Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Let’s talk about OAuth2 and PKCE in Go

line_developers_tw2
June 01, 2021
Technology
1
15k

Let’s talk about OAuth2 and PKCE in Go

Golang TW 57 webinar by Evan Lin https://www.meetup.com/golang-taipei-meetup/events/278400349/.

Related blog post https://engineering.linecorp.com/zh-hant/blog/pkce-line-login/

line_developers_tw2

June 01, 2021
Tweet

More Decks by line_developers_tw2

See All by line_developers_tw2
Introducing LINE ecosystem
line_developers_tw2
0
1.8k
LINE Bot APIs introduction and demonstration
line_developers_tw2
0
1.6k
前端大 hook 時代, 從 Mixins 到 Composition API
line_developers_tw2
0
110
LINE_BOT_Developer_Guideline_Chinese.pdf
line_developers_tw2
0
100k
20210522 LINE Data Dev team introduction
line_developers_tw2
0
2.5k
20210522 LINE TODAY team introduction
line_developers_tw2
0
2.1k
20210522 LINE Client team introduction
line_developers_tw2
0
2.6k
20210319 - LINE CLOVA AI team introduction
line_developers_tw2
0
1.7k
20210522 Internal Developer Relations
line_developers_tw2
0
2.7k

Other Decks in Technology

See All in Technology
Save the state
keithyokoma
0
230
Oracle Database Technology Night #67 Oracle Database High Availability concept
oracle4engineer
PRO
0
580
CyberAgent AI事業本部MLOps研修基礎編
hosimesi11
3
470
「Go Style Guide」から学んだ可読性の高いコードの書き方
andpad
5
2.4k
モノリスからの脱却に向けた 物流システムリプレイスの概要紹介 / Towards Decentralized Logistics System Replacement from Monolithic Structure
yumayabe
0
270
組織一丸となってカスタマーサクセスを実現するための取り組みと悩み
zakiyama
0
130
MySQL Architectures - Design the Right Solution for Your Needs
lefred
1
110
Google I:O 2023 Androidの自動テストアップデートまとめ / Google I:O 2023 Android Testing Update Recap
tkmnzm
0
190
エンジニアからの情報発信の意義に関して、さまざまな方々が私に教えてくださったことのまとめ
m3hiro3
0
120
Impressions of the Ruby Kaigi
suzukahr
1
5k
よくわかるフォルシアのエンジニア 旅行プラットフォーム部編
forcia_dev_pr
0
120
とあるQAエンジニアが、マイクロサービスの開発チームと、出会ったーー / Scrum Fest Niigata 2023
yoyakoba
0
140

Featured

See All Featured
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
reverentgeek
176
9.4k
The World Runs on Bad Software
bkeepers
PRO
59
5.9k
Scaling GitHub
holman
453
140k
A Philosophy of Restraint
colly
195
15k
Gamification - CAS2011
davidbonilla
75
4.2k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
46
15k
Fantastic passwords and where to find them - at NoRuKo
philnash
33
2k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
39
3.7k
A Modern Web Designer's Workflow
chriscoyier
689
190k
How GitHub Uses GitHub to Build GitHub
holman
466
280k
Web Components: a chance to create the future
zenorocha
304
41k

Transcript

  1. Let’s talk about OAuth2 and PKCE in Go
    LINE Developer Relations
    Evan Lin
    2021.06

    View Slide

  2. Evan Lin
    • LINE Tech Event Organizer
    • Community Organizer
    • GDE, Love Golang
    LINE Technology Evangelist

    View Slide

  3. Agenda
    •OAuth2 and OpenID
    •How to implement LINE Login in Go
    •Issue in OAuth2
    •Introducing PKCE
    •How to implement PKCE in Go (LINE Login)
    •Summary

    View Slide

  4. Building a online services / store

    View Slide

  5. OpenID Login Registration
    https://developers.line.biz/en/docs/line-login/web/integrate-line-login/

    View Slide

  6. LINE Login
    Process
    • SDK https://github.com/kkdai/line-login-sdk-go
    • Web starter https://github.com/kkdai/line-login-go
    • Demo site: https://login-tester-evan.herokuapp.com/

    View Slide

  7. LINE Login Process

    View Slide

  8. Access LINE Login AUTH URL
    • SDK https://github.com/kkdai/line-login-sdk-go
    • Web starter https://github.com/kkdai/line-login-go
    • Demo site: https://login-tester-evan.herokuapp.com/

    View Slide

  9. Profile: Access token to call Get Profile API

    View Slide

  10. OpenID: Get JWT User Info directly

    View Slide

  11. Decode JWT
    OpenID data
    • SDK https://github.com/kkdai/line-login-sdk-go

    View Slide

  12. Issue in OAuth2
    https://datatracker.ietf.org/doc/html/rfc7636

    View Slide

  13. PKCE (Proof Key for
    Code Exchange)
    • Google RFC since 2015 (RFC 7636)
    • Also in Google API
    https://developers.google.com/identity/p
    rotocols/oauth2/native-app#exchange-
    authorization-code

    View Slide

  14. PKCE (Proof Key for
    Code Exchange)

    View Slide

  15. PKCE (Proof Key for
    Code Exchange)

    View Slide

  16. LINE Login PKCE
    Process
    • SDK https://github.com/kkdai/line-login-sdk-go
    • Web starter https://github.com/kkdai/line-login-pkce-go
    • Demo site: https://line-login-pkce.herokuapp.com/

    View Slide

  17. All GitHub Resources
    • LINE Login SDK https://github.com/kkdai/line-login-sdk-go
    • LINE Login Web starter
    • https://github.com/kkdai/line-login-go
    • Demo site: https://login-tester-evan.herokuapp.com/
    • LINE Login with PKCE Web Starter
    • https://github.com/kkdai/line-login-pkce-go
    • Demo site: https://line-login-pkce.herokuapp.com/

    View Slide

  18. Summary
    •Introducing OAuth2 work flow
    •Introducing PKCE and how it works
    •Introducing LINE Login related packages in Go (mine)
    •Feel free to ”star” or “pull request”.

    View Slide

  19. View Slide