Securing Your APIs with OAuth 2.0 - API Days

SLIDES: https://speakerdeck.com/aaronpk/secur...

In this talk, you’ll learn how to use OAuth 2.0 to secure access to your APIs. OAuth is an authorization protocol which enables applications to access data on behalf of users without needing to know their username and password. This enables many use cases such as easily enabling multi-factor authorization for your users, and better separation of concerns of all your backend services.

We’ll look at how to use JWT access tokens, as well as the tradeoffs that come with them. We’ll look at how to design scopes that allow granular access to various parts of your backend services. We’ll also look at how to design a microservices architecture protected by OAuth at a gateway.

Aaron's book, OAuth 2.0 Simplified: https://amzn.to/2S6Uj4e

Follow Aaron at   / aaronpk  

---

Okta is a developer API service that stores user accounts for your web apps, mobile apps, and APIs.

Sign up for Okta for free at https://developer.okta.com/signup/
For more info visit us at https://developer.okta.com/
Developer Blog: https://developer.okta.com/blog/
Follow us on Twitter:   / oktadev  
Follow us on FB:   / oktadevelopers  
Follow us on LinkedIn:   / oktadev