SlideShare a Scribd company logo

(5) OAuth 2.0 Issuing an Access Token

Download as PPTX, PDF
anikristo
anikristo

This is the fifth part of the summary of the OAuth 2.0 protocol based on RFC6749.

Engineering
1 of 7
OAuth 2.0 ISSUING AN ACCESS TOKEN
Successful Response  The authorization server validates the authentication process and issues an access token and optionally a refresh token by making a response with the following parameters:  access_token (REQUIRED)  token_type (REQUIRED) Bearer, MAC, … [case insensitive]  expires_in (RECOMMENDED) the lifetime in seconds  refresh_token (OPTIONAL)  scope (OPTIONAL)
Successful Response - continued  The parameters are included in the body of the HTTP Response using “application/json” media type.  The parameters are serialized into JSON by adding each parameter at the highest structure level.  Parameter names and string values are represented as JSON strings  Numerical values are represented as JSON numbers  The order of parameters does not matter  The Authorization Sever must include the HTTP “Cache-Control” response header field with the value “no-store” in any response containing tokens, credentials, or any other sensitive information  The Authorization Server must also include “Pragma” in the response header field with a value of “no-cache”
Successful Response - continued Example: HTTP/1.1 200 OK Content-Type: application/json;charset=UTF-8 Cache-Control: no-store Pragma: no-cache { "access_token":"2YotnFZFEjr1zCsicMWpAA", "token_type":"example", "expires_in":3600, "refresh_token":"tGzv3JOkF0XG5Qx2TlKWIA", "example_parameter":"example_value" }
Successful Response - continued  The client must ignore the unknown values / parameters in the response.  The client should avoid making assumptions about the value sizes
Error Response  The Authorization Server responds with a HTTP 400 (Bad Request) status code and includes the following parameters:  error (REQUIRED) A single ASCII error code from the following: invalid_request, unauthorized_client, access_denied, access_denied, unsupported_response_type, invalid_scope, server_error, temporarily_unavailable  error_description (OPTIONAL) human readable ASCII error message with additional information  error_uri (OPTIONAL) URI of an error web page
Error Response - continued  The parameters are included in the HTTP response using “application/json” media type Example: HTTP/1.1 400 Bad Request Content-Type: application/json;charset=UTF-8 Cache-Control: no-store Pragma: no-cache { "error":"invalid_request" }

Recommended

(1) OAuth 2.0 Overview
(1) OAuth 2.0 Overview(1) OAuth 2.0 Overview
(1) OAuth 2.0 Overviewanikristo
 
The different of method
The different of methodThe different of method
The different of methodtalita97
 
Preguntas de investigación1 7 b
Preguntas de investigación1 7 bPreguntas de investigación1 7 b
Preguntas de investigación1 7 bDaniel Rs
 
Group 4
Group 4Group 4
Group 4natatalie
 
Database2011
Database2011Database2011
Database2011KKU Library
 
artSpace - Market Analysis 2015
artSpace - Market Analysis 2015artSpace - Market Analysis 2015
artSpace - Market Analysis 2015Kyndal Oliver
 
10.11648.j.ijnfs.20150404.21
10.11648.j.ijnfs.20150404.2110.11648.j.ijnfs.20150404.21
10.11648.j.ijnfs.20150404.21Ayalew Aklilu
 
wong.peeranat.portfolio
wong.peeranat.portfoliowong.peeranat.portfolio
wong.peeranat.portfolioPEAT Wong
 

Recommended

(1) OAuth 2.0 Overview
(1) OAuth 2.0 Overview(1) OAuth 2.0 Overview
(1) OAuth 2.0 Overviewanikristo
 
The different of method
The different of methodThe different of method
The different of methodtalita97
 
Preguntas de investigación1 7 b
Preguntas de investigación1 7 bPreguntas de investigación1 7 b
Preguntas de investigación1 7 bDaniel Rs
 
Group 4
Group 4Group 4
Group 4natatalie
 
Database2011
Database2011Database2011
Database2011KKU Library
 
artSpace - Market Analysis 2015
artSpace - Market Analysis 2015artSpace - Market Analysis 2015
artSpace - Market Analysis 2015Kyndal Oliver
 
10.11648.j.ijnfs.20150404.21
10.11648.j.ijnfs.20150404.2110.11648.j.ijnfs.20150404.21
10.11648.j.ijnfs.20150404.21Ayalew Aklilu
 
wong.peeranat.portfolio
wong.peeranat.portfoliowong.peeranat.portfolio
wong.peeranat.portfolioPEAT Wong
 
