Breaking Down the OAuth Flow

Breaking Down the OAuth Flow

Are you lost when reading about OAuth implicit grants vs code grants? Are you always struggling to understand the difference between Amazon Cognito User Pools and Amazon Cognito Federated Identities ? And how your corporate Active Directory fits into that picture ? During this chalk talk, I will demystify Identity federation and whiteboard the main flows allowing you to understand how to leverage these services to bring identity federation to your web or mobile applications.

Transcript

  1. None
  2. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Breaking down the OAuth flow Sébastien Stormacq M O B 3 1 5 - R Developer Advocate Amazon Web Services, EMEA
  3. Who am I?

  4. Who am I ?

  5. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.
  6. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.
  7. Resource Owner Resource Owner Client (browser, mobile app, app server)

    Application Server Authorization & Identity Server Resource Server (API) Client (browser, mobile app, app server) Application Server Authorization & Identity Server Resource Server (API)
  8. Resource Owner Resource Owner Client (browser, mobile app, app server)

    Authorization & Identity Server Resource Server (API) Client (browser, mobile app, app server) Authorization & Identity Server Resource Server (API) Application Server Application Server
  9. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.
  10. Thank you! © 2019, Amazon Web Services, Inc. or its

    affiliates. All rights reserved. Sébastien Stormacq @sebsto
  11. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.