Your SlideShare is downloading. ×

OAuth 2.0

702
views

Published on

Simple walk through of the basic message flow.

Simple walk through of the basic message flow.

Published in: Technology

0 Comments
2 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
702
On Slideshare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
14
Comments
0
Likes
2
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. OAuth 2.0Andreas Åkre Solberg, UNINETT ASMarch 19th, 2013
  • 2. Authorization code Token flow storage Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a ne Client Resource owner (with browser)
  • 3. Implicit grant Token flow storage Authorization Feide Resource server server grant i ap issues token au th d te ent e c ic ot at p r es i ng s c es ac browser Resource owner (with browser)
  • 4. ✤ Authorization Code✤ Implicit Grant✤ (Resource Owner Password Credentials)✤ (Client Credentials)
  • 5. ✤ Accessing protected API✤ How do we obtain the token? Token storage Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
  • 6. Authorization Code Flow✤ Authorization Request✤ User authenticates Token storage✤ User accepts client grant Feide Authorization server Resource server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
  • 7. ✤ Access token request Token storage✤ Access token response Authorization Feide Resource server server aut iss hen ted g i ap tec sin ues tica nt pro cces gra tok tes a n e Client Resource owner (with browser)
  • 8. Implicit Grant Flow✤ Authorization Request✤ User authenticates Token storage✤ User accepts client grant Feide Authorization Resource server server grant i ap issues token au th ed ent e ct ic ot at pr es g sin c es ac browser Resource owner (with browser)
  • 9. Client Token storage storage Client Authorization Feide Resource serverManagement server Client Client owner Resource owner(with browser) (with browser)
  • 10. Resource serverUWAP Token Client storage storage Feide SOA Authorization Client Gatekeeper server Management Client Client owner

×