Successfully reported this slideshow.

Shoot Me a Token: OpenAM as an OAuth2 Provider

7

Share

Jun. 18, 2013
7 likes 10,525 views
Upcoming SlideShare
Federation in Practice
Federation in Practice
Loading in …3
×
1 of 21
1 of 21

Shoot Me a Token: OpenAM as an OAuth2 Provider

Jun. 18, 2013
7 likes 10,525 views

7

Share

Download to read offline

Technology Spiritual

Presented by Victor Ake, OpenAM Product Manager and ForgeRock Co-Founder at ForgeRock Open Stack Identity Summit. June 2013

Learn more about ForgeRock Access Management:
https://www.forgerock.com/platform/access-management/

Learn more about ForgeRock Identity Management:
https://www.forgerock.com/platform/identity-management/

Presented by Victor Ake, OpenAM Product Manager and ForgeRock Co-Founder at ForgeRock Open Stack Identity Summit. June 2013

Learn more about ForgeRock Access Management:
https://www.forgerock.com/platform/access-management/

Learn more about ForgeRock Identity Management:
https://www.forgerock.com/platform/identity-management/

Technology Spiritual

Recommended

More Related Content

Viewers also liked

THE FORGEROCK PLATFORM BIG PICTURE
ForgeRock
OpenIDM: An Introduction
ForgeRock
Webinar: OpenIDM 3.1
ForgeRock
Single sign on using WSO2 identity server
WSO2
Identity Management for Web Application Developers
WSO2
OpenAM Survival Tips
ForgeRock
OpenID Connect: An Overview
Pat Patterson
OpenAM: An Introduction
ForgeRock
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
ForgeRock
CIS14: OAuth and OpenID Connect in Action
CloudIDSummit
Saml vs Oauth : Which one should I use?
Anil Saldanha
JWT SSO Inbound Authenticator
MifrazMurthaja
Webinar: Access Management with the ForgeRock Identity Platform - So What’s N...
ForgeRock
Presentation
Laxman Kumar
WSO2 Identity Server - Getting Started
Ismaeel Enjreny
K8s idm-devfest
Marc Boorshtein
Wso2 is integration with .net core
Ismaeel Enjreny
Identity as a Managed Cloud Service
ForgeRock
WSO2 Identity Server
WSO2

Similar to Shoot Me a Token: OpenAM as an OAuth2 Provider

Access Management for Cloud and Mobile
ForgeRock
JDD2015: Security in the era of modern applications and services - Bolesław D...
PROIDEA
Stateless Auth using OAuth2 & JWT
Gaurav Roy
CIS13: Bootcamp: Ping Identity OAuth and OpenID Connect In Action with PingFe...
CloudIDSummit
Ladies Be Architects - Study Group III: OAuth 2.0 (Ep 1)
gemziebeth
OAuth in the Real World featuring Webshell
CA API Management
Deep dive into Salesforce Connected App
Dhanik Sahni
OAuth
Adi Challa
IETF 77 OAuth WRAP Presentation
Dick Hardt
OAuth 101 & Secure APIs 2012 Cloud Identity Summit
Brian Campbell
Security Avalanche
Michele Leroux Bustamante
API Security Best Practices & Guidelines
Prabath Siriwardena
Implementing Microservices Security Patterns & Protocols with Spring
VMware Tanzu
OAuth OpenID Connect
Léopold Gault
OAuth 2.0 with IBM WebSphere DataPower
Shiu-Fun Poon
CIS13: Taking the Hyperspace Bypass: Controlling User Access to Other Worlds
CloudIDSummit
Con8823 access management for the internet of things-final
OracleIDM
OAuth 2.0 for Web and Native (Mobile) App Developers
Prabath Siriwardena
ConFoo 2015 - Securing RESTful resources with OAuth2
Rodrigo Cândido da Silva
1000 ways to die in mobile oauth
Priyanka Aash

More from ForgeRock

Digital Identities in the Internet of Things - Securely Manage Devices at Scale
ForgeRock
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
ForgeRock
Identity Live Sydney: Identity Management - A Strategic Opportunity
ForgeRock
Identity Live Singapore: Transform Your Cybersecurity Capability
ForgeRock
Identity Live Singapore 2018 Keynote Presentation
ForgeRock
Identity Live Sydney 2018 Keynote Presentation
ForgeRock
Identity Live Singapore: Just Ask 'Em
ForgeRock
Identity Live Singapore: Building Trust & Privacy in a Connected Society
ForgeRock
Identity Live Sydney: Intelligent Authentication
ForgeRock
Identity Live Sydney: Building Trust and Privacy in a Connected Society
ForgeRock
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
ForgeRock
Get the Exact Identity Solution You Need - In the Cloud - Overview
ForgeRock
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
Opening Keynote (Identity Live Berlin 2018)
ForgeRock
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
ForgeRock
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
ForgeRock
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
ForgeRock
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
ForgeRock
Shift from GDPR readiness to sustained compliance to improve your business an...
ForgeRock
Intelligent Authentication (Identity Live Berlin 2018)
ForgeRock

