Slide 43
Slide 43 text
43
@leastprivilege
OAuth2
Applica9on
Architecture
ApplicaTon
AuthorizaTon
Server
Scopes:
read,
write,
delete,
search…
client_id=client1,
scope=search
read
access
token
access
token
{
"iss":
"myAuthzServer",
"aud":
"applicaTon",
"exp":
192990121,
"sub":
"Bob",
"client_id":
"client1",
"scope":
[
"search",
"read"
]
}
Bob