Overview
Syllabus
Intro
Traditional application
Modern application
Identity vs Authn vs Authz
Claims-based auth
Terminology
Tokens (vs Passwords)
Token formats
SAML 2.0 Tokens
JSON Web Tokens (JWTS)
Auth protocols
Basic Flow
WS Federation
Fundamentals
Standard scopes
OpenID Connect JWT payload
Endpoints
Authorization Endpoint
Token Endpoint An example
Interactive flows
Authorization code flow (3-legged OAuth)
Token Endpoint Authorization code
Implicit flow (2-legged OAuth)
Client credentials flow (server-to-server calls)
Resource-owner credentials flow (Password flow)
Implementation
Taught by
NDC Conferences