الامارات العاصمة الانسانية
الامارات العاصمة الانسانيةالامارات العاصمة الانسانية
الامارات العاصمة الانسانيةRadwa Radwan
 
The Dorm Shop
The Dorm ShopThe Dorm Shop
The Dorm ShopIOSIGNITE
 
Excuse letter, bonoan
Excuse letter, bonoanExcuse letter, bonoan
Excuse letter, bonoanRafael Basa
 
Presentacion dino salinas
Presentacion dino salinasPresentacion dino salinas
Presentacion dino salinaszarmath
 
Kumarshivam (2)
Kumarshivam (2)Kumarshivam (2)
Kumarshivam (2)shivam kumar
 
Assign 24 digipak conventions
Assign 24 digipak conventionsAssign 24 digipak conventions
Assign 24 digipak conventionstwbsmediaconnell
 
Types of rock
Types of rockTypes of rock
Types of rockSeniorInfants
 
OAuth1.0
OAuth1.0OAuth1.0
OAuth1.0G Jayendra Kartheek
 
NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations Torsten Lodderstedt
 
(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Token(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Tokenanikristo
 
(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorization(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorizationanikristo
 
jQuery : Talk to server with Ajax
jQuery : Talk to server with AjaxjQuery : Talk to server with Ajax
jQuery : Talk to server with AjaxWildan Maulana
 
Apex Testing and Best Practices
Apex Testing and Best PracticesApex Testing and Best Practices
Apex Testing and Best PracticesJitendra Zaa
 
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...BizTalk360
 
Configuring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdfConfiguring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdfdjameleddine2015
 
HTTP Basics
HTTP BasicsHTTP Basics
HTTP Basicssanjoysanyal
 
Postman.ppt
Postman.pptPostman.ppt
Postman.pptParrotBAD
 
Asynchronous t sql
Asynchronous t sqlAsynchronous t sql
Asynchronous t sqlRemus Rusanu
 
Descargar datos con JSON en Android
Descargar datos con JSON en AndroidDescargar datos con JSON en Android
Descargar datos con JSON en Android★ Raúl Laza
 
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)Protect724tk
 
Remote api
Remote apiRemote api
Remote apilosalamos
 
Overview of RESTful web services
Overview of RESTful web servicesOverview of RESTful web services
Overview of RESTful web servicesnbuddharaju
 

More Related Content

Viewers also liked

الامارات العاصمة الانسانية
الامارات العاصمة الانسانيةالامارات العاصمة الانسانية
الامارات العاصمة الانسانيةRadwa Radwan
 
The Dorm Shop
The Dorm ShopThe Dorm Shop
The Dorm ShopIOSIGNITE
 
Excuse letter, bonoan
Excuse letter, bonoanExcuse letter, bonoan
Excuse letter, bonoanRafael Basa
 
Presentacion dino salinas
Presentacion dino salinasPresentacion dino salinas
Presentacion dino salinaszarmath
 
Assign 24 digipak conventions
Assign 24 digipak conventionsAssign 24 digipak conventions
Assign 24 digipak conventionstwbsmediaconnell
 

Viewers also liked (7)

الامارات العاصمة الانسانية
الامارات العاصمة الانسانيةالامارات العاصمة الانسانية
الامارات العاصمة الانسانية
 
The Dorm Shop
The Dorm ShopThe Dorm Shop
The Dorm Shop
 
Excuse letter, bonoan
Excuse letter, bonoanExcuse letter, bonoan
Excuse letter, bonoan
 
Presentacion dino salinas
Presentacion dino salinasPresentacion dino salinas
Presentacion dino salinas
 
Kumarshivam (2)
Kumarshivam (2)Kumarshivam (2)
Kumarshivam (2)
 
Assign 24 digipak conventions
Assign 24 digipak conventionsAssign 24 digipak conventions
Assign 24 digipak conventions
 
Types of rock
Types of rockTypes of rock
Types of rock
 

Similar to (5) OAuth 2.0 Issuing an Access Token

NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations Torsten Lodderstedt
 
(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Token(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Tokenanikristo
 
(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorization(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorizationanikristo
 
jQuery : Talk to server with Ajax
jQuery : Talk to server with AjaxjQuery : Talk to server with Ajax
jQuery : Talk to server with AjaxWildan Maulana
 
