Upgrade to Pro — share decks privately, control downloads, hide ads and more …

JWT와 Flask, PyJWT로 인증 API 서버 만들기

Avatar for Junho Kim Junho Kim
August 25, 2018
Programming
0
2.4k

JWT와 Flask, PyJWT로 인증 API 서버 만들기

PyCon 2018 KR Tutorial slide

Avatar for Junho Kim

Junho Kim

August 25, 2018
Tweet

Other Decks in Programming

See All in Programming
20260127_試行錯誤の結晶を1冊に。著者が解説 先輩データサイエンティストからの指南書 / author's_commentary_ds_instructions_guide
Avatar for nash_efp nash_efp
1
990
AtCoder Conference 2025
Avatar for shindannin shindannin
0
1.1k
Apache Iceberg V3 and migration to V3
Avatar for Tomohiro Tanaka tomtanaka
0
170
15年続くIoTサービスの SREエンジニアが挑む 分散トレーシング導入
Avatar for Melonps melonps
2
230
Rust 製のコードエディタ “Zed” を使ってみた
Avatar for NearMeの技術発表資料です nearme_tech
PRO
0
210
HTTPプロトコル正しく理解していますか? 〜かわいい猫と共に学ぼう。ฅ^•ω•^ฅ ニャ〜
Avatar for ♛Heitor Hirose hekuchan
2
690
余白を設計しフロントエンド開発を 加速させる
Avatar for karacoro / からころ tsukuha
7
2.1k
登壇資料を作る時に意識していること #登壇資料_findy
Avatar for konifar konifar
4
1.6k
副作用をどこに置くか問題:オブジェクト指向で整理する設計判断ツリー
Avatar for Koya Masuda koxya
1
610
MUSUBIXとは
Avatar for Hisaho nahisaho
0
140
Lambda のコードストレージ容量に気をつけましょう
Avatar for tatsuki-yamada tattwan718
0
140
AI Agent の開発と運用を支える Durable Execution #AgentsInProd
Avatar for izumin5210 izumin5210
7
2.3k

Featured

See All Featured
The Success of Rails: Ensuring Growth for the Next 100 Years
Avatar for Eileen M. Uchitelle eileencodes
47
7.9k
My Coaching Mixtape
Avatar for mlcsv mlcsv
0
49
SEOcharity - Dark patterns in SEO and UX: How to avoid them and build a more ethical web
Avatar for Sara Fernández Carmona sarafernandez
0
120
How Fast Is Fast Enough? [PerfNow 2025]
Avatar for Tammy Everts tammyeverts
3
460
Effective software design: The role of men in debugging patriarchy in IT @ Voxxed Days AMS
Avatar for Kenny Baas-Schwegler baasie
0
230
The Language of Interfaces
Avatar for Des Traynor destraynor
162
26k
Money Talks: Using Revenue to Get Sh*t Done
Avatar for Nikki Halliwell nikkihalliwell
0
150
Pawsitive SEO: Lessons from My Dog (and Many Mistakes) on Thriving as a Consultant in the Age of AI
Avatar for David Carrasco davidcarrasco
0
67
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
A better future with KSS
Avatar for Kyle Neath kneath
240
18k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
370
20k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
340
58k

Transcript

  1. +85৬'MBTL 1Z+85۽ੋૐ"1*ࢲߡٜ݅ӝ 1:$0/,PSFBౚషܻ঴ ӣળഐ

  2. $POUFOUT  ਋ܻо੉Ѧ৵ೞחо   ੋૐੋооߺѱ࢓ಝࠁӝ  ੋૐߑधрױೞѱ࢓ಝࠁӝ  +85ۆ

      1ZUIPOীࢲ+85ܳࢎਊೞחੋૐ"1*ࢲߡٜ݅ӝ  "EWBODFE5PQJDT Ҋਵә઱ઁٜ

  3. য়טౚషܻ঴ীࢲ׮ܖחѪ׮ܖ૑ঋחѪ  য়טౚషܻ঴ীࢲח׮਺ղਊਸ࢓ಝࠅѪੑפ׮  рױೠੋૐੋоJOUSPEVDUJPO  'MBTL৬1Z+85ܳࢎਊೠੋૐ"1*ࢲߡ  য়טౚషܻ঴ীࢲח׮਺ղਊ਷ನೣೞҊ੓૑ঋणפ׮ 

