Implementing OAuth2.0

Mark Horstmeier (13.Jul.2017 at 10:30, 50 min)
Talk at OpenWest Conference 2017 (English - US)

Rating: 3 of 5

Facebook, Google and Twitter have made OAuth a common standard in API authentication, but not all OAuth is created equal. The authorization code (server side) flow is the closest OAuth2.0 implementation to the OAuth1.0a specification and provides the *most* security.

While you may not need to write your own OAuth server, understanding the fundamentals will help you navigate the OAuth client dance which is base requirement to consuming API resources from Google, Facebook and many other services.

I will show you the structure of an OAuth2.0 server implementation which leverages the Apache HTTP authentication handlers to provide token based access to sensitive resources.


Who are you?

Claim talk

Talk claims have been moved to the new site.

Please login to the new site to claim your talk

Comments closed.


Rating: 3 of 5

23.Jul.2017 at 13:06 by Madhumita Das (2 comments) via Web2 LIVE

I missed the first session on 12th. Session was little difficult to understand, as Mark was referring to the first session some time

© 2018