• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
OAuth 2.0
 

OAuth 2.0

on

  • 919 views

Simple walk through of the basic message flow.

Simple walk through of the basic message flow.

Statistics

Views

Total Views
919
Views on SlideShare
900
Embed Views
19

Actions

Likes
1
Downloads
11
Comments
0

1 Embed 19

https://twitter.com 19

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    OAuth 2.0 OAuth 2.0 Presentation Transcript

    • OAuth 2.0Andreas Åkre Solberg, UNINETT ASMarch 19th, 2013
    • Authorization code Token flow storage Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a ne Client Resource owner (with browser)
    • Implicit grant Token flow storage Authorization Feide Resource server server grant i ap issues token au th d te ent e c ic ot at p r es i ng s c es ac browser Resource owner (with browser)
    • ✤ Authorization Code✤ Implicit Grant✤ (Resource Owner Password Credentials)✤ (Client Credentials)
    • ✤ Accessing protected API✤ How do we obtain the token? Token storage Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
    • Authorization Code Flow✤ Authorization Request✤ User authenticates Token storage✤ User accepts client grant Feide Authorization server Resource server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
    • ✤ Access token request Token storage✤ Access token response Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
    • Implicit Grant Flow✤ Authorization Request✤ User authenticates Token storage✤ User accepts client grant Feide Authorization Resource server server grant i ap issues token au th ed ent e ct ic ot at pr es g sin c es ac browser Resource owner (with browser)
    • Client Token storage storage Client Authorization Feide Resource serverManagement server Client Client owner Resource owner(with browser) (with browser)
    • Resource serverUWAP Token Client storage storage Feide SOA Authorization Client Gatekeeper server Management Client Client owner