Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Open edX Con 2017 — OAuth Lighting Talk
Search
Miguel Amigot
May 25, 2017
Education
1
130
Open edX Con 2017 — OAuth Lighting Talk
Using Open edX's OAuth-based authentication system to extend the platform
Miguel Amigot
May 25, 2017
Tweet
Share
Other Decks in Education
See All in Education
データで見る赤ちゃんの成長
syuchimu
0
260
小学校女性教員向け プログラミング教育研修プログラム「SteP」の実践と課題
codeforeveryone
0
110
2026 g0v 零時政府年會啟動提案 / g0v Summit 2026 Kickstart
rschiang
0
260
フィードバックの伝え方、受け身のココロ / The Way of Feedback: Words and the Receiving Heart
spring_aki
1
140
生成AIとの上手な付き合い方【公開版】/ How to Get Along Well with Generative AI (Public Version)
handlename
0
620
サンキッズゾーン 春日井駅前 ご案内
sanyohomes
0
910
Tutorial: Foundations of Blind Source Separation and Its Advances in Spatial Self-Supervised Learning
yoshipon
1
150
EVOLUCIÓN DE LAS NEUROCIENCIAS EN LOS CONTEXTOS ORGANIZACIONALES
jvpcubias
0
150
【Discordアカウント作成ガイド】
ainischool
0
110
Course Review - Lecture 12 - Next Generation User Interfaces (4018166FNR)
signer
PRO
0
1.8k
日本の情報系社会人院生のリアル -JAIST 修士編-
yurikomium
1
120
生成AI活用セミナー/GAI-workshop
gnutar
0
110
Featured
See All Featured
[RailsConf 2023] Rails as a piece of cake
palkan
57
5.8k
Embracing the Ebb and Flow
colly
87
4.8k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
A better future with KSS
kneath
239
17k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
248
1.3M
Mobile First: as difficult as doing things right
swwweet
224
9.9k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
8
920
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Bash Introduction
62gerente
615
210k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
33
2.4k
Fantastic passwords and where to find them - at NoRuKo
philnash
52
3.4k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
358
30k
Transcript
OPEN EDX & OAUTH2 Scalable Extensions to the Platform Miguel
Amigot CTO
WHY THIS IS INTERESTING
OPEN EDX IS INCREASINGLY MOVING TO MICROSERVICES
CAN DEPLOY SEPARATE WEBSITES AND SERVICES
USE CASES Insights and Ecommerce (already) 1 Customized admin dashboards
2 3 Instructor news feed?
INSIGHTS
HOW DO WE HANDLE USER ACCOUNTS?
SINGLE SIGN-ON Use edx-platform’s data 1 Referenced — but keep
sessions 2 3 Single sign-on & single sign-out
HOW DOES THIS WORK?
OAUTH (MOSTLY) edx/edx-platform Provider Clients edx-analytics-dashboard ecommerce credentials
OAUTH (SIMPLIFIED) Register the client on edx/edx-platform (get an app
client ID and a client secret) 1 2 Exchange these credentials on the client for access tokens and use these to get resources
/admin/oauth2/client/add/
BUT OAUTH DOESN’T SAY WHO THE USER IS…
…SINCE THE ACCESS TOKEN IS OPAQUE TO THE CLIENT
oauth.net/articles/authentication
SUPPLEMENT OAUTH WITH OPENID CONNECT
OPENID CONNECT OAuth client IDs, client secrets and access tokens
+ A user identifier attached to each request
EDX HAS AN OPENID CONNECT AUTH BACKEND
edx/auth-backends
CALLING IT FROM EACH CLIENT
pip install edx-auth-backends
settings/base.py
Login and Logout URLs
MAIN POINTS EdX is moving to microservices… and auth is
obviously ready 1 Built on popular standards: OAuth and OpenID Connect* 2 3 Easy to build separately scalable services with user auth
QUESTIONS?
[email protected]
@miguelamigot
syuchimu
codeforeveryone
rschiang
spring_aki
handlename
sanyohomes
yoshipon
jvpcubias
ainischool
signer
yurikomium
gnutar
palkan
colly
keavy
kneath
sugarenia
swwweet
irinanazarova
malarkey
62gerente
jcasabona
philnash
bermonpainter
![QUESTIONS? [email protected] @miguelamigot](https://files.speakerdeck.com/presentations/65da21e9f29d4d108265a65f949658fa/slide_24.jpg){kind=link}