Archives for OAuth 2.0
Two OAuth Flows – Public and Private
Public Flow - Through the Browser, Token returned to the browser. Implicit Grant Flow Private/Confidential Clients (Backend OAuth Flow), Client Credentials Flow Public clients use different authorization flows, like…
API authentication and OAuth
OAuth for API Authentication - Some Security Checks Limit SCOPE of OAuth token to READONLY Limit The duration - expiration of the Token to a short lived token Restrict the…
OAuth 2.0 Basics – Client Credentials Flow
What are client credentials in OAuth ? It is a string value that contains a token. The token is sufficient for a resource to allow access to. What is it…