Upgrade to Pro — share decks privately, control downloads, hide ads and more …

15-437 OAuth 2.0

ThierrySans
November 11, 2014
Education
1
150

15-437 OAuth 2.0

ThierrySans

November 11, 2014
Tweet

More Decks by ThierrySans

See All by ThierrySans
CSCD27 Social Engineering
thierrysans
0
240
CSCD27 Web Security
thierrysans
0
410
CSCD27 Malicious Software
thierrysans
0
380
CSCD27 Protection
thierrysans
0
470
CSCD27 System Insecurity
thierrysans
0
400
CSCD27 Human Authentication
thierrysans
0
340
CSCD27 Network security
thierrysans
0
540
CSCD27 Network (in)security
thierrysans
0
550
CSCD27 Cryptography Protocols
thierrysans
0
690

Other Decks in Education

See All in Education
XML and Related Technologies - Lecture 7 - Web Technologies (1019888BNR)
signer
PRO
0
2.5k
Kaggle 班ができるまで
abap34
1
190
1106
cbtlibrary
0
420
Canva
matleenalaakso
0
430
Ch2_-_Partie_2.pdf
bernhardsvt
0
110
"数学" をプログラミングしてもらう際に気をつけていること / Key Considerations When Programming "Mathematics"
guvalif
0
570
勉強したらどうなるの?
mineo_matsuya
10
6.5k
Comment aborder et contribuer sereinement à un projet open source ? (Masterclass Université Toulouse III)
pylapp
0
3.2k
Nodiレクチャー 「CGと数学」講義資料 2024/11/19
masatatsu
2
190
Design Guidelines and Models - Lecture 5 - Human-Computer Interaction (1023841ANR)
signer
PRO
0
690
ACT FAST 20240830
japanstrokeassociation
0
320
寺沢拓敬 2024. 09. 「言語政策研究と教育政策研究の狭間で英語教育政策を考える」
terasawat
0
200

Featured

See All Featured
Embracing the Ebb and Flow
colly
84
4.5k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k
Six Lessons from altMBA
skipperchong
27
3.5k
What's new in Ruby 2.0
geeforr
343
31k
Practical Orchestrator
shlominoach
186
10k
Agile that works and the tools we love
rasmusluckow
327
21k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
364
24k
Become a Pro
speakerdeck
PRO
25
5k
The Language of Interfaces
destraynor
154
24k
Scaling GitHub
holman
458
140k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
8
900

Transcript

  1. OAuth 2 Thierry Sans

  2. Single-Sign-On (SSO) • Pubcookie (a.k.a webiso) • OpenID • SAML

    (Security Assertion Markup Language) • OAuth • Mozilla Persona 1998 2005 2005 2010 2011 among others …

  3. How OAuth 2 works

  4. source: Choosing an SSO Strategy: SAML vs OAuth2

  5. How to use OAuth The way OAuth is implemented by

    Identity Providers varies • Google
 https://developers.google.com/accounts/docs/OAuth2 • Twitter
 https://dev.twitter.com/oauth • Facebook
 https://developers.facebook.com/docs/facebook-login/login-flow-for-web/v2.2 • Github
 https://developer.github.com/v3/oauth/

  6. OAuth in Django • Python OAuth Toolkit
 https://django-oauth-toolkit.readthedocs.org/en/latest/ models.html •

    Python Social OAuth
 https://github.com/omab/python-social-auth • django-allauth
 https://github.com/pennersr/django-allauth

  7. Google Authentication
 with django-allauth

  8. Configure Google On console.developers.google.com 1. Create a new project 2.

    Create a new credential 
 API management > Credentials
  9. None

  10. Install django-allauth $ pip install django-allauth

  11. Configure the project and migrate INSTALLED_APPS = [ ... 


    'django.contrib.sites', 'allauth', 'allauth.account', ‘allauth.socialaccount', ‘allauth.socialaccount.providers.google', # use Google ] TEMPLATES = [ ... 'context_processors': [ ... 'django.template.context_processors.request', ], ... LOGIN_REDIRECT_URL = '/' AUTHENTICATION_BACKENDS = ( 'django.contrib.auth.backends.ModelBackend', 'allauth.account.auth_backends.AuthenticationBackend', ) ACCOUNT_USERNAME_REQUIRED = False ACCOUNT_EMAIL_VERIFICATION = "none" SOCIALACCOUNT_QUERY_EMAIL = True SITE_ID = 1 simpsonsapp/settings.py

  12. URLs # Authentication urlpatterns += [ url(r'^accounts/', include('allauth.urls')), url(r'^logout/$', views.logout_view,

    name='logout'), ] simpsonsapp/settings.py

  13. Configure the database - register site

  14. Configure 
 the database 
 - use Google

  15. Login page http://localhost:8000/accounts/login
 http://localhost:8000/accounts/google/login