Join Keith Casey for an in-depth discussion in this video Exercise files, part of Web Security: OAuth and OpenID Connect.
- [Instructor] Throughout this course we'll use code snippets. Some of them are available just freely from GitHub that we just clone and we use. Others will be a little bit more complex. Every bit of code that I use in this course is available for you to download. In this case we have a folder called exercise files. Within that we've broken it up by chapter. Within each chapter there's a video so we can see both the start and the end point or what the code looked like when we began the lesson and what it looked like by the end, once we got it working. So as you're going through these videos feel free to refer to these and see what it looked like both before and after.
Now with that, let's dive into learning about OAuth.
- How does OAuth 2.0 work, and what problems does it solve?
- What is OpenID Connect, and how is it different from OAuth?
- OAuth tokens and their usage
- Authorization in microservices
- Common security considerations
- Authorization for mobile apps and SPA
- Authorization in legacy applications
- Server-side implementations
Skill Level Advanced
1. What Is OAuth?
2. Core Terminology
3. Client Credential: Authorization for Microservices
4. Implicit or Hybrid: Authorization for Mobile Devices
5. Grant Type: Authorization Code
6. Grant Type: Resource Owner Password Flow
7. Server-Side Implementations
Next steps1m 40s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.