    ੋૐੋоܳ৵೧ঠೞաਃ   3#"$  1ZUIPOEFDPSBUPSܳҳഅೞחߑߨ  'MBTLXFCBQQ੄EFTJHOQBUUFSO

  4. ਋ܻо੉Ѧ৵ೞחо  .PUJWBUJPO

  5. కୡীחইפҊ୐ਢࢲ࠺झח  ࢲ࠺झ೧ঠೞחݽٚӝמਸױੌࢲߡী޻য֍Ҋ .POPSJUIJD ࢲ࠺झܳઁ ҕೞחഋక৓णפ׮  ૓૞ 8FC 8"4

    %#  +41 5PNDBU 4FSWMFU .Z4RM   ױੌࢲߡীࣁ࣌੿ࠁী׮֍ਵݶҊ޹ೡѪহ঻ભ 6TFS 8FC 8"4 %# GET / index.html (or jsp) ਃ୒ (೙ਃೞݶ) DB query Querying Data DB ޚ਷ index ಕ੉૑ (৘ࢂ) index ಕ੉૑

  6. दр੉૑աݶࢲ  'SPOUFOEӝࣿبߊ੹ೞҊৈ۞о૑ࢲ࠺झҳࢿইఃఫ୊ب੸ਊغ঻णפ׮  t೐ۿ౟оঌইࢲ۪؊݂ೞҊߔূ٘ীਃ୒ೡԋߔূ٘חؘ੉ఠ݅઱۴u  tߔূ٘ח೐ۿ౟оਗೞחࢲ࠺झܳ਽׹ೞח"1*݅ઁҕೞݶغѷ׮u  ױఋ۽׮֗য়פ ࢚కਬ૑ܳೞ૑ঋח3&45ࢲ࠺झૐо

    पदр۪؊݂দ 6TFS 8FC "1*4FSWFS %# GET / Index ಕ੉૑ ઻৔ ௪݂௪݂௪݂.. Querying Data Index.html (৮ࢿغח ৘ࢂ) index ಕ੉૑ Resource list ઻৔ Resource list

  7. ӏݽоழ૑ݶࢲ  ഒ੗੉Ѣ׮ೞӝחޖܻפӬդ"ࢲ࠺झ݅ઁҕೡѱցח#ࢲ࠺झ݅ઁҕ ೞ੗  ࢲ࠺झױਤ۽ࢲߡࣁ࠙ച झாੌইਓ "1*4FSWFS "1*4FSWFS "1*4FSWFS

    %# पदр۪؊݂দ 6TFS 8FC GET / (৮ࢿغח ৘ࢂ) index ಕ੉૑ ࣻ ݆਷ request

  8. ੉3FRVFTUоפѪ੉ջ੄੉ग  4UBUFMFTTೠ3&45ীࢲTUBUFܳਬ૑೧ঠೞח࢚ടߊࢤ  ޛ֤؀ࠗ࠙੄3&45"1*חೞա੄SFRVFTU۽୊ܻܳ՘ղঠೞחѪ੉જणפ ׮ ղࠗDPOUSPMMFSীࢲٮ۽۽૒ਸجܻחೠ੉੓؊ۄب   Ӓؘ۠QSPUFDUFESFTPVSDFח

     ࠁഐ೧ঠೞח੗ਗFH ౠ੿ࢎਊ੗оࢎਊೠ SFTPVSDF੿ࠁоઉয়ӝ١  ߐڰ ੉۞۰ݶݒߣੋૐࢲߡীMPHJOೞҊਃ୒୊ܻೞҊ೧ঠೣ 6TFS 8FC "1*4FSWFS "1*4FSWFS GET / (۽Ӓੋ റ) resource A ઱ࣁਃ ਽ resource A resource B ઱ࣁਃ ־ҳջ ք Context ҕਬ X

