Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
클라이언트 권한 부여, 인증 시스템, OAuth-JWT
Search
Teddy
August 07, 2018
Programming
110
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
클라이언트 권한 부여, 인증 시스템, OAuth-JWT
Teddy
August 07, 2018
More Decks by Teddy
See All by Teddy
스타트업 개발자의 이야기 (국민대)
teddykims
1
110
개발자의 인공지능 뽀개기
teddykims
0
160
Git 기초
teddykims
0
87
2018.06, 싸이그래머 '심리상담과 IT'
teddykims
0
120
WebSocket, Socket.io
teddykims
1
63
2018.05, 소물, '소프트웨어와 미래 기술'
teddykims
0
85
소프트웨어와 미래 기술 (Software, Future Tech)
teddykims
0
190
리눅스 메모리 보호기법, 보안시스템의 이해
teddykims
0
240
무선 네트워크 해킹과 보안 (Network Hacking)
teddykims
0
230
Other Decks in Programming
See All in Programming
気圧・高度・GPSを記録&可視化するアプリ「Koudo」を作った話
hjmkth
1
340
霧の中の代数的エフェクト
funnyycat
1
230
AI 輔助遺留系統現代化的經驗分享
jame2408
1
1.2k
継続モナドとリアクティブプログラミング
yukikurage
3
360
Mujeres en SEO Summit 2026 - Greatest Disaster Hits en Web Performance
guaca
0
240
SLOをサービス品質の共通言語にするために 取り組んできたこと
wakana0222
0
350
ECSアプリログをFireLensでコスト削減しようとしたけど諦めた話 in Fargate×Node.js
akihisaikeda
2
4.2k
スマートグラスで並列バイブコーディング
hyshu
0
280
過去最大のMCPアップデート! 2026-07-28 RC版の謎に迫る
licux
6
450
技術記事、 専門家としてのプログラマ、 言語化
mizchi
14
7.3k
Claude Opus 4.6以後の受託開発エンジニアの変化(Claude Code開発ノウハウ大公開スペシャルbyクラスメソッド)
iidatakuma
1
230
Creating Composable Callables in Contemporary C++
rollbear
0
190
Featured
See All Featured
How to Align SEO within the Product Triangle To Get Buy-In & Support - #RIMC
aleyda
2
1.6k
Keith and Marios Guide to Fast Websites
keithpitt
413
23k
GraphQLとの向き合い方2022年版
quramy
50
15k
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
Designing for Performance
lara
611
70k
Making the Leap to Tech Lead
cromwellryan
135
10k
The World Runs on Bad Software
bkeepers
PRO
72
12k
For a Future-Friendly Web
brad_frost
183
10k
Skip the Path - Find Your Career Trail
mkilby
1
160
Visual Storytelling: How to be a Superhuman Communicator
reverentgeek
2
580
Typedesign – Prime Four
hannesfritz
42
3.1k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
162
16k
Transcript
ۄ ӂೠ ࠗৈ ੋૐ/ੋо दझమ !1
ӝઓ Api ࠁউ? !2
दр হҊ ә೧ࢲ ݄ ݅ٞ !3
‘ળ’ ӏѺਵ۽ ٜ݅! !4
‘ળ’ <Api-Token> !5
“ೲо ߉ ࢎਊ݅ API ܳ ࢎਊೡ ࣻ .” !6
“Api ߑޙ ٘” !7
OAuth !8
{ "access_token": "J1qK1c18UUGJFAzz9xnH56584l4", “refresh_token”: "SDAS2328asdVASd1238asdA", "expires_in": 3600, "scope": "*", "token_type":
"bearer" } !9
ੋૐ, ੋоܳ ਤೠ Standard Protocol !10
“যڌѱ ೞݶ ൝যઉ ח Application ٜ ੋૐ ҙܻܳ ঔীࢲ औѱ
ೡ Ѫੋо” !11
“ਬо ಕझ࠘, ਤఠ э ৡۄੋ ࢲ࠺झ ӝמਸ ܲ জীࢲب ࢎਊೡ
ࣻ ѱ Ք !” !12
OAuth 1.0 (RFC 5849, 2007) OAuth 1.0 A OAuth 2.0
(RFC 6749, 2012) !13
OAuth 1.x ਊয ߸҃ ࢲߡ ೡ ܻ࠙ ੋૐ ର хࣗച
ঐഐച ߑध ߸҃ (٣ణ ࢲݺ -> HTTPS) নೠ ੋૐ ߑध ઁҕ ۨਕ ഋక۽ .. OAuth 2.x !14
!15
{ "access_token": "J1qK1c18UUGJFAzz9xnH56584l4", “refresh_token”: "SDAS2328asdVASd1238asdA", "expires_in": 3600, "scope": "*", "token_type":
"bearer" } ݽٚ షҗ ࠁܳ ؘఠ߬झী ೞৈ ഛੋ ਃೣ. !16
1. ࠂೞ 2. ޖѩ !17
Third-Party App / ࢲ࠺झী Ӕೞח ৻ࠗ জ ੋૐ ߂ ӂೠ
ҙܻী !18
JWT (JSON WEB TOKEN) !19
{ "access_token": "J1qK1c18UUGJFAzz9xnH56584l4", "expires_in": 3600, "token_type": "bearer" } !20
Claim ӝ߈ ష दझమ !21
Claim = ࢎਊী ೠ ࣘࢿ !22
Claim = ࢎਊী ೠ ࣘࢿ !23 { ‘id’: ‘teddy’, ‘group’:
‘admin’} eyDigJhpZOKAmTog4oCYdGVkZHnigJ ksIOKAmGdyb3Vw4oCZOiDigJhhZG1p buKAmX0=
!24
!25
ష о ࠁܳ оҊ ӝী, షਸ оҊ ࢲ࠺झա API Ӕਸ
ઁযೡ ٸ ߹ب ੋૐ ࢲߡ স ਃೞ ঋਵݴ, ష ܳ ࢲߡীࢲ ҙܻೡ ਃо হӝ ٸޙী ҳഅ ࢚ਵ۽ ױࣽ೧. !26
!27 < ੌ߈ OAuth > < JWT >
)VNBSU$PNQBOZ ӣక