Building Clients for OpenID Connect - OAuth 2-based Systems

Building Clients for OpenID Connect - OAuth 2-based Systems

NDC Conferences via YouTube Direct link

Anti Pattern: Resource Owner Password Flow

18 of 28

18 of 28

Anti Pattern: Resource Owner Password Flow

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Building Clients for OpenID Connect - OAuth 2-based Systems

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 It's complicated!
  3. 3 Objectives
  4. 4 The Big Picture
  5. 5 Client Credentials Flow
  6. 6 Use Token
  7. 7 Challenges for Clients
  8. 8 User-Centric Clients
  9. 9 Front-Channel: Authorization Code Flow Request
  10. 10 Front-Channel: Authorization Code Flow Response
  11. 11 Back-Channel: Retrieving Tokens
  12. 12 Issues with Code Flow
  13. 13 Hybrid Flow Request
  14. 14 Hybrid Flow Response
  15. 15 Issues with Hybrid Flow
  16. 16 Public Clients
  17. 17 Native/Mobile Applications
  18. 18 Anti Pattern: Resource Owner Password Flow
  19. 19 Using a browser for driving the authentication workflow
  20. 20 Proof-Key for Code Exchange (PKCE)
  21. 21 Client Libraries
  22. 22 Browser-based Clients (aka SPAS)
  23. 23 History (1)
  24. 24 Problems with Implicit Flow
  25. 25 Token Management for JS Apps
  26. 26 Java Script Client Library
  27. 27 The new kid on the block: SameSite Cookies
  28. 28 "BFF" Architecture

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.