Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Open edX Con 2017 — OAuth Lighting Talk
Search
Miguel Amigot
May 25, 2017
Education
1
140
Open edX Con 2017 — OAuth Lighting Talk
Using Open edX's OAuth-based authentication system to extend the platform
Miguel Amigot
May 25, 2017
Tweet
Share
Other Decks in Education
See All in Education
Introduction - Lecture 1 - Advanced Topics in Big Data (4023256FNR)
signer
PRO
2
2.2k
AIで日本はどう進化する? 〜キミが生きる2035年の地図〜
behomazn
0
120
1216
cbtlibrary
0
140
Cifrado asimétrico
irocho
0
380
TypeScript初心者向け完全ガイド
mickey_kubo
1
120
LotusScript でエージェント情報を出力してみた
harunakano
0
120
AIは若者の成長機会を奪うのか?
frievea
0
180
ロータリー国際大会について~国際大会に参加しよう~:古賀 真由美 会員(2720 Japan O.K. ロータリーEクラブ・(有)誠邦産業 取締役)
2720japanoke
1
770
IKIGAI World Fes:program
tsutsumi
1
2.6k
焦りと不安を、技術力に変える方法 - 新卒iOSエンジニアの失敗談と成長のフレームワーク
hypebeans
1
650
IHLヘルスケアリーダーシップ研究会17期説明資料
ihlhealthcareleadership
0
900
1202
cbtlibrary
0
210
Featured
See All Featured
DBのスキルで生き残る技術 - AI時代におけるテーブル設計の勘所
soudai
PRO
62
50k
Test your architecture with Archunit
thirion
1
2.2k
Git: the NoSQL Database
bkeepers
PRO
432
66k
The SEO identity crisis: Don't let AI make you average
varn
0
290
Darren the Foodie - Storyboard
khoart
PRO
2
2.4k
The Illustrated Guide to Node.js - THAT Conference 2024
reverentgeek
0
260
Stop Working from a Prison Cell
hatefulcrawdad
273
21k
Designing for Timeless Needs
cassininazir
0
130
Building Adaptive Systems
keathley
44
2.9k
We Are The Robots
honzajavorek
0
160
Building a A Zero-Code AI SEO Workflow
portentint
PRO
0
320
A Soul's Torment
seathinner
5
2.3k
Transcript
OPEN EDX & OAUTH2 Scalable Extensions to the Platform Miguel
Amigot CTO
WHY THIS IS INTERESTING
OPEN EDX IS INCREASINGLY MOVING TO MICROSERVICES
CAN DEPLOY SEPARATE WEBSITES AND SERVICES
USE CASES Insights and Ecommerce (already) 1 Customized admin dashboards
2 3 Instructor news feed?
INSIGHTS
HOW DO WE HANDLE USER ACCOUNTS?
SINGLE SIGN-ON Use edx-platform’s data 1 Referenced — but keep
sessions 2 3 Single sign-on & single sign-out
HOW DOES THIS WORK?
OAUTH (MOSTLY) edx/edx-platform Provider Clients edx-analytics-dashboard ecommerce credentials
OAUTH (SIMPLIFIED) Register the client on edx/edx-platform (get an app
client ID and a client secret) 1 2 Exchange these credentials on the client for access tokens and use these to get resources
/admin/oauth2/client/add/
BUT OAUTH DOESN’T SAY WHO THE USER IS…
…SINCE THE ACCESS TOKEN IS OPAQUE TO THE CLIENT
oauth.net/articles/authentication
SUPPLEMENT OAUTH WITH OPENID CONNECT
OPENID CONNECT OAuth client IDs, client secrets and access tokens
+ A user identifier attached to each request
EDX HAS AN OPENID CONNECT AUTH BACKEND
edx/auth-backends
CALLING IT FROM EACH CLIENT
pip install edx-auth-backends
settings/base.py
Login and Logout URLs
MAIN POINTS EdX is moving to microservices… and auth is
obviously ready 1 Built on popular standards: OAuth and OpenID Connect* 2 3 Easy to build separately scalable services with user auth
QUESTIONS?
[email protected]
@miguelamigot
signer
behomazn
cbtlibrary
irocho
mickey_kubo
harunakano
frievea
2720japanoke
tsutsumi
hypebeans
ihlhealthcareleadership
soudai
thirion
bkeepers
varn
khoart
reverentgeek
hatefulcrawdad
cassininazir
keathley
honzajavorek
portentint
seathinner
![QUESTIONS? [email protected] @miguelamigot](https://files.speakerdeck.com/presentations/65da21e9f29d4d108265a65f949658fa/slide_24.jpg){kind=link}