What the Heck is OAuth and OIDC - Denver Developer Identity Workshop 2020

What the Heck is OAuth and OIDC - Denver Developer Identity Workshop 2020

OAuth is not an API or a service: it is an open standard for authorization and any developer can implement it. OAuth is a standard that applications can use to provide client applications with “secure delegated access”. OAuth works over HTTPS and authorizes devices, APIs, servers, and applications with access tokens rather than credentials, which we will go over in-depth below. OpenID Connect (OIDC) is built on top of the OAuth 2.0 protocol. It allows clients to get the identity of the user and to obtain their basic profile information.

This session covers how OAuth 2.0 and OIDC work, when to use them, and frameworks/services that simplify authentication.

Blog: https://developer.okta.com/blog/2017/06/21/what-the-heck-is-oauth

Online Tools:

- https://oauth.com/playground
- https://oauthdebugger.com
- https://oidcdebugger.com

Never Build Auth Again → https://developer.okta.com

72a2082c6a4dd79ad68befb3db911616?s=128

Matt Raible

January 21, 2020
Tweet