  9. ੋૐੋооߺѱ࢓ಝࠁӝ

  10. ੋૐҗੋо੄ҳࢿ  ࢎਊ੗  ࢎਊ੗੄ੋૐ੿ࠁ *%18   ࢲ࠺झઁҕࢲߡ 

    पઁ਋ܻоઁҕೞҊर਷ࢲ࠺झ  ੋૐ߂ࢎਊ੉ೲо ੋо ػࢎਊ੗݅ࢎਊоמ  ੋૐੋоࢲߡ  ࢎਊ੗੄ੋૐਸ׸׼  ੋૐػࢎਊ੗੄ࢲ࠺झࢎਊӂೠҙܻ

  11. ੋૐ  ੋૐ "VUIFOUJDBUJPO   ؀࢚ࢲ࠺झ PSࢲߡ ীղо־ҳੋ૑ܳഛੋ߉חੌ 

    ࠁా ੋૐਸೞӝਤೠ੿ࠁܳCPEZ۽୎ࠗೞৈਃ୒  *%18 UPLFO ੋૐػTFTTJPO١ ੋૐࢲߡ 6TFS tղо#PC੉ਃu ੋૐ t਽ইפঠu ੋૐѾҗࢲ࠺झী١۾ػࢎਊ੗഑਷١۾غ૑ঋ਷ࢎਊ੗ ੋૐ%# tੴ#PC੐ u t֨u

  12. ੋо  ੋо "VUIPSJ[BUJPO   ղо੉੘স SFTPVSDF ਸࣻ೯ೡӂೠ "VUIPSJUZ

    о੓׮Ҋഛੋ߉חੌ  ੋоܳਃ୒ೞחࢎਊ੗חੋૐ੉غয੓যঠೣ  ࠁా਷ౠ੿೯ਤ BDUJPO ী؀ೞৈӂೠ੉੓׮ USVF হ׮ GBMTF ܳ߈ജ ੋоࢲߡ ࠁాੋૐࢲߡ৬э੉੓਺ ࢲ࠺झઁҕࢲߡ 6TFS tա#PCੋؘ  7.ೞա݅઱ۄu ࢲ࠺झਃ୒ t#PC੉7.ٜ݅ӂೠ੓যਃ u ੋоӂೠ୓௼ ঠॳ USVF ੗ৈӝ7. ࢲ࠺झѾҗ

  13. ੋૐߑधрױೞѱ࢓ಝࠁӝ

  14. 4FTTJPOӝ߈ੋૐੋоߑध  ੹ా੸ੋߑध  $MJFOU੄DPPLJFীੋૐੋо੿ࠁܳ֍૑ঋ਺ FH DPPLJF<rJT@MPHJOs>   TFTTJPO੄LFZчਸਬ૑ೞৈ

    ࢲߡীࢲਃ୒ೠTFTTJPOEJDUী۽Ӓੋਬޖ 5SVF'BMTF ܳঌইࠁחߑध  ݒ਋рױ  ׮઺&OUFSQSJTFࢲߡীࢲחࣁ࣌ਸҕਬೞחӝࣿ೙ਃ  4FTTJPODMVTUFSJOH
 PWFSIFBE  $PPLJFܳੜTBMU૕೧ࢲঐഐച
 WVMOFSBCJMJUZ from flask import Flask, request, session app = Flask(__name__) @app.route('/is_login,', methods=['POST']) def is_login(): return session['logged_in'] # True / False

  15. ੌ߈੸ੋ 5PLFOӝ߈ੋૐੋоߑध  4FTTJPOীҳগ߉૑ঋҊ SFRVFTUীੋૐੋоҙ۲੿ࠁܳೣԋࠁղ୊ܻ  ੌ߈੸ਵ۽IUUQSFRVFTU੄IFBEFSীUPLFO੿ࠁܳನೣೞৈ੹࣠  ۽ӒੋBDDFTT@UPLFOߊә 

    0"VUICFBSFS 0"VUI0QFO*% +85١ ੋૐࢲߡ 6TFS *%#PC 18#PC#PC#PC ష௾ߊәਃ୒ ష௾ߊә BDDFTT@UPLFOOBXLEKOBLKTDOLj ࢲ࠺झઁҕࢲߡ ࢲ࠺झਃ୒ IFBEFSBDDFTT@UPLFOOBXLj 63*(&5TFSWJDF

  16. ৵0"VUIউॄਃ  ਋ࢶѐ֛੟ӝ  0"VUIח3'$ী੿੄ػੋૐੋоQSPUPDPMTUBOEBSE 3'$   য়ט਋ܻоࢎਊೞҊ੗ೞח+85חੋૐীࢎਊೞחUPLFO੄GPSNBU 

    ৈ۞࠙੉ࢤпೞח0"VUI ,ࢎ੄۽Ӓੋ0"VUI (ࢎ੄۽Ӓੋ0"VUI 'ࢎ੄ 0"VUI חݽف0"VUIQSPUPDPMਸ݅઒दఃח*NQMFNFOUBUJPO  ਋ܻоঌҊ੓ח0"VUI0QFO*%ੑפ׮  0QFO*%ߑध਷৻ࠗܳ׮֗য়ӝٸޙীղࠗݎઁೠ١੄೐ۄ੉ࡁࢲ࠺झী חࠗ੸೤

