https://notes.karlmcguinness.com/tags/ciam/Recent content in CIAM on Control Plane by Karl McGuinnessHugoen-uspublic@karlmcguinness.com (Karl McGuinness)public@karlmcguinness.com (Karl McGuinness)Sun, 05 Apr 2026 12:00:00 -0700https://notes.karlmcguinness.com/notes/id-jag-beyond-the-enterprise-idp/Sun, 05 Apr 2026 12:00:00 -0700public@karlmcguinness.com (Karl McGuinness)https://notes.karlmcguinness.com/notes/id-jag-beyond-the-enterprise-idp/ID-JAG is a new OAuth standard for carrying identity assertions across authorization boundaries. The natural first reading makes the enterprise IdP the center of that model. The better reading makes both the enterprise IdP and the product platform first-class issuers, each authoritative for what it actually governs. That broader CIAM and product-platform use case was part of the design from the beginning.