Completed
Anti Pattern: Resource Owner Password Flow
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Building Clients for OpenID Connect - OAuth 2-based Systems
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 It's complicated!
- 3 Objectives
- 4 The Big Picture
- 5 Client Credentials Flow
- 6 Use Token
- 7 Challenges for Clients
- 8 User-Centric Clients
- 9 Front-Channel: Authorization Code Flow Request
- 10 Front-Channel: Authorization Code Flow Response
- 11 Back-Channel: Retrieving Tokens
- 12 Issues with Code Flow
- 13 Hybrid Flow Request
- 14 Hybrid Flow Response
- 15 Issues with Hybrid Flow
- 16 Public Clients
- 17 Native/Mobile Applications
- 18 Anti Pattern: Resource Owner Password Flow
- 19 Using a browser for driving the authentication workflow
- 20 Proof-Key for Code Exchange (PKCE)
- 21 Client Libraries
- 22 Browser-based Clients (aka SPAS)
- 23 History (1)
- 24 Problems with Implicit Flow
- 25 Token Management for JS Apps
- 26 Java Script Client Library
- 27 The new kid on the block: SameSite Cookies
- 28 "BFF" Architecture