  17. ѱ׮о  SFRVFTUоUPLFOਸٜҊ৳׮Ҋ೧ࢲޖ੘੿ࢲ࠺झܳઁҕೡࣻহणפ׮  UPLFOSBOEPN@HFOFSBUFE@TUSJOH  ੉UPLFO੉੿೧૓ӏ஗ਵ۽ߊәೠѪੋ૑ഛੋ %#.4 PUIFS"1* ੉೙ਃ

     UPLFO੉ࢲ࠺झप೯ӂೠо૑Ҋ੓ח૑بഛੋ೙ਃ

  18. +85ۆ

  19. +40/8FC5PLFO  ӝઓ੄੄޷হחBDDFTTUPLFOী੄޷ܳࠗৈ೧ࠁ੗  5PLFOഛੋױ҅ ੋо ܳੋૐࢲߡীޚ૑ঋҊ"1*ࢲߡࣻળীࢲ೧Ѿೞ੗  ޚ૑بٮ૑૑ب݈Ҋযڌѱࢤѹݡ঻חо 

     ѐ੄QBSU IFBEFS QBZMPBE WFSJGZTJHOBUVSF    EPU ਵ۽ҳ࠙ - header.payload.signature eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9. (ࢎਊೠ algorithm, token type: JWT) eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ. (ੋૐ ੿ࠁ SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c (Ѩૐਸ ਤೠ Signature)

  20. +85JOEFUBJM - Header  ೧׼UPLFO੉ࢎਊೞחBMHPSJUIN  5PLFO5ZQF - Payload 

    UPLFO੄ӂೠ੿ࠁ  ੋૐ੿ࠁ ࢎਊ੗੿ࠁ TDPQF ݅ܐӝр  - Signature  ਤ߸ઑ੼ѨਸਤೠTJHOBUVSF

  21. 1BZMPBEJOEFUBJM  Payloadীನೣغחղਊٜ JO3'$ SFTFSWFEGJFME  iss (issuer)UPLFOߊ೯੗  sub

    (subject)ࢎਊ੗৬ࢎਊ੗SFTPVSDF63*ઁݾ  aud (audience)ߊә؀࢚  exp (expiration date)ష௾੉݅ܐغחदр  nbf (not before)ష௾੄ഝࢿചदр ੉ч੉റࠗఠష௾੉ഝࢿച   iat (issued at)ష௾ߊәदр  jti (JWT ID)5PLFOҳ߹ਸਤೠVOJRVF*%
 
 scopeUPLFOࢎਊ੗੄HSBOUػӂೠ QSJWBUFGJFME ݽٚ Payload Fieldܳ ࢎਊೡ ೙ਃח হ׮!

  22. +85ܳࢎਊೠੋૐ੺ର Client Server (ੋૐ + API) 1045 MPHJOFOEQPJOU XJUI*% 18

    "1*4FSWFS SFEJSFDU  ੋૐࢲߡ  ੋૐറ+85ష௾ߊә +85ష௾ਸ#SPXTFSীੜ੷੢ ௢ఃPSTFTTJPO 4FSWJDFSFRVFTUXJUI+85UPLFOJO"VUIPSJ[BUJPO)FBEFS +85੄TJHOBUVSFѨૐ ೙ਃೠ҃਋ +85ীࢲ "VUIPSJUZѨૐറࢲ࠺झઁҕ 1SPUFDUFE3FTPVSDF4FSWJDFSFTQPOTF

  23. 8IZ+85  ੹׳߉਷UPLFOী؀ೞৈੋૐࢲߡী೧׼UPLFO੄WBMJEJUZৈࠗܳޛযࠅ೙ਃ оহ਺  ޖ۰JOEVTUSZTUBOEBSE 3'$   5PLFOӝ߈ੋૐߑधীࢲUPLFO੄GPSNBUਵ۽ੋ੿߉਺

    ޙઁب੓૑݅ٯ ൤؀উ੉   ইפ੉ѢUPLFOఎஂظࢲڙэ਷UPLFOਵ۽SFRVFTUզܻݶޙઁغחѪইצ оਃ   э਷ష௾ী؀ೞৈэ਷ࢎۈੋध਷э਷*%18۽э਷ࢎۈੋधҗэ਷ޙ ઁ +85੄ࠁউࢿҗח׮ܲোѾా۽੄ޙઁ

