentation. Blog. Security. Learn the differences and similarities between SAML and OAuth, two open standard protocols for identity and access management. SAML is for authentication and authorization, while OAuth is for authorization only. Finding the perfect Android keyboard is no easy task—there are so many to choose from, and most of them are great, depending on the type of typist you are. This week, we're looking...A software developer goes over the basics of the most used security protocols from a developer's perspective, such as SAML, OAuth, JSON Web Tokens, and more. Quick Guide to Sec: Basic Auth, SAML ...OAuth (Open Authorization) is an open standard for token -based authentication and authorization on the Internet.1 person found this answer helpful. SAML and OIDC are for authentication (i.e.: is this user who they say they are). OAuth is an authorization standard - i.e. "What resources does this user/other entity have access to". SCIM is a standard for provisioning of identity data (users, groups/members, etc) across …Apr 11, 2018 ... A software developer goes over the basics of the most used security protocols from a developer's perspective, such as SAML, OAuth, ... SAML is a standardised process to authenticate users into web applications over the web. SAML uses the Single Sign-On (SSO) technology to authenticate a user once and then use that authentication over multiple applications. SAML enables identity federation, making it possible for identity providers (IdPs) to seamlessly transfer authenticated ... OpenID Connect is built on top of OAuth 2.0 to provide a Federated Identity mechanism that allows you to secure your API in a way similar to what you would get were you to exploit WS-Security with SAML. It was designed to support native and mobile apps while also catering for the enterprise federation cases.OAuth is an authorization standard - i.e. "What resources does this user/other entity have access to". SCIM is a standard for provisioning of identity data (users, groups/members, etc) across systems. Between SAML and OIDC, OIDC is more modern, SAML is more widely adopted thanks to being around longer.Apr 2, 2021 · Security Assertion Markup Language (SAML) is an open standard that attempts to bridge the divide between authentication and authorization. OAuth is an open authorization standard. OpenID Connect is an authentication standard that runs on top of OAuth 2.0. The differences in these standards and their roles in authentication and authorization are ... SAML vs. OpenID (OIDC) SAML (SAML 1.0 and 2.0) and OpenID Connect (OIDC) are identity protocols, designed to authenticate users, and provide identity data for access control and as a communication method for a user’s identity. Either protocol may be the basis for Identity Providers (IdPs) that offer a range of user identity management and ... Learn about the differences between SAML and OAuth, two standards for security and identity management. See use cases, formats, transports and alternatives for …SAML is designed for situations like web app SSO solutions, where a central identity provider and an app are in communication and SAML facilitates the AuthN/AuthZ between them. OAuth is generally used by the applications themselves, using external IdPs to authenticate access and authorize …See full list on strongdm.com Aug 26, 2020 · Thus, authentication is concerned with user identity whereas authorization is concerned with user privileges. While there are similarities between SAML and OAuth, the two protocols play different roles in access management, with SAML being used in authentication and OAuth in authorization. SAML Is used to centrally manage users. OAuth: OAuth (or OpenAuth, if you want to use the full name) is a standard that was jointly developed by Google and Twitter to enable streamlined logins between websites. It’s similar to SAML in how it shares information between applications (Facebook and Google are two OAuth providers that you’ve likely used before). In comparison to OAuth and OpenID, SAML offers a more comprehensive set of security features. Support for digital signatures, encryption, and attribute-based access control are all included ...Dec 22, 2022 · LDAP and SAML are standardized authentication protocols, both commonly used to securely access applications. In this video, we'll cover each protocol's stren... As table 1 summarizes, SAML, OAuth 2.0, Open ID Connect, and TSL are all state-of-the-art protocols with different purposes. Before choosing any of them, checking whether the use case matches the ...Mar 4, 2024 · It contains authentication information, attributes, and authorization decision statements. Microsoft Entra ID: Enterprise cloud IdP that provides SSO and multifactor authentication for SAML apps. It synchronizes, maintains, and manages identity information for users while providing authentication services to relying applications. SAML is more secure and consistent as it does not expose user credentials or tokens, while OAuth is more flexible and granular as it allows the user to control the scope and duration of access ...SAML has limited implementation because of its ability to leave a session cookie in the browser. It’s only preferred to authenticate people/users for short-lived work