Everything OAuth

•

10 likes•3,588 views

A presentation given at Codebits 2010 about everything related to OAuth. I didn't go into any deep technical details as I tried to cover most OAuth related topics.

Technology Self Improvement

Viewers also liked

Native Cross-Platform-Apps mit Titanium Mobile und AlloyMayflower GmbH

Test-Driven JavaScript Development IPCMayflower GmbH

Mongo DB - Segen oder FluchMayflower GmbH

Api Design & The Paris SubwayBruno Pedro

Activity Streams And ContextsBruno Pedro

Maintainable consumersBruno Pedro

Shoeism - Frau im GlückMayflower GmbH

Autenticação e Autorização (in portuguese)Bruno Pedro

Plugging holes — javascript memory leak debuggingMayflower GmbH

Who's using your API?Bruno Pedro

Salt and pepper — native code in the browser Browser using Google native ClientMayflower GmbH

APIs Love to ChatBruno Pedro

How to Automate API DiscoveryBruno Pedro

The importance of /meBruno Pedro

Is OAuth Really Secure?Bruno Pedro

Information Retrieval ChallengesBruno Pedro

API Code GenerationBruno Pedro

Why and what is goMayflower GmbH

Piwik anpassen und skalierenMayflower GmbH

Asynchronous Microservices in nodejsBruno Pedro

Viewers also liked (20)

Native Cross-Platform-Apps mit Titanium Mobile und Alloy

Test-Driven JavaScript Development IPC

Mongo DB - Segen oder Fluch

Api Design & The Paris Subway

Activity Streams And Contexts

Maintainable consumers

Shoeism - Frau im Glück

Autenticação e Autorização (in portuguese)

Plugging holes — javascript memory leak debugging

Who's using your API?

Salt and pepper — native code in the browser Browser using Google native Client

APIs Love to Chat

How to Automate API Discovery

The importance of /me

Is OAuth Really Secure?

Information Retrieval Challenges

API Code Generation

Why and what is go

Piwik anpassen und skalieren

Asynchronous Microservices in nodejs

Recently uploaded

TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc

Automating Google Workspace (GWS) & more with Apps Scriptwesley chun

How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes

presentation ICT roal in 21st century educationjfdjdjcjdnsjd

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood

Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1

MS Copilot expands with MS Graph connectorsNanddeep Nachan

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays

DBX First Quarter 2024 Investor PresentationDropbox

Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbuapidays

Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...apidays

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous

Corporate and higher education May webinar.pptxRustici Software

Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh

ICT role in 21st century education and its challengesrafiqahmad00786416

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo

Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2

Recently uploaded (20)

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Automating Google Workspace (GWS) & more with Apps Script

How to Troubleshoot Apps for the Modern Connected Worker

presentation ICT roal in 21st century education

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Boost Fertility New Invention Ups Success Rates.pdf

MS Copilot expands with MS Graph connectors

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

DBX First Quarter 2024 Investor Presentation

Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu

Axa Assurance Maroc - Insurer Innovation Award 2024

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Corporate and higher education May webinar.pptx

Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model

ICT role in 21st century education and its challenges

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Exploring the Future Potential of AI-Enabled Smartphone Processors

Editor's Notes

Authorization - used most of the time Authentication - 2 legged OAuth, &#x201C;sign in with twitter&#x201D;, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
Blaine Cook from twitter, Chris Messina, David Recordon,Larry Halff from magnolia and others
RFC only published in April 2010
Authorization - used most of the time Authentication - 2 legged OAuth, &#x201C;sign in with twitter&#x201D;, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
Authorization - used most of the time Authentication - 2 legged OAuth, &#x201C;sign in with twitter&#x201D;, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
Example from twitter connections settings
Example from facebook where you can revoke apps and also individual permissions
Example from facebook where you can revoke apps and also individual permissions
Let&#x2019;s see an example (next slide)
OOB = Out of Band aka PIN OAuth
Consumer sends along info about service provider and asks to verify credentials
OAuthpocalypse happened on August 31st 2010
Prevents man-in-the-middle attack
SAML: Security Assertion Markup Language

Everything OAuth

Recommended

Recommended

More Related Content

Viewers also liked

Viewers also liked (20)

More from Bruno Pedro

More from Bruno Pedro (13)

Recently uploaded

Recently uploaded (20)

Editor's Notes