Sharing Top Content from the Angular-sphere.

What the Heck is OAuth and OpenID Connect

  • OAuth is not an API or a service: it is an open standard for authorization and any developer can implement it.
  • OAuth is a standard that applications can use to provide client applications with “secure delegated access”.
  • OAuth works over HTTP and authorizes Devices, APIs, Servers and Applications with access tokens rather than credentials, which we will go over in depth below.
  • OpenID Connect (OIDC) is built on top of the OAuth 2.0 protocol.
  • It allows clients to verify the identity of the user and, as well as to obtain their basic profile information.

OAuth is not an API or a service: it is an open standard for authorization and any developer can implement it. OAuth is a standard that applications can use to provide client applications with “secure delegated access”. OAuth works over HTTP and authorizes Devices, APIs, Servers and Applications with access tokens rather than credentials, which we will go over in depth below. OpenID Connect (OIDC) is built on top of the OAuth 2.0 protocol. It allows clients to verify the identity of the user and, as well as to obtain their basic profile information.

OAuth is not an API or a service: it is an open standard for authorization and any developer can implement it. OAuth is a standard that applications can use to provide client applications with “secure delegated access”. OAuth works over HTTP and authorizes Devices, APIs, Servers and Applications with access tokens rather than credentials, which we will go over in depth below. OpenID Connect (OIDC) is built on top of the OAuth 2.0 protocol. It allows clients to verify the identity of the user and, as well as to obtain their basic profile information.

This session covers how OAuth/OIDC works, when to use them, and frameworks/services that simplify authentication.

Blog post: https://developer.okta.com/blog/2017/06/21/what-the-heck-is-oauth

Matt Raible is a web developer, Java Champion, and Developer Advocate at Okta. He loves to architect and build slick-looking UIs using CSS and JavaScript. When he’s not advocating Okta and open source, he likes to ski with his family, drive his VWs and enjoy craft beer. On Twitter @mraible.

What the Heck is OAuth and OpenID Connect

Comments are closed, but trackbacks and pingbacks are open.