days. ‍ SAML vs OAuth vs OpenID - Main differences. Let’s break this discussion into 2 parts to simplify the subject for you: OpenID vs OAuthOAuth 2, OIDC and SAML are great facilitators for different authentication and authorization (access control) schemes, but do not actually specify the actual underlying mechanisms. UPDATE 9/5/2018. Updated for 2018. UPDATE 4/26/2017. Fixed incorrect statement about SAML not supporting user consent - it …OAuth 2, OIDC and SAML are great facilitators for different authentication and authorization (access control) schemes, but do not actually specify the actual underlying mechanisms. UPDATE 9/5/2018. Updated for 2018. UPDATE 4/26/2017. Fixed incorrect statement about SAML not supporting user consent - it …Feb 14, 2023 · Security assertion markup language (SAML) is an authentication process. Head to work in the morning and log into your computer, and you've likely used SAML. Open Authorization (OAuth) is an authorisation process. Use it to jump from one service to another without tapping in a new username and password. If you're logged into Google and used ... In short, JWT is a standard for transmitting data securely between parties, while OAuth is a standard for approval that allows third-party applications to access user data. SAML is a standard for exchanging authentication and authorization data between an IdP and an SP, typically used in enterprise applications.Learn the key differences between SAML and OAuth, two widely adopted standards for online security and identity management. Compare their purposes, formats, …Sep 10, 2020 ... OAuth2 is conceived as an authorization protocol, while OpenID Connect and SAML also provide authentication. Authentication answers the question ...Get ratings and reviews for the top 7 home warranty companies in Roxborough Park, CO. Helping you find the best home warranty companies for the job. Expert Advice On Improving Your...SAML is more secure and consistent as it does not expose user credentials or tokens, while OAuth is more flexible and granular as it allows the user to control the scope and duration of access ...Jan 17, 2024 · Protocols and Usage. SAML: Utilizes secure XML documents, which can be more complex and verbose. It's widely used in enterprise environments where security and federated identity management are critical. OAuth: Uses tokens, which are less complex and can be easily transmitted over HTTP. Learn the differences and similarities between three web security protocols: OpenID, OAuth2, and SAML. Compare how they work, what they provide, and when to use …This documentation describes the hosted UI, SAML 2.0, OpenID Connect, and OAuth 2.0 authentication and authorization endpoints for Amazon Cognito user pools. These endpoints are also known as the auth API. Amazon Cognito creates user pool endpoints when you set up a domain. With the exceptions of openid-configuration and jwks.json as described in …SAML is designed for situations like web app SSO solutions, where a central identity provider and an app are in communication and SAML facilitates the AuthN/AuthZ between them. OAuth is generally used by the applications themselves, using external IdPs to authenticate access and authorize …Commonstock CEO David McDonough sees his company revolutionizing the way retail investors engage on social media. Commonstock wants to be the Bloomberg Terminal for retail traders ...Developer Advocate Nate Barbettini breaks down OpenID and OAuth 2.0 in Plain English. NOTE: This video is from 2018 and contains some information that is now...Especially in the case of comparing OAuth with OpenID Connect. Details of SAML. First of all, SAML is an abbreviation from Security Assertion Markup Language. It is an open standard for exchanging ...In short, JWT is a standard for transmitting data securely between parties, while OAuth is a standard for approval that allows third-party applications to access user data. SAML is a standard for exchanging authentication and authorization data between an IdP and an SP, typically used in enterprise …OAuth vs. SAML: Similarities and Differences. Both OAuth and SAML are protocols to encourage and standardize interoperability. People use these tools to avoid an ever-expanding list of usernames and passwords that block them from accessing critical …OAuth 2.0 vs OpenID Connect vs SAML. Remember that it isn’t a question of which structure an organisation should use, but rather of when each one should be deployed. A strong identity solution will use these three structures to achieve different ends, depending on the kind of operations an enterprise needs …In comparison to OAuth and OpenID, SAML offers a more comprehensive set of security features. Support for digital signatures, encryption, and attribute-based access control are all included ...SAML is more secure and consistent as it does not expose user credentials or tokens, while OAuth is more flexible and granular as it allows the user to control the scope and duration of access ...SAML 2.0 is specifically optimized for use in web applications, which enables information to be transmitted through a web browser; Open Authorization (OAuth): OAuth is an open-standard authorization protocol that transfers identification information between apps and