Introduction to OAuth 2.0 and OpenID Connect By Philippe De Ryck
Рет қаралды 24,151
Күн бұрынOAuth 2.0 and OpenID Connect are critical security protocols in the contemporary web, governing how users are authenticated and how their data is accessed. However, understanding these protocols and applying them securely is often challenging, even for experienced developers. Misconfigurations and suboptimal implementations can lead to significant security risks, making a comprehensive understanding of these protocols vital for ensuring the security of web-based applications.
In this session, we delve into the intricacies of OAuth 2.0 and OpenID Connect, from their foundational principles to advanced usage in client-side web applications. We will explore the practical aspects of these protocols, discussing how they function, their potential vulnerabilities, and the best practices for their secure implementation. The session aims to equip you with a fundamental understanding of OAuth 2.0 and OpenID Connect. By the end of this session, you should be able to effectively use these protocols in your applications, and confidently make informed decisions when it comes to securing user data and authentication processes.
@lxn7404 Жыл бұрын
Finally, 2023, we've got a great, comprehensive deep dive into this topic 👍
@0x07e4 2 ай бұрын
00:00 Opening 08:50 Use cases and flows 23:44 The authorization code flow 46:35 Securing the flow with PKCE 1:06:27 Quiz 1:12:59 Long-term access with refresh tokens 1:23:57 Session re-use and Single Sign-On 1:34:15 OAuth 2.0 and OIDC for mobile apps 1:48:16 OAuth 2.0 and OIDC for web frontends 1:55:10 The client credentials flow 2:01:48 The purpose of scopes 2:17:35 Access tokens and access token types 2:37:26 And there's more
@techwitheds Жыл бұрын
I can't believe I have binge watch all of this content. That was a long 3 hours.
@rapha5586 2 ай бұрын
"Which mean anything but you grandmother recepie book" haha love it! Never thought OAuth can be so nicely explained and funny at the same time. Gifted presenter!
@robadobdob 5 ай бұрын
I've watched several OAuth and OIDC videos and this one is the best one I've seen. Comprehensive and full of clear info.
@csakdee Жыл бұрын
Been binge-watching videos on the topic for months (!) now, and THIS was the definitive one - state-of-the-art summary of current best practices and mentioning all the topics involved in both protocols. Bravo and thank You! Bookmarked as my go to reference.
@techwitheds Жыл бұрын
Thanks for taking your time to explain such complicated topic.
@PhillipMaier-nv8lj 7 ай бұрын
Honestly it is one of the most reliabe and fast sites, really trusted and worthy, many thanks to those responsible for this wonderful service
@iam_kundan Жыл бұрын
Clear explanation for OAuth and OpenID and easy to understand. Thank You for this session.
@manishshaw2393 8 ай бұрын
complete Recap of oAuth . Great session it was.Thanks
@hugoalbertobedolla1148 6 ай бұрын
What a nice presentation by Sebastian Vettel!
@dosxmainyt9245 Жыл бұрын
Was looking for something on this topic :) Thank you!
@JerreMuesli Жыл бұрын
This is gold
@nghiaminh7704 3 ай бұрын
I think PKCE is for public client like SPA. He doesn't make that clear in the overview part for it & in the chart (no front-end).
@alanjack7999 Ай бұрын
how is logout handled?
@ifeanyionyejekwe4584 10 ай бұрын
Not me trying to join the Kahoot quiz in 2024 April...
@adrtivv Жыл бұрын
Phenomenal presentation!!
NDC Conferences
Рет қаралды 17 М.
МАРГУЛАН СЕЙСЕМБАЙ
Рет қаралды 6 МЛН
BUBBLEGUN
Рет қаралды 3,9 МЛН
DakPlay
Рет қаралды 704 М.
Devoxx
Рет қаралды 7 М.
NDC Conferences
Рет қаралды 10 М.
Unzicker's Real Physics
Рет қаралды 31 М.
МАРГУЛАН СЕЙСЕМБАЙ
Рет қаралды 6 МЛН