Apex Testing and Best Practices
Apex Testing and Best PracticesApex Testing and Best Practices
Apex Testing and Best PracticesJitendra Zaa
 
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...BizTalk360
 
Configuring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdfConfiguring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdfdjameleddine2015
 
Asynchronous t sql
Asynchronous t sqlAsynchronous t sql
Asynchronous t sqlRemus Rusanu
 
Descargar datos con JSON en Android
Descargar datos con JSON en AndroidDescargar datos con JSON en Android
Descargar datos con JSON en Android★ Raúl Laza
 
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)Protect724tk
 
Overview of RESTful web services
Overview of RESTful web servicesOverview of RESTful web services
Overview of RESTful web servicesnbuddharaju
 
Ppt on web development and this has all details
Ppt on web development and this has all detailsPpt on web development and this has all details
Ppt on web development and this has all detailsgogijoshiajmer
 
JavaEE Security
JavaEE SecurityJavaEE Security
JavaEE SecurityAlex Kim
 
Asp.Net Ajax Component Development
Asp.Net Ajax Component DevelopmentAsp.Net Ajax Component Development
Asp.Net Ajax Component DevelopmentChui-Wen Chiu
 
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdf
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdfESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdf
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdfProtect724v2
 

Similar to (5) OAuth 2.0 Issuing an Access Token (20)

OAuth1.0
OAuth1.0OAuth1.0
OAuth1.0
 
NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations NextGenPSD2 OAuth SCA Mode Security Recommendations
NextGenPSD2 OAuth SCA Mode Security Recommendations
 
(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Token(6) OAuth 2.0 Refreshing an Access Token
(6) OAuth 2.0 Refreshing an Access Token
 
(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorization(4) OAuth 2.0 Obtaining Authorization
(4) OAuth 2.0 Obtaining Authorization
 
jQuery : Talk to server with Ajax
jQuery : Talk to server with AjaxjQuery : Talk to server with Ajax
jQuery : Talk to server with Ajax
 
Apex Testing and Best Practices
Apex Testing and Best PracticesApex Testing and Best Practices
Apex Testing and Best Practices
 
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
Use Windows Azure Service Bus, BizTalk Services, Mobile Services, and BizTalk...
 
Configuring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdfConfiguring Wired 802.1x Authentication on Windows Server 2012.pdf
Configuring Wired 802.1x Authentication on Windows Server 2012.pdf
 
HTTP Basics
HTTP BasicsHTTP Basics
HTTP Basics
 
Postman.ppt
Postman.pptPostman.ppt
Postman.ppt
 
Asynchronous t sql
Asynchronous t sqlAsynchronous t sql
Asynchronous t sql
 
Descargar datos con JSON en Android
Descargar datos con JSON en AndroidDescargar datos con JSON en Android
Descargar datos con JSON en Android
 
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
ESM Service Layer API Reference, Vol. 1: Core-Client Services (ESM v6.9.1c)
 
Remote api
Remote apiRemote api
Remote api
 
Overview of RESTful web services
Overview of RESTful web servicesOverview of RESTful web services
Overview of RESTful web services
 
Ppt on web development and this has all details
Ppt on web development and this has all detailsPpt on web development and this has all details
Ppt on web development and this has all details
 
JavaEE Security
JavaEE SecurityJavaEE Security
JavaEE Security
 
Restful api
Restful apiRestful api
Restful api
 
Asp.Net Ajax Component Development
Asp.Net Ajax Component DevelopmentAsp.Net Ajax Component Development
Asp.Net Ajax Component Development
 
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdf
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdfESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdf
ESM_ServiceLayerCoreServices_Javadoc_Vol1_1.0.pdf
 

Recently uploaded

SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )Tsuyoshi Horigome
 
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerStudy on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerAnamika Sarkar
 
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...RajaP95
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxpurnimasatapathy1234
 
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINEMANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINESIVASHANKAR N
 
Porous Ceramics seminar and technical writing
Porous Ceramics seminar and technical writingPorous Ceramics seminar and technical writing
Porous Ceramics seminar and technical writingrakeshbaidya232001
 
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSAPPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSKurinjimalarL3
 
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxpranjaldaimarysona
 
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Serviceranjana rawat
 
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130Suhani Kapoor
 
Internship report on mechanical engineering
Internship report on mechanical engineeringInternship report on mechanical engineering
Internship report on mechanical engineeringmalavadedarshan25
 
