Introduction to OAuth2, OpenID Connect and JSON Web Tokens (JWT)

Pluralsight

Course Summary

OAuth2, OpenID Connect and JWT are the new security stack for modern applications.

+
Course Description

In a world of light-weight and cross-platform apps, devices and services we need technologies that work well on arbitrary devices and that allow us implementing our security requirements in an interoperable and manageable way. OAuth2, OpenID Connect and JWT are the replacements for the "old-school" protocols we used to build distributed security architectures with like Kerberos, WS-Trust, WS-Federation and SAML.

Course Description

In a world of light-weight and cross-platform apps, devices and services we need technologies that work well on arbitrary devices and that allow us implementing our security requirements in an interoperable and manageable way. OAuth2, OpenID Connect and JWT are the replacements for the "old-school" protocols we used to build distributed security architectures with like Kerberos, WS-Trust, WS-Federation and SAML.

+
Course Syllabus

Overview
- 2m 35s

â€”Agenda 2m 35s

The Security Stack for Modern Applications
- 9m 51s

â€”Overview 0m 10s
â€”Enterprise Security 2m 47s
â€”The Mobile Revolution 1m 51s
â€”Mobile Enterprise Apps 0m 59s
â€”OAuth2 for Authorization 1m 36s
â€”OpenID Connect for Authentication 0m 48s
â€”Summary 1m 40s

JSON Web Tokens (JWT)
- 14m 40s

â€”Overview 0m 50s
â€”The Purpose of Security Tokens 2m 33s
â€”History 4m 18s
â€”JWT Structure and Format 3m 18s
â€”Producing and Consuming JWTs 2m 26s
â€”Summary 1m 15s

Introduction to OAuth2
- 21m 20s

â€”Overview 0m 33s
â€”History 7m 9s
â€”OAuth2 Overview 1m 58s
â€”The Valet Parking Analogy 3m 30s
â€”The Players 4m 10s
â€”OAuth2 Flows 2m 15s
â€”Summary 1m 45s

OAuth2 Flows
- 42m 13s

â€”Overview 0m 15s
â€”Code Flow: Authorization Request 6m 50s
â€”Code Flow: Token Request 1m 26s
â€”Code Flow: Access and Refresh Token 2m 28s
â€”Code Flow: Client Management 1m 26s
â€”Code Flow: Summary 1m 2s
â€”Code Flow: Demo 4m 45s
â€”Implicit Flow 8m 5s
â€”Implicit Flow: Demo 4m 22s
â€”Resource Owner Credentials Flow 4m 51s
â€”Resource Owner Credentials Flow: Demo 3m 0s
â€”Client Flow 0m 54s
â€”Summary 2m 49s

OpenID Connect
- 20m 52s

â€”Overview 0m 45s
â€”OAuth2 and Authentication 2m 23s
â€”The Problems With OAuth2 Authentication 6m 32s
â€”OpenID Connect 2m 25s
â€”OpenID Code Flow 7m 12s
â€”Summary 1m 35s

OAuth2 Concerns
- 27m 57s

â€”Overview 0m 45s
â€”Eran Hammer 1m 37s
â€”Specification Bloat 6m 30s
â€”Bearer Tokens 5m 43s
â€”Security Theater 4m 4s
â€”Attack Surface 5m 24s
â€”Summary 3m 54s

Resources
- 4m 24s

â€”Resources 4m 24s

Course Fee:

USD 29

Course Type:	Self-Study
Course Status:	Active
Workload:	1 - 4 hours / week

This course is listed under Development & Implementations , Networks & IT Infrastructure and IT Security & Architecture Community

Attended this course? Write a Review

Course Fee:

USD 29

Course Type:	Self-Study
Course Status:	Active
Workload:	1 - 4 hours / week

IT Career Development Platform

Introduction to OAuth2, OpenID Connect and JSON Web Tokens (JWT)

Pluralsight

Course Summary

Course Description

Course Description

Course Syllabus

Course Type:

Course Status:

Workload:

OpenID

JSON Web Token (JWT)

Javascript Object Notation (JSON)

Web Services Trust Language (WS-Trust)

Security Assertion Markup Language (SAML)

Kerberos

Attended this course? Write a Review

Course Type:

Course Status:

Workload: