Web API Security | Basic Auth, OAuth, OpenID Connect, Scopes & Refresh Tokens
HTML-код
- Опубликовано: 29 июл 2024
- There is a lot that goes into securing a Web API. In this video, I discuss why the industry decided to move on from Basic Authentication and OAuth 2.0 took over as the new standard of securing Web APIs.
This video also covers how OpenID Connect works together with OAuth to solve both Authentication and Authorization.
Scopes and deciding how to use scopes in OAuth is tricky, I also cover some tips for making those decisions. Finally, I talk about refresh tokens and how they help deal with token expiry.
#WebAPIDesign #OAuth #OpenIDConnect
Web API Design Series - Episode 1 - • REST vs RPC vs GraphQL...
Web API Design Series - Episode 2 - • Webhooks vs Websockets...
Timecodes
0:00 - Intro
2:06 - Basic Authentication
5:05 - OAuth
10:16 - OpenID Connect
11:23 - Scopes
13:55 - Refresh Tokens
For the full code implementation, checkout - ruclips.net/video/dyZmsz6usWk/видео.html
The music was distracting in the previous ones, but the content is clear and on point! 👏
The way you simplified this is honestly genius. I am a fan.
I love how u explain things, first problem then solution. it make more sense rather just explaining concept
Speaking about your 3rd presentation as compared to the previous ones: the further the better. Thanks.
The way you teach is great! I think your channel will grow a lot with the quality content you provide!
I look forward to more great videos from you!
Thanks a lot for the kind words, really appreciate them :) I've been super busy lately but more videos are coming soon, stay tuned!
I really appreciate your approach to teaching. Thank you!
Very enlightening video, thanks for creating that.
Appreciate your effort.
Great videos so far, keep uploading.
You are a great teacher.
precise and useful, thanks a lot for sharing :)
Glad you enjoyed it!
Yes we need implementation details of each topic it be really great if you start that
I love your teaching style, it is so unique, Good Job
Thank you for the kind words! Really appreciate it :)
thank you !
Great content. I am surprised the view count is so low, it should be in 100Ks.
Thanks! I hope it get's there someday :D
great video
how is access token validated at api level?
I would like to see a full implementation
Check out the full implementation here - ruclips.net/video/dyZmsz6usWk/видео.html