Google Apps Marketplace<br />Authentication and Authorization Overview<br />
Authentication for Marketplace Apps<br />OpenID for SSO; or<br />Google Account Password<br />
OpenID<br />
Authentication with OpenID<br />Most Marketplace App supports OpenID<br />This allows you to be the Identity Provider, if ...
Authenticating using the Google Password<br />Certain Marketplace Apps require the users to login using their Google Passw...
Authorization using OAuth<br />OAuth is an open protocol that allows an installed app to access end user information from ...
Where do Marketplace Apps store the data?<br />
OpenID Provider<br />(Google)<br />Relies On<br />Authenticates<br />Google Marketplace Apps<br />(Relying Party)<br />use...
Upcoming SlideShare
Loading in...5
×

Authentication and Authorization for Google Marketplace Apps

1,238

Published on

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,238
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
13
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Authentication and Authorization for Google Marketplace Apps

  1. 1. Google Apps Marketplace<br />Authentication and Authorization Overview<br />
  2. 2. Authentication for Marketplace Apps<br />OpenID for SSO; or<br />Google Account Password<br />
  3. 3. OpenID<br />
  4. 4. Authentication with OpenID<br />Most Marketplace App supports OpenID<br />This allows you to be the Identity Provider, if you choose to be (using SAML).<br />Google will be the OpenID Provider<br />If you currently utilize SAML based authentication for Google Apps, you will be the Identity Provider<br />If you login into Google Apps using your Google Password, Google will be the Identity provider<br />
  5. 5. Authenticating using the Google Password<br />Certain Marketplace Apps require the users to login using their Google Password. These are mostly apps that get installed on the user’s desktop <br />Issues:<br />The app may use unsecure channel to transmit the credentials<br />The “remember me” may store the password unencrypted<br />The credentials may be used for unauthorized access<br />Recommended Approach:<br />Drive OAuth adoption for authorizing installed apps to access data residing in the Google Cloud<br />
  6. 6. Authorization using OAuth<br />OAuth is an open protocol that allows an installed app to access end user information from a Google Account without requiring the user to enter their credentials into the app or storing the credentials on the device.<br />Google utilizes OAuth for granting 3rd party applications the access to data residing in user’s Google Account (e.g. GDocs, Gmail, GCaletc)<br />OAuth provides for<br />Delegated service authorization<br />Full user control over authorized services<br />
  7. 7. Where do Marketplace Apps store the data?<br />
  8. 8. OpenID Provider<br />(Google)<br />Relies On<br />Authenticates<br />Google Marketplace Apps<br />(Relying Party)<br />user<br />OpenIDIdentifier (URI/XRI)<br />Uses<br />May Access<br />Data Stored in Google Cloud<br />Installed Apps<br />To Authorize<br />To Access<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×