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).pptssuser5c9d4b1
 
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICS
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICSHARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICS
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICSRajkumarAkumalla
 
Introduction to IEEE STANDARDS and its different types.pptx
Introduction to IEEE STANDARDS and its different types.pptxIntroduction to IEEE STANDARDS and its different types.pptx
Introduction to IEEE STANDARDS and its different types.pptxupamatechverse
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCall Girls in Nagpur High Profile
 

Recently uploaded (20)

SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )
 
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube ExchangerStudy on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
Study on Air-Water & Water-Water Heat Exchange in a Finned Tube Exchanger
 
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...
IMPLICATIONS OF THE ABOVE HOLISTIC UNDERSTANDING OF HARMONY ON PROFESSIONAL E...
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptx
 
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINEMANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
 
Porous Ceramics seminar and technical writing
Porous Ceramics seminar and technical writingPorous Ceramics seminar and technical writing
Porous Ceramics seminar and technical writing
 
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSAPPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
 
Exploring_Network_Security_with_JA3_by_Rakesh Seal.pptx
Exploring_Network_Security_with_JA3_by_Rakesh Seal.pptxExploring_Network_Security_with_JA3_by_Rakesh Seal.pptx
Exploring_Network_Security_with_JA3_by_Rakesh Seal.pptx
 
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptx
 
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service
(RIA) Call Girls Bhosari ( 7001035870 ) HI-Fi Pune Escorts Service
 
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCRCall Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
 
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130
VIP Call Girls Service Hitech City Hyderabad Call +91-8250192130
 
Internship report on mechanical engineering
Internship report on mechanical engineeringInternship report on mechanical engineering
Internship report on mechanical engineering
 
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt
247267395-1-Symmetric-and-distributed-shared-memory-architectures-ppt (1).ppt
 
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICS
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICSHARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICS
HARDNESS, FRACTURE TOUGHNESS AND STRENGTH OF CERAMICS
 
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINEDJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
 
Introduction to IEEE STANDARDS and its different types.pptx
Introduction to IEEE STANDARDS and its different types.pptxIntroduction to IEEE STANDARDS and its different types.pptx
Introduction to IEEE STANDARDS and its different types.pptx
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
 

(5) OAuth 2.0 Issuing an Access Token

  • 1. OAuth 2.0 ISSUING AN ACCESS TOKEN
  • 2. Successful Response  The authorization server validates the authentication process and issues an access token and optionally a refresh token by making a response with the following parameters:  access_token (REQUIRED)  token_type (REQUIRED) Bearer, MAC, … [case insensitive]  expires_in (RECOMMENDED) the lifetime in seconds  refresh_token (OPTIONAL)  scope (OPTIONAL)
  • 3. Successful Response - continued  The parameters are included in the body of the HTTP Response using “application/json” media type.  The parameters are serialized into JSON by adding each parameter at the highest structure level.  Parameter names and string values are represented as JSON strings  Numerical values are represented as JSON numbers  The order of parameters does not matter  The Authorization Sever must include the HTTP “Cache-Control” response header field with the value “no-store” in any response containing tokens, credentials, or any other sensitive information  The Authorization Server must also include “Pragma” in the response header field with a value of “no-cache”
  • 4. Successful Response - continued Example: HTTP/1.1 200 OK Content-Type: application/json;charset=UTF-8 Cache-Control: no-store Pragma: no-cache { "access_token":"2YotnFZFEjr1zCsicMWpAA", "token_type":"example", "expires_in":3600, "refresh_token":"tGzv3JOkF0XG5Qx2TlKWIA", "example_parameter":"example_value" }
  • 5. Successful Response - continued  The client must ignore the unknown values / parameters in the response.  The client should avoid making assumptions about the value sizes
  • 6. Error Response  The Authorization Server responds with a HTTP 400 (Bad Request) status code and includes the following parameters:  error (REQUIRED) A single ASCII error code from the following: invalid_request, unauthorized_client, access_denied, access_denied, unsupported_response_type, invalid_scope, server_error, temporarily_unavailable  error_description (OPTIONAL) human readable ASCII error message with additional information  error_uri (OPTIONAL) URI of an error web page
  • 7. Error Response - continued  The parameters are included in the HTTP response using “application/json” media type Example: HTTP/1.1 400 Bad Request Content-Type: application/json;charset=UTF-8 Cache-Control: no-store Pragma: no-cache { "error":"invalid_request" }