  24. 1ZUIPOীࢲ+85ܳࢎਊೞחੋૐ"1*ࢲߡٜ݅ӝ

  25. 3FRVJSFEQBDLBHFT  য়טࢎਊೡౚషܻ঴ীࢲࢎਊೡಁః૑ݾ۾  1Z+85  'MBTL  3FRVFTUT 

    QJQJOTUBMM1Z+85'MBTLSFRVFTUT

  26. BVUI@TFSWFSQZ from flask import Flask, jsonify import jwt import datetime

    app = Flask(__name__) secret_key = ‘secret_key' # This should be handled by configuration DB or third-party tool @app.route('/') def index(): return "Hello auth server” # Test for server is working @app.route("/get_token") def get_token(): # db ੘স੉ ೙ਃ೤פ׮. (ౚషܻ঴ীࢲח ࢤۚ೤פ׮.) issuer = 'pycon_tutorial' subject = ‘localhost:5000/v1' date_time_obj = datetime.datetime exp_time = date_time_obj.timestamp(date_time_obj.utcnow() + datetime.timedelta(hours=24)) scope = ['v1', 'v2'] payload = { 'sub': subject, 'iss': issuer, 'exp': int(exp_time), 'scope': scope } token = jwt.encode(payload, secret_key, algorithm='HS256') return jsonify({ 'msg': 'token is generated', 'access_token': str(token) }), 201

  27. BVUI@TFSWFSQZ ҅ࣘ @app.route("/admin_login") def admin_login(): issuer = ‘pycon_tutorial' # scope੉

    ׮ܲ login਷ যڌѱ ୊ܻೡө? subject = 'localhost:5000/v1' date_time_obj = datetime.datetime exp_time = date_time_obj.timestamp(date_time_obj.utcnow() + datetime.timedelta(hours=24)) scope = ['v1', 'v2', 'v3'] payload = { 'sub': subject, 'iss': issuer, 'exp': int(exp_time), 'scope': scope } token = jwt.encode(payload, secret_key, algorithm='HS256') return jsonify({ 'msg': 'token is generated', 'access_token': str(token) }), 201 app.run(port=5001)

  28. TFSWJDF@TFSWFSQZ from flask import Flask, jsonify, abort, request import jwt

    import requests from functools import wraps app = Flask(__name__) secret_key = 'secret_key' # third-party ో۽ ҙܻغযঠ ೤פ׮. def jwt_token_required(f): # flask-jwt-extendedীب ઁҕೞח Ѫ୊ۢ ؘ௏ۨ੉ఠ ୶оೞӝ / customizing оמೞب۾ self ҳഅ @wraps(f) def decorated_function(*args, **kwargs): # header ର੓ח૑ # token੉ ੿࢚੸ੋѤ૑ if not 'Authorization' in request.headers: return jsonify({ 'msg': 'token is not given' }), 400 token = request.headers['Authorization'] try: decoded_token = jwt.decode(token, secret_key, algorithms=['HS256']) except: return jsonify({ 'msg': 'Invalid token given' }), 400 kwargs['decoded_token'] = decoded_token return f(*args, **kwargs) return decorated_function @app.route('/') def index(): return "Hello Pycon Server"

  29. TFSWJDF@TFSWFSQZ ҅ࣘ @app.route('/login') def login(): r = requests.get(“http://127.0.0.1:5001/get_token") # login਷

    auth-serverী ష௾ਸ ߊә߉ח ೯ਤ rsp_json = r.json() token = rsp_json['access_token'] return jsonify({ 'access_token': token, 'msg': "Successfully login" }), 200 @app.route("/protected_service") @jwt_token_required def protected_service(**kwargs): return jsonify({ 'msg': 'hello protected user' }), 200 @app.route("/v3") @jwt_token_required def other_scope_service(**kwargs): token = kwargs['decoded_token'] if 'v3' in token[‘scope']: # ୶о۽ ӂೠ ഛੋ ೞח ੘স / decoratorܳ ࣻ੿ೞৈ ੉ ࠗ࠙ਸ ઁѢೡ ࣻب ੓णפ׮. # service logic return jsonify({ 'msg': 'welcome v3 user' }), 200 else: return jsonify({ 'msg': 'You are not authorized' }), 401 app.run()

