Protect your API with OAuth2

Rob Allen (08.Apr.2017 at 11:50, 50 min)
Talk at PHP Yorkshire 2017 (English - UK)

Rating: 5 of 5

OAuth 2 is the gold standard for authentication in APIs and in this talk we’ll take a deep dive into how it works and how to implement an OAuth 2 server in your API. There are a number of work flows in OAuth 2 for different scenarios including mobile apps and websites connecting via JavaScript, so I will discuss each one and show you how to implement it. We’ll also look how to use JWT which can provide performance improvements. By the end, you’ll be well equipped to add OAuth2 to your API.

Who are you?

Claim talk

Talk claims have been moved to the new site.

Please login to the new site to claim your talk

Comments closed.


Rating: 4 of 5

08.Apr.2017 at 13:54 by Ishani Vardhan (6 comments) via Web2 LIVE

Quite good overview with some detailed insights for those who are unaware of oAuth2 API !

Rating: 5 of 5

08.Apr.2017 at 13:55 by Mark Railton (64 comments) via Web2 LIVE

Brilliant overview of how to use oauth2 and also where you can make some speed optimisations and also some pitfalls to avoid.

Rating: 5 of 5

08.Apr.2017 at 14:13 by David Carr (40 comments) via Web2 LIVE

Really useful and to the point the code example I found clear can't wait to try and use oauth in my next api

Rating: 4 of 5

08.Apr.2017 at 14:47 by Simon R Jones (46 comments) via Web2 LIVE

Great overview of OAuth2 and using it in PHP. Never realised how flexible it is!

Rating: 4 of 5

08.Apr.2017 at 18:23 by Benjamin Wells Kerenza (6 comments) via Web2 LIVE

Good coverage and some helpful suggestions on codebases and practices to look at. A little bit tutorial based but well presented.

Rating: 5 of 5

09.Apr.2017 at 09:17 by Elliot Ward (71 comments) via Web2 LIVE

As the abstract promised, by the end I felt well equipped to work with OAuth2, a personal first! Pacing was great for a technical topic, starting with simple focussed examples and slowly building complexity. The only point where I was lost was understanding why you can switch to in memory storage when using JWTs rather than standard tokens, but by question time my brain had caught up, so possibly there is room to expand on that explanation when the concept is introduced. Maybe you did and I missed it!

Rating: 5 of 5

09.Apr.2017 at 15:04 by Dave Liddament (72 comments) via Web2 LIVE

A clear introduction to OAuth 2. Well worth watching for those who want a good introduction to the topic.

Rating: 5 of 5

11.Apr.2017 at 09:37 by Pete Samways (9 comments) via Web2 LIVE

A very clear explanation of a topic that has great relevance for me at present

Rating: 5 of 5

11.Apr.2017 at 09:52 by Sean Nessworthy (14 comments) via Web2 LIVE

Solid talk, concepts were demonstrated and communicated clearly.

Rating: 5 of 5

21.Apr.2017 at 08:43 by Rich Sage (71 comments) via Web2 LIVE

Having used OAuth 2 a few times but always having to look up what each component/area does, this talk was great for just stripping it back to the basics and making it really clear how the process works and the various components that make up an OAuth 2 authentication process. Demystified what can be a tricky concept to grasp.

© 2019