It & Software Online Course by Udemy, On Sale Here
Covering OAuth 2.0, OpenID, PKCE, deprecated flows, JWTs, API Gateways, and scopes. No programming knowledge needed
An excellent training about Network & Security
The Nuts and Bolts of OAuth 2.0
OAuth 2.0 has become the industry standard for providing secure access to web APIs, allowing applications to access users’ data without compromising security. Companies around the world add OAuth to their APIs to enable secure access from their own mobile apps and third-party IoT devices and even access to banking APIs. Security expert Aaron Parecki breaks down each of the OAuth flows (grant types) and applies them to use cases such as implementing OAuth for web apps, native apps, and SPAs. In addition to learning how applications can use OAuth to access APIs, youll learn how to use OpenID Connect to get the users identity. If you’re building an API, you’ll learn the differences and tradeoffs between different access token formats, how to choose an appropriate access token lifetime, and how to design scopes to protect various parts of your APIs. This course includes the latest recommendations from the OAuth working group including covering everything from using PKCEfor all types of applications to explaining the motivations behind dropping the Implicit and Password grants from the spec. These security recommendations and more will be rolled up into the new OAuth 2.1 update, so this course will give you an excellent head start on learning the best way to use OAuth going forward! By the end of this course, youll understand: The problems OAuth was created to solveThe basics of OAuth 2.0 and OpenID ConnectBest practices for developing web-based and native OAuth appsThe difference between local and remote access token validationHow to validate JWTaccess tokensAnd youll be able to: Implement an OAuth client from scratchProtect the OAuth flows in native and JavaScript appsUse OpenID Connect to get the users name email addressProtect an API with OAuth access tokensDesign scopes to protect various parts of your APIThis course is for you because. Youre a software architect, application developer, or technical decision makerYou work with APIs, web apps, mobile apps, or microservicesYou want to deepen your understanding of application security and become a technical leaderPrerequisitesA basic understanding of HTTP requests, responses, and JSONNo programming language knowledge is necessary since the exercises can be completed without writing any code! To follow along with the exercises, you’ll also need: Experience with Postman, curl, or any other HTTP clientA free Okta Developer accountThis course also gives you exclusive access to an interactive web-based tool that will guide you through the exercises and give feedback along the way! It’s like having the instructor provide real-time feedback as you are working through the exercises!
Udemy is the leading global marketplace for learning and instruction
By connecting students all over the world to the best instructors, Udemy is helping individuals reach their goals and pursue their dreams.
Study anytime, anywhere.
Reviews
There are no reviews yet.