Mastering OAuth 2.0

Create powerful applications to interact with popular service providers such as Facebook, Google, Twitter, and more by leveraging the OAuth 2.0 Authorization Framework
Preview in Mapt

Mastering OAuth 2.0

Charles Bihis

1 customer reviews
Create powerful applications to interact with popular service providers such as Facebook, Google, Twitter, and more by leveraging the OAuth 2.0 Authorization Framework
Mapt Subscription
FREE
$29.99/m after trial
eBook
$10.00
RRP $35.99
Save 72%
Print + eBook
$44.99
RRP $44.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$10.00
$44.99
$29.99 p/m after trial
RRP $35.99
RRP $44.99
Subscription
eBook
Print + eBook
Start 30 Day Trial

Frequently bought together


Mastering OAuth 2.0 Book Cover
Mastering OAuth 2.0
$ 35.99
$ 10.00
OAuth 2.0 Cookbook Book Cover
OAuth 2.0 Cookbook
$ 35.99
$ 10.00
Buy 2 for $20.00
Save $51.98
Add to Cart

Book Details

ISBN 139781784395407
Paperback238 pages

Book Description

OAuth 2.0 is a powerful authentication and authorization framework that has been adopted as a standard in the technical community. Proper use of this protocol will enable your application to interact with the world's most popular service providers, allowing you to leverage their world-class technologies in your own application. Want to log your user in to your application with their Facebook account? Want to display an interactive Google Map in your application? How about posting an update to your user's LinkedIn feed? This is all achievable through the power of OAuth.

With a focus on practicality and security, this book takes a detailed and hands-on approach to explaining the protocol, highlighting important pieces of information along the way.

At the beginning, you will learn what OAuth is, how it works at a high level, and the steps involved in creating an application. After obtaining an overview of OAuth, you will move on to the second part of the book where you will learn the need for and importance of registering your application and types of supported workflows. You will discover more about the access token, how you can use it with your application, and how to refresh it after expiration.

By the end of the book, you will know how to make your application architecture robust. You will explore the security considerations and effective methods to debug your applications using appropriate tools. You will also have a look at special considerations to integrate with OAuth service providers via native mobile applications. In addition, you will also come across support resources for OAuth and credentials grant.

Table of Contents

Chapter 1: Why Should I Care About OAuth 2.0?
Authentication versus authorization
What problems does it solve?
How does OAuth 2.0 actually solve the problem?
Who uses OAuth 2.0?
Introducing "The World's Most Interesting Infographic Generator"
Summary
Chapter 2: A Bird's Eye View of OAuth 2.0
How does it work?
First look at the client-side flow
First look at the server-side flow
What are the differences?
What about mobile?
Summary
Chapter 3: Four Easy Steps
Let's get started
Step 1 – Register your client application
Step 2 – Get your access token
Step 3 – Use your access token
Step 4 – Refresh your access token
Putting it all together
Summary
Chapter 4: Register Your Application
Recap of registration process
Registering your application with Facebook
Putting it all together!
Summary
Chapter 5: Get an Access Token with the Client-Side Flow
Refresher on the implicit grant flow
A closer look at the implicit grant flow
Let's build it!
Summary
Reference pages
Chapter 6: Get an Access Token with the Server-Side Flow
Refresher on the authorization code grant flow
A closer look at the authorization code grant flow
Let's build it!
Summary
Reference pages
Chapter 7: Use Your Access Token
Refresher on access tokens
Use your access token to make an API call
Let's build it!
Creating the world's most interesting infographic
Summary
Reference pages
Chapter 8: Refresh Your Access Token
A closer look at the refresh token flow
What if I have no refresh token? Or my refresh token has expired?
The ideal workflow
Summary
Reference pages
Chapter 9: Security Considerations
What's at stake?
Security best practices
Common attacks
Summary
Chapter 10: What About Mobile?
What is a mobile application?
What flow should we use for mobile applications?
Hybrid architectures
Authorization via application instead of user-agent
Summary
Chapter 11: Tooling and Troubleshooting
Tools
Troubleshooting
Summary
Chapter 12: Extensions to OAuth 2.0
Extensions to the OAuth 2.0 framework
OpenID Connect
Summary

What You Will Learn

  • Discover the power and prevalence of OAuth 2.0 and use it to improve your application's capabilities
  • Step through the process of creating a real-world application that interacts with Facebook using OAuth 2.0
  • Examine the various workflows described by the specification, looking at what they are and when to use them
  • Learn about the many security considerations involved with creating an application that interacts with other service providers
  • Develop your debugging skills with dedicated pages for tooling and troubleshooting
  • Build your own rich, powerful applications by leveraging world-class technologies from companies around the world

Authors

Table of Contents

Chapter 1: Why Should I Care About OAuth 2.0?
Authentication versus authorization
What problems does it solve?
How does OAuth 2.0 actually solve the problem?
Who uses OAuth 2.0?
Introducing "The World's Most Interesting Infographic Generator"
Summary
Chapter 2: A Bird's Eye View of OAuth 2.0
How does it work?
First look at the client-side flow
First look at the server-side flow
What are the differences?
What about mobile?
Summary
Chapter 3: Four Easy Steps
Let's get started
Step 1 – Register your client application
Step 2 – Get your access token
Step 3 – Use your access token
Step 4 – Refresh your access token
Putting it all together
Summary
Chapter 4: Register Your Application
Recap of registration process
Registering your application with Facebook
Putting it all together!
Summary
Chapter 5: Get an Access Token with the Client-Side Flow
Refresher on the implicit grant flow
A closer look at the implicit grant flow
Let's build it!
Summary
Reference pages
Chapter 6: Get an Access Token with the Server-Side Flow
Refresher on the authorization code grant flow
A closer look at the authorization code grant flow
Let's build it!
Summary
Reference pages
Chapter 7: Use Your Access Token
Refresher on access tokens
Use your access token to make an API call
Let's build it!
Creating the world's most interesting infographic
Summary
Reference pages
Chapter 8: Refresh Your Access Token
A closer look at the refresh token flow
What if I have no refresh token? Or my refresh token has expired?
The ideal workflow
Summary
Reference pages
Chapter 9: Security Considerations
What's at stake?
Security best practices
Common attacks
Summary
Chapter 10: What About Mobile?
What is a mobile application?
What flow should we use for mobile applications?
Hybrid architectures
Authorization via application instead of user-agent
Summary
Chapter 11: Tooling and Troubleshooting
Tools
Troubleshooting
Summary
Chapter 12: Extensions to OAuth 2.0
Extensions to the OAuth 2.0 framework
OpenID Connect
Summary

Book Details

ISBN 139781784395407
Paperback238 pages
Read More
From 1 reviews

Read More Reviews

Recommended for You

RESTful Java Web Services - Second Edition Book Cover
RESTful Java Web Services - Second Edition
$ 35.99
$ 10.00
OAuth 2.0 Cookbook Book Cover
OAuth 2.0 Cookbook
$ 35.99
$ 10.00
ASP.NET Web API Security Essentials Book Cover
ASP.NET Web API Security Essentials
$ 27.99
$ 10.00
Responsive Web Design with HTML5 and CSS3 - Second Edition Book Cover
Responsive Web Design with HTML5 and CSS3 - Second Edition
$ 31.99
$ 10.00
ASP.NET Core and Angular 2 Book Cover
ASP.NET Core and Angular 2
$ 35.99
$ 10.00
Practical DevOps Book Cover
Practical DevOps
$ 35.99
$ 10.00