by My name is Kindson and in this brief, lesson I would teach you the basics of OAuth 2.0 and OpenID. You will understand what they are and how they work very clearly.
You can watch the video explanation here
We would cover the following:
1.0 What is OAuth
OAuth is an open standard for authorization which is used for access delegation. This means that users of a web application can grant an application access to their information without having to give them the login credentials.
OAuth provides a secure delegated access to the user’s information on behalf of the user.
2.0 Why OAuth was Introduced
Before OAuth 1.0 protocol was published in 2010 access delegation was achieve by providing the third party application with your the login credentials(username and password). This creates a security challenge as there is no control of what the third party application can do with these details. OAuth was created to address this issue.
So in 2010, the OAuth 1.0 protocol was published after a group of researcher have worked on it for about 4 years.
3.0 OAuth Roles and Terminology
Before we explain how it works, it is necessary to understand the roles associated with the OAuth architecture
Resource Owner: This is the user of the resource or the owner of the account the application is requesting to access.
Client: This is the application the requests access to restricted resources.
Authorization Server: Holds account information and used for authorisation.
Resource Server: Contains secure information that need token to access
Authorization Grant: The initial code sent to the requesting application initially. The is the same as the authorization code and is passed through the front channel(browser)
Redirect URI: This is the URI that the would be redirected to after the authorisation grant have been given to the application.
Access Token: The token that is sent to the application and can be used to access resources.
4.0 The OAuth Workflow
The OAuth workflow take the following steps to grant a delegated access to an application:
Step 1: The application request for authorization for access to some resource
Step 2: The authorization server creates and displays a consent screen to the user
Step 3: If the user consents to the request, then the authorization server sends an authorisation code (authorisation grant) back to the requesting application.
Step 4: The application then requests for an access token from the authorisation server using the authorisation code
Step 5: The authorisation server identifies the application and checks if the authentication code is valid. If it’s valid, the server issues an access token to the application.
Step 6: The application can now access resources from using the access token
Step 7: If the access token is found valid, the resource server grants the resource to the application.
At this point the cycle is complete. The workflow is shown in Figure 1.
5.0 Benefits of OAuth 2.0
It provides a stronger security and easier to implement
It is an open standard
It is a very robust protocol that relies on SSL (Secure Socket Layer) making data very secure
Allows for expiration of authentication token which make resources more secure
Login credentials are not passed to the requesting application
6.0 What is OpenID
What then is OpenID?
Note that OAuth is a standard for authorisation. OpenID on the other hand is used for authentication to authenticate a single-sign on identity. It is created to be used for federated authentication. This means that a third party can be used to authenticate a user if the users already have some account.
While OAuth can be used for authentication too, that is not what it’s designed for. OpenID does that.
There comes OpenID Connect(OIDC) which is an authentication protocol based on the OAuth 2.0 and serves an authentication layer on top of OAuth 2.0.
I hope these brief explanation clarifies the concept.
You can watch the video explanation here
What’s Hаppening i аm new to this, I stumbled upon this I haνe found It positively usеful аnd it has aided me out
loads. I’m hoping to give a cоntribution & aid different customers like its hеlped me.
Great job.
Useful info. Ϝortunate me I discoverеd your web site by chance, and I’m shockeɗ
why this accident did not took place in advance! I bookmarked it.
I am just amazed with your thoughtful strategy, why don’t
we link up some point.
Hey! Do you know if they make any plugins to protect against hackers?
I’m kinda paranoid about losing everything I’ve worked hard
on. Any recommendations?
You made some really good points there. I checked on the net
for more info about the issue and found most people will go
along with your views on this site.
Your thinking on investment are really impressive,
I am going to throw a number of my followers your way.
Your notions on investment are impressive, I am going
to drive a number of my fans to your web site.
What’s up mates, how is all, and what you desire to say about this article,
in my view its really remarkable in support of me.
Hi everyone, it’s my first pay a visit at this
web page, and piece of writing is really fruitful in support of me, keep
up posting these types of articles.
I was able to find good information from your articles.
I need to to thank you for this wonderful read!! I absolutely enjoyed every little bit
of it. I’ve got you book-marked to check out new stuff
you post…
Nice post. I learn something new and challenging on sites I stumbleupon everyday.
It will always be useful to read through articles from other
writers and practice something from other sites.
If you desire to increase your familiarity simply keep visiting this
web site and be updated with the latest news posted here.
We appreciate you this, I am going to definitely discuss it with my readers.
I’d like to thank you for the efforts you have put in writing this site.
I really hope to check out the same high-grade content by you in the future as well.
In truth, your creative writing abilities has motivated me
to get my very own website now 😉
Excellent article! We will be linking to this great content
on our website. Keep up the good writing.