Featured

What to Upload to SlideShare
SlideShare
Be A Great Product Leader (Amplify, Oct 2019)
Adam Nash
Trillion Dollar Coach Book (Bill Campbell)
Eric Schmidt
APIdays Paris 2019 - Innovation @ scale, APIs as Digital Factories' New Machi...
apidays
A few thoughts on work life-balance
Wim Vanderbauwhede
Is vc still a thing final
Mark Suster
The GaryVee Content Model
Gary Vaynerchuk
Mammalian Brain Chemistry Explains Everything
Loretta Breuning, PhD
Blockchain + AI + Crypto Economics Are We Creating a Code Tsunami?
Dinis Guarda
The AI Rush
Jean-Baptiste Dumont
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
10 facts about jobs in the future
Pew Research Center's Internet & American Life Project
Harry Surden - Artificial Intelligence and Law Overview
Harry Surden
Inside Google's Numbers in 2017
Rand Fishkin
Pinot: Realtime Distributed OLAP datastore
Kishore Gopalakrishna
How to Become a Thought Leader in Your Niche
Leslie Samuel
Visual Design with Data
Seth Familian
Designing Teams for Emerging Challenges
Aaron Irizarry
UX, ethnography and possibilities: for Libraries, Museums and Archives
Ned Potter
Winners and Losers - All the (Russian) President's Men
Ian Bremmer

Related Books

Free with a 14 day trial from Scribd

See all
All Along You Were Blooming: Thoughts for Boundless Living Morgan Harper Nichols
(4/5)
Free
Success from the Inside Out: Power to Rise from the Past to a Fulfilling Future Nona Jones
(4.5/5)
Free
Around the World on 50 Bucks: How I Left with Nothing and Returned a Rich Man Christopher Schacht
(4.5/5)
Free
That Can Be Arranged: A Muslim Love Story Huda Fahmy
(4.5/5)
Free
What Made Jesus Mad?: Rediscover the Blunt, Sarcastic, Passionate Savior of the Bible Dr. Tim Harlow
(4.5/5)
Free
Marriage Triggers: Exchanging Spouses' Angry Reactions for Gentle Biblical Responses Amber Lia
(4.5/5)
Free
How to Stay Human in a F*cked-Up World: Mindfulness Practices for Real Life Tim Desmond
(3/5)
Free
How Yiddish Changed America and How America Changed Yiddish Restless Books, Inc.
(5/5)
Free
Heaven and Hell: A History of the Afterlife Bart D. Ehrman
(3.5/5)
Free
I'm Possible: Jumping into Fear and Discovering a Life of Purpose Jeremy Cowart
(4/5)
Free
The Art of Living: Peace and Freedom in the Here and Now Thich Nhat Hanh
(4.5/5)
Free
The Baggage Handler David Rawlings
(4.5/5)
Free
The Rational Bible: Exodus Dennis Prager
(4/5)
Free
The Next Right Thing: A Simple, Soulful Practice for Making Life Decisions Emily P. Freeman
(4.5/5)
Free
So You Want to Start a Podcast: Finding Your Voice, Telling Your Story, and Building a Community That Will Listen Kristen Meinzer
(3.5/5)
Free
SAM: One Robot, a Dozen Engineers, and the Race to Revolutionize the Way We Build Jonathan Waldman
(5/5)
Free

