Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Open edX Con 2017 — OAuth Lighting Talk
Search
Miguel Amigot
May 25, 2017
Education
1
140
Open edX Con 2017 — OAuth Lighting Talk
Using Open edX's OAuth-based authentication system to extend the platform
Miguel Amigot
May 25, 2017
Tweet
Share
Other Decks in Education
See All in Education
The Next Big Step Toward Nuclear Disarmament
hide2kano
0
220
The World That Saved Me: A Story of Community and Gratitude
_hashimo2
3
510
Introduction - Lecture 1 - Information Visualisation (4019538FNR)
signer
PRO
0
5.1k
160人の中高生にAI・技術体験の講師をしてみた話
shuntatoda
1
300
多様なメンター、多様な基準
yasulab
PRO
5
19k
Use Cases and Course Review - Lecture 8 - Human-Computer Interaction (1023841ANR)
signer
PRO
0
1.4k
XML and Related Technologies - Lecture 7 - Web Technologies (1019888BNR)
signer
PRO
0
3.2k
滑空スポーツ講習会2025(実技講習)EMFT講習 実施要領/JSA EMFT 2025 procedure
jsaseminar
0
110
Node-REDで広がるプログラミング教育の可能性
ueponx
1
270
✅ レポート採点基準 / How Your Reports Are Assessed
yasslab
PRO
0
280
JavaScript - Lecture 6 - Web Technologies (1019888BNR)
signer
PRO
0
3.1k
LotusScript でエージェント情報を出力してみた
harunakano
0
120
Featured
See All Featured
How to build a perfect <img>
jonoalderson
1
4.9k
Efficient Content Optimization with Google Search Console & Apps Script
katarinadahlin
PRO
1
330
The SEO identity crisis: Don't let AI make you average
varn
0
290
Faster Mobile Websites
deanohume
310
31k
For a Future-Friendly Web
brad_frost
182
10k
Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025
aleyda
1
1.9k
So, you think you're a good person
axbom
PRO
2
1.9k
Applied NLP in the Age of Generative AI
inesmontani
PRO
4
2k
Building Better People: How to give real-time feedback that sticks.
wjessup
370
20k
Crafting Experiences
bethany
1
49
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
25
1.7k
Designing for humans not robots
tammielis
254
26k
Transcript
OPEN EDX & OAUTH2 Scalable Extensions to the Platform Miguel
Amigot CTO
WHY THIS IS INTERESTING
OPEN EDX IS INCREASINGLY MOVING TO MICROSERVICES
CAN DEPLOY SEPARATE WEBSITES AND SERVICES
USE CASES Insights and Ecommerce (already) 1 Customized admin dashboards
2 3 Instructor news feed?
INSIGHTS
HOW DO WE HANDLE USER ACCOUNTS?
SINGLE SIGN-ON Use edx-platform’s data 1 Referenced — but keep
sessions 2 3 Single sign-on & single sign-out
HOW DOES THIS WORK?
OAUTH (MOSTLY) edx/edx-platform Provider Clients edx-analytics-dashboard ecommerce credentials
OAUTH (SIMPLIFIED) Register the client on edx/edx-platform (get an app
client ID and a client secret) 1 2 Exchange these credentials on the client for access tokens and use these to get resources
/admin/oauth2/client/add/
BUT OAUTH DOESN’T SAY WHO THE USER IS…
…SINCE THE ACCESS TOKEN IS OPAQUE TO THE CLIENT
oauth.net/articles/authentication
SUPPLEMENT OAUTH WITH OPENID CONNECT
OPENID CONNECT OAuth client IDs, client secrets and access tokens
+ A user identifier attached to each request
EDX HAS AN OPENID CONNECT AUTH BACKEND
edx/auth-backends
CALLING IT FROM EACH CLIENT
pip install edx-auth-backends
settings/base.py
Login and Logout URLs
MAIN POINTS EdX is moving to microservices… and auth is
obviously ready 1 Built on popular standards: OAuth and OpenID Connect* 2 3 Easy to build separately scalable services with user auth
QUESTIONS?
[email protected]
@miguelamigot
hide2kano
_hashimo2
signer
.png){kind=avatar}
shuntatoda
yasulab
jsaseminar
ueponx
yasslab
harunakano
jonoalderson
katarinadahlin
varn
deanohume
brad_frost
aleyda
axbom
inesmontani
wjessup
bethany
honnibal
tammielis
![QUESTIONS? [email protected] @miguelamigot](https://files.speakerdeck.com/presentations/65da21e9f29d4d108265a65f949658fa/slide_24.jpg){kind=link}