  30. "EWBODFE5PQJDT

  31. 5PLFOਸউ੹ೞѱࢎਊೞחߑߨ  5PLFO਷߈٘द)UUQ0OMZDPPLJFী੷੢೤פ׮  944ҕѺߑ૑  ௢ఃܳࢎਊೞৈ+85ܳ੷੢ೠ׮ݶ $43'ী؀ೠߑযܳ೧ঠ೤פ׮  ਋ܻоݽܰחࢎ੉ী׮ܲبݫੋীࢲਃ୒੉ৢࣻ੓਺

     4FDSFULFZחੋૐ"1*ࢲߡ ࢲ࠺झ"1*ࢲߡ݅о૑Ҋ੓যঠ೤פ׮  ݒߣష௾ਸࠁউః۽Ѩૐ೧ࢲৢ߄ܲఃੋ૑Ѩૐ೧ঠೣ  ъ۱ೠఃߑध DMJFOUীח֢୹غ૑ঋইঠೣ  ޹хೠؘ੉ఠחQBZMPBEী֍૑ঋইঠ೤פ׮  3FQMBZҕѺਸߑ૑ೞӝਤ೧ࢲחUPLFO੄ਬബदрਸૣѱ೤פ׮  3VMFPGUIVNCחઓ੤ೞ૑ঋ਺ઁҕೞחࢲ࠺झীٮۄࢲ

  32. 3FGSFTI5PLFO  ߊәೠUPLFOਸୌ֙݅֙ࢎਊೡࣻחহणפ׮  ੌ੿ӝр੉૑դUPLFO਷੤ߊәਸ೧ঠ೤פ׮  ࢲ࠺झܳਃ୒ೞ׮оࢎਊೞ؍UPLFO੄ӝр੉݅ܐػ҃਋ SFGSFTI@UPLFOਸ ٜҊష௾੤ߊәਃ୒ਸ೧ঠ೤פ׮ 

    5PLFOࠁҙߑߨ਷ࢎਊ੗੄ഋకীٮۄࢲ  access_token਷TFSWJDF"1*ࢲߡࣻળীࢲ TFDSFULFZEFDPEFܳా೧ ࢲ ୊ܻоמೞ૑݅ SFGSFTI@UPLFO਷߈٘दBVUIࢲߡܳా೧ࢲೠߣ؊Ѩૐ ੉೙ਃ೤פ׮  ࢎਊоמೠUPLFO੄੤ߊә੉޲۽ ECBDDFTT೙ਃ

  33. TFDSFU@LFZܳ߸҃ೞҊरযਃ  ࢎप ੉઱ઁח+85৬ҙ۲੉ݢ઱ઁ  ࢜۽਍TFDSFU@LFZߊә਷+85৬ҙ۲੉হח଻օਸా೧ࢲߊәೞחѪ੉ݏ णפ׮  о۸UIJSEQBSUZܳՙҊٜযоঠೠ׮؍о 

    FH )5514 PS44-  DPOGJH@TFSWFSীࢲ੄QVCTVCҳઑ۽੸ਊоמ

  34. $MBJN֢୹JTTVF  +85חױࣽ൤IFBEFS DMBJN TJHOBUVSFܳCBTFFODPEJOHೠTUSJOH  TJHOBUVSFחTFDSFULFZоನೣػTBMUFETUSJOH੉ۄఎஂغযبղਊ੉߸ઑ غݶޙઁ9  DMBJN਷ࢎਊ੗੄ੋૐ੿ࠁоӒ؀۽֢୹ؼ਋۰о੓਺

     VTFS੄FNBJM١ӝఋࢎਊ੗੄ѐੋ੿ࠁо֢୹ؼ਋۰  оמೠ+85ীࠛ೙ਃೠ੿ࠁܳ੸ѱ׸ইঠ೤פ׮  FNBJMэ਷ ߈੿ب QVCMJDೠ੿ࠁח֢୹੉غחࣽр਋ܻTFSWJDFחইפ؊ ۄب׮ܲ੄޷۽ޙઁоࢤӡࣻب੓਺  ژח׮ܲMBZFS੄ب਑ )5514 DMBJNਸ୶оঐഐചب޹хೠࢲ࠺झীࢲח Ҋ۰оמ

  35. хࢎ೤פ׮

  36. "QQFOEJY"0"VUI'MPX From http://www.sauru.so/blog/basic-of-oauth2-and-jwt/

  37. "QQFOEJY#0"VUI'MPX From http://earlybird.kr/1584