Bruno Pedro, profile picture
Uploaded byBruno Pedro
PDF, PPTX3,596 views

Everything OAuth

A presentation given at Codebits 2010 about everything related to OAuth. I didn't go into any deep technical details as I tried to cover most OAuth related topics.

Embed presentation

Download as PDF, PPTX
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth
Everything OAuth

More Related Content

PDF
node-fs
byBruno Pedro
 
PDF
Schnelle Geschäfte
byMayflower GmbH
 
KEY
Link extraction and classification
byBruno Pedro
 
PDF
Introd to CS. Presentation
byMiguel Rebollo
 
KEY
The Executable Web
byBruno Pedro
 
PDF
tarpipe WordPress plugin demo
byBruno Pedro
 
PDF
Bridging the Gap Between APIs and Customers
byBruno Pedro
 
PPTX
Computer concepts presentation 2
byArunodya Silva
 
node-fs
byBruno Pedro
 
Schnelle Geschäfte
byMayflower GmbH
 
Link extraction and classification
byBruno Pedro
 
Introd to CS. Presentation
byMiguel Rebollo
 
The Executable Web
byBruno Pedro
 
tarpipe WordPress plugin demo
byBruno Pedro
 
Bridging the Gap Between APIs and Customers
byBruno Pedro
 
Computer concepts presentation 2
byArunodya Silva
 

Viewers also liked

PDF
Native Cross-Platform-Apps mit Titanium Mobile und Alloy
byMayflower GmbH
 
PDF
Test-Driven JavaScript Development IPC
byMayflower GmbH
 
KEY
Mongo DB - Segen oder Fluch
byMayflower GmbH
 
PDF
Api Design & The Paris Subway
byBruno Pedro
 
PDF
Activity Streams And Contexts
byBruno Pedro
 
PDF
Maintainable consumers
byBruno Pedro
 
PDF
Shoeism - Frau im Glück
byMayflower GmbH
 
PDF
Autenticação e Autorização (in portuguese)
byBruno Pedro
 
PDF
Plugging holes — javascript memory leak debugging
byMayflower GmbH
 
PDF
Who's using your API?
byBruno Pedro
 
PDF
Salt and pepper — native code in the browser Browser using Google native Client
byMayflower GmbH
 
PDF
APIs Love to Chat
byBruno Pedro
 
PDF
How to Automate API Discovery
byBruno Pedro
 
PDF
The importance of /me
byBruno Pedro
 
KEY
Is OAuth Really Secure?
byBruno Pedro
 
KEY
Information Retrieval Challenges
byBruno Pedro
 
PDF
API Code Generation
byBruno Pedro
 
PDF
Why and what is go
byMayflower GmbH
 
PDF
Piwik anpassen und skalieren
byMayflower GmbH
 
PDF
Asynchronous Microservices in nodejs
byBruno Pedro
 
Native Cross-Platform-Apps mit Titanium Mobile und Alloy
byMayflower GmbH
 
Test-Driven JavaScript Development IPC
byMayflower GmbH
 
Mongo DB - Segen oder Fluch
byMayflower GmbH
 
Api Design & The Paris Subway
byBruno Pedro
 
Activity Streams And Contexts
byBruno Pedro
 
Maintainable consumers
byBruno Pedro
 
Shoeism - Frau im Glück
byMayflower GmbH
 
Autenticação e Autorização (in portuguese)
byBruno Pedro
 
Plugging holes — javascript memory leak debugging
byMayflower GmbH
 
Who's using your API?
byBruno Pedro
 
Salt and pepper — native code in the browser Browser using Google native Client
byMayflower GmbH
 
APIs Love to Chat
byBruno Pedro
 
How to Automate API Discovery
byBruno Pedro
 
The importance of /me
byBruno Pedro
 
Is OAuth Really Secure?
byBruno Pedro
 
Information Retrieval Challenges
byBruno Pedro
 
API Code Generation
byBruno Pedro
 
Why and what is go
byMayflower GmbH
 
Piwik anpassen und skalieren
byMayflower GmbH
 
Asynchronous Microservices in nodejs
byBruno Pedro
 

More from Bruno Pedro

PDF
What are Web APIs
byBruno Pedro
 
PDF
Growing your business with an API
byBruno Pedro
 
PDF
Product growth with an API
byBruno Pedro
 
PDF
How to grow your business with an API
byBruno Pedro
 
PDF
How to Automate API Testing
byBruno Pedro
 
PDF
OAuth checklist
byBruno Pedro
 
PDF
OOP (in portuguese)
byBruno Pedro
 
PDF
Segurança (in portuguese)
byBruno Pedro
 
PDF
Cache e Performance (in portuguese)
byBruno Pedro
 
PDF
Web Services (in portuguese)
byBruno Pedro
 
PDF
Sessões (in portuguese)
byBruno Pedro
 
PDF
User Interface (in portuguese)
byBruno Pedro
 
PDF
Takeoff2008
byBruno Pedro
 
What are Web APIs
byBruno Pedro
 
Growing your business with an API
byBruno Pedro
 
Product growth with an API
byBruno Pedro
 
How to grow your business with an API
byBruno Pedro
 
How to Automate API Testing
byBruno Pedro
 
OAuth checklist
byBruno Pedro
 
OOP (in portuguese)
byBruno Pedro
 
Segurança (in portuguese)
byBruno Pedro
 
Cache e Performance (in portuguese)
byBruno Pedro
 
Web Services (in portuguese)
byBruno Pedro
 
Sessões (in portuguese)
byBruno Pedro
 
User Interface (in portuguese)
byBruno Pedro
 
Takeoff2008
byBruno Pedro
 

Recently uploaded

PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
PDF
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
PDF
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
PDF
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PDF
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PDF
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
PDF
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
PDF
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
PDF
What Is the Azure AI Foundry and Why Does It Matter for Enterprises?
byjohncarterjn
 
PDF
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
PDF
Designing a Blog Using Wordpress
bymarkzubi50
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
What Is the Azure AI Foundry and Why Does It Matter for Enterprises?
byjohncarterjn
 
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
Designing a Blog Using Wordpress
bymarkzubi50
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 

Editor's Notes

  • #5 Authorization - used most of the time Authentication - 2 legged OAuth, “sign in with twitter”, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
  • #6 Blaine Cook from twitter, Chris Messina, David Recordon,Larry Halff from magnolia and others
  • #7 RFC only published in April 2010
  • #8 Authorization - used most of the time Authentication - 2 legged OAuth, “sign in with twitter”, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
  • #9 Authorization - used most of the time Authentication - 2 legged OAuth, “sign in with twitter”, no to be confused with OpenID Built as an Open Protocol on top of already existing solutions (Amazon,Yahoo)
  • #24 Example from twitter connections settings
  • #25 Example from facebook where you can revoke apps and also individual permissions
  • #26 Example from facebook where you can revoke apps and also individual permissions
  • #35 Let’s see an example (next slide)
  • #40 OOB = Out of Band aka PIN OAuth
  • #52 Consumer sends along info about service provider and asks to verify credentials
  • #54 OAuthpocalypse happened on August 31st 2010
  • #57 Prevents man-in-the-middle attack
  • #64 SAML: Security Assertion Markup Language