encrypts it into machine code. This enables users to grant an application ... SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a priority, for example, on mobile ... OAuth 2.0 is the more widely accepted version of the framework, and many high-level websites and experts encourage users to make this their standard authentication protocol. SAML vs. OAuth. Security Assertion Markup Language (SAML) is often compared to OAuth.Moreover, there is also a flow called SAML Artifact Binding. It is a crossover between SAML and OAuth – the exchange of the SAML Response (the signed document) happens via the backchannel. However, it is quite rare – there are also much fewer integration possibilities for SAML Artifact Binding than OIDC. In …While OAuth is used for access authorization, SAML and OpenID Connect are used for user authentication. Depending on the requirements, a company may use one or all of these data security protocols to keep their data safe. OAuth can be used for API access, OpenID Connect for user authentication, and … 7 Answers. They solve different problems. SAML is a set of standards that have been defined to share information about who a user is, what his set of attributes are, and give you a way to grant/deny access to something or even request authentication. OAuth is more about delegating access to something. You are basically allowing someone to "act ... WS-Fed is perceived to be less complex and light weight (certainly an exception for WS-* family), but SAML being more complex is also perceived to be more secure. At the end you have to look at your ecosystem including existing investments, partners, in house expertise, etc. and determine which one will provide higher value.OAuth 2.0 vs OpenID Connect vs SAML. Remember that it isn’t a question of which structure an organisation should use, but rather of when each one should be deployed. A strong identity solution will use these three structures to achieve different ends, depending on the kind of operations an enterprise needs …The last difference between SAML and OAuth is a major one. OAuth relies majorly on API. Due to this reason, many mobile apps, modern-day websites, game consoles, and the Internet of Things rely on this protocol. Generally, OAuth offers a better experience for users. To offer authentication to users, SAML drops a cookie session in …Main function: OAuth is used for authorization, while JWT is used for authentication and exchanging information. Security: OAuth is a secure way to manage authorization flows, while JWT is a lightweight and self-contained token. It does not provide security on its own, but can be secure as part of a well designed …In the upper-right corner of GitHub.com, select your profile photo, then click Your organizations. Next to the organization, click Settings. In the "Security" section of the sidebar, click Authentication security. Under "SAML single sign …SAML 2.0 and OAuth 2 terminology. Some of the SAML and OAuth terms are for similar concepts. Below is a list that should clarify the similarities. SAML terms with OAuth equivalents in brackets: Service Provider (Resource Server) – This is where the resources the client wishes to access reside. Client – How user is interacting with … SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a priority, for example, on mobile ... Feb 23, 2023 · 1 person found this answer helpful. SAML and OIDC are for authentication (i.e.: is this user who they say they are). OAuth is an authorization standard - i.e. "What resources does this user/other entity have access to". SCIM is a standard for provisioning of identity data (users, groups/members, etc) across systems. Jul 3, 2017 · Centralised identity source. SAML 2.0. Enterprise SSO. SAML 2.0. Mobile use cases. OAuth 2.0 (preferably with Bearer Tokens) Permanent or temporary access to resources such as accounts, files. OAuth 2.0. However, both can be used for web SSO, providing single sign-on for multiple web applications. Jul 3, 2017 · Centralised identity source. SAML 2.0. Enterprise SSO. SAML 2.0. Mobile use cases. OAuth 2.0 (preferably with Bearer Tokens) Permanent or temporary access to resources such as accounts, files. OAuth 2.0. However, both can be used for web SSO, providing single sign-on for multiple web applications. SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a priority, for example, on mobile ... As table 1 summarizes, SAML, OAuth 2.0, Open ID Connect, and TSL are all state-of-the-art protocols with different purposes. Before choosing any of them, checking whether the use case matches the ...In this blog post, we’ll explore how Single Sign-On (SSO) works in different protocols, including SAML, OAuth 2.0, and OpenID Connect. It’s important to note that while OAuth 2.0 and OpenID Connect are related, OAuth 2.0 is primarily an authorization protocol, while OpenID Connect is an identity layer built on top of …

Feb 14, 2023 · Security assertion markup language (SAML) is an authentication process. Head to work in the morning and log into your computer, and you've likely used SAML. Open Authorization (OAuth) is an authorisation process. Use it to jump from one service to another without tapping in a new username and password. If you're logged into Google and used ... . Iphone 14 pro vs iphone 14 pro max

