excellent video with excellent explaination. Many people still can't differentiate between oAuth and openID connect. Hopefully, they will watch this video and get themselves clarified.
Thank you! Very clear. It's good to know that there are different flows available. In fact that is what confused me (how to handle redirections in a mobile app!)
I have a question : When on first interaction with Outh server, I am not passing any parameter that identifies me. There are the 4 parameters alone listed (02:43) In that case (provided my sign in is active) how is the Oauth server able to fetch the list of logins among which I can choose my desired login? In other words, will there be a necessity to enter google uname and pwd at the first instance ?
Great explanation here, thanks. A question: At 7:48 frame, I see a code is sent to the server after which the server connects to Google and gets an access token, and a JWT token. Is it secure to send a code over the wire to the server? Or is there some kind of pre-existing handshake where in Google auth server knowns a request would come from a particular server, only after which I would release access and id tokens?
Hi sir, In the video at 5.30 exactly in the screen at right bottom which the rectangle box named as `server` and here its a google contact server or a service provider server of our own application? please clarify it. thank you
Great video and explanation, thanks. With the email, presumably you then check that against your db but I was wondering what happens if the user changes their email with google? Thanks
Nice stuff. Could you do a bit more more basic videos. Like the ENTIRE structure of popular web apps broken down, Ola, tinder, social networks. Or how a MERN stack is implemented. I know your channel has a lot of java and advanced concepts, but i really liked the way tou explained stuff and a lot more people could benefit from these as it lets people see the bigger picture.
Is refresh token and access token are same. Temporary grant is clear. But most of the auth server are sharing two tokens refresh token and access token.
Thanks for great info. One doubt, In open is connect server is sending code in url and this code is used by the client . Isn’t it insecure. How it works as there is no access token in open id connect
Thanks a lot for this Video cleared much stuff, So technically if I say I have access_Token and ID_Token Both in My response and My scope is openID as well Can I Say that I have Implemented Oauth2.0 with OpenID Connect ??
I want call third party api using java code,which has implemented oAuth2.0 to secure the APIs. 1st I got the access_token from that Service. Secondly, I want to send a POST request to one api, by sending stringXML and access_token. So, which method of RestTemple should I use??? If there is any best approach please let me know. Sir, please respond asap.
Just wanted to say this is one of the best educational channels for software developers and its really sad you stopped making videos :(
yes...I wish he continues making videos
It's the simplest and most descriptive tutorial about oauth 2.0 I've ever seen. Thank you a lots. Excellent
One of the best videos found to explain this, especially because you include the differences in parameters used. Thanks
God bless you I have saw like 20 videos and no one was able to explain crearly the concept of OpenId and Oauth 2.0 as you did.
I am very confused before watching this vdo, you cleared my confusion. Awesome explanation. Thanks a lot.
no user configuration required is always hard to understand
Simple and straight to the concept. You're one of my best teacher! Thank you for making such a great video!
Thumbs up for this video before 2mints, you explained very well with examples of our day-by-day. That is what i was looking forn
simple and straight to point example on oauth2.0 and OpenId Connect. Excellent
Your voice and the way of teaching with slides and example are superb, clarity is impressive, thanks
The best explanation for oauth and oidc I have found.
excellent video with excellent explaination. Many people still can't differentiate between oAuth and openID connect. Hopefully, they will watch this video and get themselves clarified.
This is one of the best videos I have seen on this topic! Thank you so much
I am newbie on this topic and still I understood most part of it. Brilliant
Crisp explanation to the point, love your succinct explanation and your presentations
This is one of the best explanations ever.. awesome mate!.
Well explained. 3 in 1 !! Thanks for this.
Extremely clear explanation !!! Awesome work bro !!
Thanks so much for creating this video and sharing it. This was very helpful in my undderstanding of SSO and in particular Oauth and OIC. THANKS!!!
Loved the content. Really helped me understand OAuth 2
Thank you so much for the very simple explanation for the complex workflow!
Thank you! Very clear. It's good to know that there are different flows available. In fact that is what confused me (how to handle redirections in a mobile app!)
This literally cleared my confusion. Thanks a lot.
VErrrrrrrrrrrrryyyyyyyy Good explanation.. no one did like you did.. for my CISSP exam prep..kUDOS'
Awesome video. Short and simple! Just needed to understand the basics of the protocol instead of watching an hour with more details. :)
Explanations are so clear, thanks!
Probably one of the best explanation of these complex concepts. Good Job !
