Forget about OAuth 2.0. Here comes OAuth 2.1 - Philippe De Ryck - NDC Oslo 2022
Вставка
- Опубліковано 28 гру 2022
- If you’ve ever looked at OAuth 2.0, you may be less than excited to hear about yet another OAuth version. Fortunately, OAuth 2.1 is a logical progression from OAuth 2.0, which significantly reduces the complexity of the OAuth ecosystem.
In this session, you will learn about the differences between OAuth 2.0 and OAuth 2.1. We dive into concrete scenarios supported by OAuth 2.1 and how you can leverage them in your applications. By the end of this session, you will have a clear idea of what OAuth 2.1 entails and how to follow current best practices to build a secure application architecture.
Check out more of our featured speakers and talks at
ndcconferences.com/
ndcoslo.com/ - Наука та технологія
Great call flows. It is easy to understand. Thank you alot
Very good video, I have a question if I am developing an app, my server would do authentication service based on what I implement and authorization server, right? In the latter I should implement the access by roles, within the same token as information I would get the scope to compare whether or not you have access to the resource?
Thank you very much
Oauth 3-legged is an absolute nightmare garbage mess of a dev project that should fire whomever thought this level of complication should’ve ever existed.