oauth vs saml

SAML vs. OAuth. OAuth is a slightly newer standard that was co-developed by Google and Twitter to enable streamlined internet logins. OAuth uses a similar methodology as SAML to share login information. SAML provides more control to enterprises to keep their SSO logins more secure, whereas OAuth is …Jan 22, 2017. 5. This blog post continues the SAML2 vs JWT series. In the last post, we discussed JSON Web Tokens. Now, we are going to move on to OAuth2 and OpenID Connect, which provides some ...A graphic showing how SAML 2.0 federation works for a Microsoft user. Read more: How Machine Identities Can Imperil Enterprise Security. OAuth vs SAML. OAuth is also an example of a language web ...Learn how SAML and OAuth are different authentication and authorization protocols for web applications and services. See how they can be used together and how …SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a … SAML is ideal to secure access to sensitive data in organizations such as government or healthcare. OAuth was designed solely for authorization. It lacks encryption and relies on SSL/TLS protocols for security. While SAML is better to secure information, it makes sense to use OAuth when user experience is a priority, for example, on mobile ... Get ratings and reviews for the top 11 lawn companies in Hyattsville, MD. Helping you find the best lawn companies for the job. Expert Advice On Improving Your Home All Projects Fe...OAuth is widely used for API access control and is especially prevalent in consumer-facing applications, such as social media login features. 2. Authentication vs. Authorization. SAML: SAML primarily deals with authentication, proving the user's identity, and ensuring they are who they claim to be. It relies on …Dec 1, 2022 · Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. A free implementation of this protocol is available from the Massachusetts Institute of Technology. Kerberos is available in many commercial products as well. SAML vs. OAuth. OAuth is a slightly newer standard that was co-developed by Google and Twitter to enable streamlined internet logins. OAuth uses a similar methodology as SAML to share login information. SAML provides more control to enterprises to keep their SSO logins more secure, whereas OAuth is better on mobile …Main function: OAuth is used for authorization, while JWT is used for authentication and exchanging information. Security: OAuth is a secure way to manage authorization flows, while JWT is a lightweight and self-contained token. It does not provide security on its own, but can be secure as part of a well designed authentication system.Both are are used for authentication and authorization, commonly used for Single Sign-On (SSO) solutions. Security Assertion Markup Language (SAML,pronounced SAM-el) is an XML-based standard for exchanging authentication and authorization data between parties, i.e. IdP (Identity Provider) …OAuth vs. OpenID. There are a couple ... SAML is older than OAuth, and indeed one of the driving factors behind OAuth’s creation was that XML protocols like SAML began falling out of vogue ...Jul 9, 2020 ... Identityfederation #SAML #OAuth #SSO #Cyberthreat #Architecture #ZeroTrust #security #Assessment Planning and implementing a security ... SAML vs OAuth. SAML and OAuth2 are open standard protocols designed with different, but related goals. Primarily, SAML 2.0 is designed to authenticate a user, so providing user identity data to a service. OAuth 2.0 is designed as an authorization protocol permitting a user to share access to specific resources with a service provider. Feb 14, 2023 · Security assertion markup language (SAML) is an authentication process. Head to work in the morning and log into your computer, and you've likely used SAML. Open Authorization (OAuth) is an authorisation process. Use it to jump from one service to another without tapping in a new username and password. If you're logged into Google and used ... If a country with Germany's technical and financial might can't meet its climate targets, it's not a good precedent. The two parties likely to form the next coalition government in...JSON Web Token (JWT, pronounced jot) is a ID Token based on JSON to pass user information as Header, Payload and Signature structure.https://jwt.io/ OpenID Connect(OIDC) is built on the OAuth 2.0 protocol and uses an additional JSON Web Token (JWT), called an ID token.This token is a …OAuth is widely used for API access control and is especially prevalent in consumer-facing applications, such as social media login features. 2. Authentication vs. Authorization. SAML: SAML primarily deals with authentication, proving the user's identity, and ensuring they are who they claim to be. It relies on …SAML vs OAuth. SAML and OAuth2 are open standard protocols designed with different, but related goals. Primarily, SAML 2.0 is designed to authenticate a user, so providing user identity data to a service. OAuth 2.0 is designed as an authorization protocol permitting a user to share access to specific resources with …Feb 27, 2021 ... SAML, or Security Assertion Markup Language, is the oldest of the three options and was originally developed in 2001. SAML is an open standard ....

Popular Topics