What a clear concept that you have .........Thanks Sir for sharing your knowledge with others...... awesome way to elaborate
Very lucid and to the point.
Damn, short and to the point. Loved it bro.:)
best explanation in the web about the subject.
I saw a lot of video. I mean a lot and able to understand after watching this.
Clear and concise. Love it!
Niceeeeeee thank you for this clear explanation!
Thank you for this clear and up to the point explaination. :)
Clean and simple. I love it!
very well explained .. Keep up the good work
Very well explained 👌
Excellent explanation.
Concise and Clear content
I have a question : When on first interaction with Outh server, I am not passing any parameter that identifies me. There are the 4 parameters alone listed (02:43) In that case (provided my sign in is active) how is the Oauth server able to fetch the list of logins among which I can choose my desired login? In other words, will there be a necessity to enter google uname and pwd at the first instance ?
Great explanation here, thanks. A question: At 7:48 frame, I see a code is sent to the server after which the server connects to Google and gets an access token, and a JWT token. Is it secure to send a code over the wire to the server? Or is there some kind of pre-existing handshake where in Google auth server knowns a request would come from a particular server, only after which I would release access and id tokens?
Awesome video. Straight to the point!
This video has demystified the concept for me. Thanks :)
Very well described.
Adding numbers to arrows to indicate the sequence of actions would have been very helpful.
Good Explanation. Thank you.
Thanks for your work! Very good explanation
superb explanation
Awesome video 👌, keep making more. Subscribed
Wow. Nice explanation. I understand very clearly.
Hi sir, In the video at 5.30 exactly in the screen at right bottom which the rectangle box named as `server` and here its a google contact server or a service provider server of our own application? please clarify it. thank you
Nice.we need you back
nice explanation
Superb :) You are the best
Nicely explained
Excellent video. Thank you
Great explanation. Upto the point
Nice one, clear and concise. Thank you
Perfectly explained, thank you.
Mashallah, very good quality work.
Great video and explanation, thanks. With the email, presumably you then check that against your db but I was wondering what happens if the user changes their email with google? Thanks
Nice stuff. Could you do a bit more more basic videos. Like the ENTIRE structure of popular web apps broken down, Ola, tinder, social networks. Or how a MERN stack is implemented. I know your channel has a lot of java and advanced concepts, but i really liked the way tou explained stuff and a lot more people could benefit from these as it lets people see the bigger picture.
That's a very good idea. Thanks! Will add it to the list
Thanks! Nice info.
Awesome 👏 short and exact 😀
Good explanation.
Hi,
Can you please clarify do we get access_token in openID too?
Brilliant explaination!!
Well done explanation, thank you
Excellent sir. Please create some video on saml 2.0 and single sign on
Is refresh token and access token are same. Temporary grant is clear. But most of the auth server are sharing two tokens refresh token and access token.
Thanks mate. Helpful.
Thank you, to cleared things steps by steps ...
Super explanation
Thanks for the explanation man
Very good explaination and up to the point and cleared many concepts. Can you please make some videos related to federation flow ?
Second half is cool ,,😊
very nice dude!
Awesome presentation.
Great video!!
Brother this is some good knowledge 😁
Amazing!
Thanks for great info. One doubt, In open is connect server is sending code in url and this code is used by the client . Isn’t it insecure. How it works as there is no access token in open id connect
Thank you!🙂
Thanks a lot for this Video cleared much stuff,
So technically if I say I have access_Token and ID_Token Both in My response and My scope is openID as well Can I Say that I have Implemented Oauth2.0 with OpenID Connect ??
Good stuff bro
worth watching
It's just so good. Thanks a lot.
Thx from Germany
good job, very well explained.
Whts the difference in this? Even using oauth 2 and openid both ways can get the user email or profile?
Good one
thank for you knowledge
wow ..great explanation..
thanks for this great video, Can you share some resources where I can do some practice or experiment related to Oauth2?
good job buddy
Thank you so much for information
I want call third party api using java code,which has implemented oAuth2.0 to secure the APIs.
1st I got the access_token from that Service.
Secondly, I want to send a POST request to one api, by sending stringXML and access_token. So, which method of RestTemple should I use??? If there is any best approach please let me know. Sir, please respond asap.
I think you'll need to use oauth rest template.. please check this link for details stackoverflow.com/a/27882337
Amazing
Nice one.Can u pls create spring boot app with oauth2 and explain
That's makes it way simpler ...