Thank you for this, I’ll go ahead and certainly discuss it with my favorite site visitors.
Aw, this was an incredibly good post. Spending
some time and actual effort to produce a really good article… but what can I say… I
hesitate a lot and never seem to get anything done.
You have made some decent points there. I looked on the net for additional information about the issue and
found most people will go along with your views on this site.
You’ve made some good points there. I checked on the web for additional information about the issue and found
most people will go along with your views on this site.
Great site you have here.. It’s difficult to find excellent writing like
yours these days. I truly appreciate individuals like you!
Take care!!
Good article! We will be linking to this great article on our site.
Keep up the good writing.
I am just amazed with your innovative tactic, let us connect
some time.
I’m gone to convey my little brother, that
he should also visit this webpage on regular basis to obtain updated from most recent gossip.
Very insightful, thanks for keeping us all updated on your trading progress.
You’re so cool! I do not believe I have read through
something like that before. So nice to find another person with some unique thoughts on this topic.
Seriously.. thank you for starting this up. This web
site is something that is required on the internet, someone with a bit of originality!
Anything you come up with attacks a nerve to me,
thank you for challenging your followers.
Good write-up. I absolutely love this website. Keep writing!
Howdy! I just want to offer you a huge thumbs up for your
great information you’ve got right here on this post.
I am returning to your blog for more soon.
Everything you talk about strikes a nerve to me,
thanks for challenging and difficult your followers.
Hi, I do believe this is a great web site. I stumbledupon it
😉 I’m going to revisit yet again since i have book marked it.
Money and freedom is the best way to change, may you be
rich and continue to guide other people.
I appreciate you for this, I’ll go ahead and undoubtedly share this with my followers.
I have to thank you for the efforts you have put in writing this blog.
I really hope to see the same high-grade blog posts by you
in the future as well. In fact, your creative writing abilities has motivated me to
get my own site now 😉
When someone writes an article he/she retains the idea of
a user in his/her mind that how a user can know it. Therefore
that’s why this article is great. Thanks!
Wah, baru tahu setelah baca postingan ini. Semangat min….
My brother recommended I might like this web site. He was entirely right.
This put up actually made my day. You cann’t imagine simply
how a lot time I had spent for this info! Thank you!
Hey I know this is off topic but I was wondering if
you knew of any widgets I could add to my blog that automatically tweet my newest twitter
updates. I’ve been looking for a plug-in like this for quite
some time and was hoping maybe you would have some experience with something like this.
Please let me know if you run into anything.
I truly enjoy reading your blog and I look forward to your
new updates.
Unquestionably believe that which you stated.
Your favorite justification seemed to be on the internet the simplest thing to
be aware of. I say to you, I certainly get irked
while people consider worries that they just don’t know about.
You managed to hit the nail upon the top and defined out the whole thing without
having side-effects , people could take a signal.
Will likely be back to get more. Thanks
This piece of writing is truly a pleasant one it assists new web users, who are wishing in favor of
blogging.
It’s a shame you don’t have a donate button! I’d certainly donate to
this brilliant blog! I suppose for now i’ll settle for book-marking and adding your RSS feed to my Google account.
I look forward to new updates and will talk about this
site with my Facebook group. Talk soon!
I don’t know whether it’s just me or if everyone else experiencing issues with your website.
It appears as though some of the written text on your posts are running off the screen. Can somebody else please provide
feedback and let me know if this is happening to them as well?
This may be a issue with my web browser because I’ve had this happen before.
Many thanks
Heya i’m for the first time here. I came across this
board and I find It truly useful & it helped me out a
lot. I hope to give something back and help others like you
helped me.
Hey! Quick question that’s completely off topic. Do
you know how to make your site mobile friendly? My website looks weird when viewing from my iphone 4.
I’m trying to find a template or plugin that might
be able to resolve this problem. If you have any recommendations, please share.
Thanks!
bookmarked!!, I love your website!
I was recommended this blog by my cousin. I’m not
sure whether this post is written by him as nobody else know such detailed about my difficulty.
You’re incredible! Thanks!
I was able to find good info from your blog posts.
Your style is very unique in comparison to other people I’ve read stuff
from. Many thanks for posting when you have the opportunity, Guess I will
just book mark this site.
Hi there i am kavin, its my first time to commenting anywhere, when i
read this piece of writing i thought i could also make comment due to this good post.
I am now not sure where you’re getting your information, but great topic.
I must spend some time finding out more or figuring out more.
Thank you for fantastic information I was looking
for this info for my mission.
I enjoy what you guys tend to be up too. Such clever
work and reporting! Keep up the excellent works guys
I’ve incorporated you guys to blogroll.