Related Audiobooks

Free with a 14 day trial from Scribd

See all
Woman Evolve: Break Up with Your Fears and Revolutionize Your Life Sarah Jakes Roberts
(5/5)
Free
Wholehearted Faith Rachel Held Evans
(5/5)
Free
Heartwood: The Art of Living with the End in Mind Barbara Becker
(4.5/5)
Free
Let Us Dream: The Path to a Better Future Pope Francis
(4/5)
Free
Fasting for Ramadan: Notes from a Spiritual Practice Kazim Ali
(4/5)
Free
The Barn at the End of the World: The Apprenticeship of a Quaker, Buddhist Shepherd Mary Rose O'Reilley
(4/5)
Free
In the Name of God: The Role of Religion in the Modern World: A History of Judeo-Christian and Islamic Tolerance Selina O’Grady
(5/5)
Free
Checking In: How Getting Real about Depression Saved My Life---and Can Save Yours Michelle Williams
(4.5/5)
Free
The Mothers and Daughters of the Bible Speak: Lessons on Faith from Nine Biblical Families Shannon Bream
(4.5/5)
Free
It’s Never Too Late: Make the Next Act of Your Life the Best Act of Your Life Kathie Lee Gifford
(4.5/5)
Free
Miracles and Other Reasonable Things: A Story of Unlearning and Relearning God Sarah Bessey
(4.5/5)
Free
Fierce, Free, and Full of Fire: The Guide to Being Glorious You Jen Hatmaker
(4.5/5)
Free
Forgiving What You Can't Forget: Discover How to Move On, Make Peace with Painful Memories, and Create a Life That’s Beautiful Again Lysa TerKeurst
(4.5/5)
Free
Live in Grace, Walk in Love: A 365-Day Journey Bob Goff
(4.5/5)
Free
Dream Big: Know What You Want, Why You Want It, and What You’re Going to Do About It Bob Goff
(5/5)
Free
The Immoral Majority: Why Evangelicals Chose Political Power Over Christian Values Ben Howe
(4/5)
Free

Shoot Me a Token: OpenAM as an OAuth2 Provider

  1. 1. Open Identity Summit Shoot me a TOKEN OpenAM OAuth2 Provider Víctor Aké Product Manager for OpenAM ForgeRock
  2. 2. Open Identity Summit New Paradigm for the Modern Web !  Converged Cloud creates new identity challenges for the enterprise !  Mobile devices proliferate new granular identity dimension !  As Big Data volumes grow, identity within high value data subsets vital !  Social moves the web identity experience from “anonymous” to “personal” Mobile Social Cloud Enterprise Things
  3. 3. Open Identity Summit ForgeRock Open Identity Stack
  4. 4. Open Identity Summit The Good, The Bad and The Ugly “You see, in this world there's two kinds of APIs, my friend: Those that are lightweight and those that make you dig”
  5. 5. Open Identity Summit On-Premise vs Cloud/Social/Mobile SOAP XML REST JSON
  6. 6. Open Identity Summit OAuth2, OpenID Connect, REST REST Endpoints Mobile Social Cloud Enterprise Things OpenAM Core HTTP(s) JSON AuthN AuthZ Session Validation Identity Management OAuth2 Realm Mgmt OpenID Connect Logging
  7. 7. Open Identity Summit
  8. 8. Open Identity Summit OAuth2 !  Authorization protocol !  Grant access to third parties !  Parties do not share sensitive user information, i.e. no credentials are shared !  Used to grant limited access during limited time to specific resources !  Developed by the IETF Working group
  9. 9. Open Identity Summit Who is using OAuth2
  10. 10. Open Identity Summit How does it work !  Authorization Code Flow Grant !  Implicit flow Grant !  Resource Owner Password Use Case: For Web Applications Use Case: For Mobile Applications !  Client Credentials Flow !  SAML2 Token Insertion Use Case: For Application to Application
  11. 11. Open Identity Summit Authorization Code Flow 2 3 4 5 6 Client Provider Protected Resource 1 7
  12. 12. Open Identity Summit Resource Owner Password Flow 3 Client Provider Protected Resource 1 4 2
  13. 13. Open Identity Summit OAuth2 Tokens Access Token REFRESH Token Used to access a protected resource. Obtained through one of the grant flows Life time short (minutes, hours) Used to obtain a new access token Obtained through one of the grant flows Life time long (days, weeks, months)
  14. 14. Open Identity Summit Web App Native App Native App Web App Login App REST/OAuth2/OpenIDConnect Authentication Authorization Attribute Delivery Federation SSO Token Persistence Session Mgmt OAuth2 Provider OpenAM Cloud Enterprise
  15. 15. Open Identity Summit “You see, in this world there's two kinds of APIs, my friend: Those that are lightweight and those that make you dig” Demo
  16. 16. Open Identity Summit 2 Applications in the iPhone SSO Demo Obtains an OAuth2 Refresh and Access Token using the Authorization Code Grant and then stores it locally in the iPhone keyring Access User Profile info with the Access Token Refreshes the Access Token when it expires using the refresh token Oauth2 Demo Retrieves the Access Token from the iPhone keyring Access User Profile info with the Access Token
  17. 17. Open Identity Summit
  18. 18. Open Identity Summit
  19. 19. Open Identity Summit
  20. 20. Open Identity Summit
  21. 21. Q&A

×