Training
Self-Paced Learning
Bootcamps
Resources
About
Training
DevOps
angle-right
Certified Kubernetes Security Specialist (CKS) - Training
Kubernetes Foundations
Certified Kubernetes Administrator (CKA) Training
Certified Kubernetes Application Developer (CKAD) Training
Terraform with Azure
QA
angle-right
UI Automation Testing with Selenium (JavaScript)
Performance Testing with JMeter
UI Automation Testing with Selenium (Java)
UI Automation Testing with Selenium (C#)
API Automation Testing with Robot Framework
Cloud
angle-right
AWS Certified Advanced Networking - Specialty | Training
AWS Certified Data Analytics- Specialty | Training
AWS Certified Professional DevOps Engineer Training
AWS Associate Solutions Architect (CERTIFIED) Training
AWS SysOps Administrator Associate (CERTIFIED) Training
Agile
angle-right
Professional Scrum Master (PSM) Certification Training
Professional Scrum Product Owner Training
Scrum Foundations
Self-Paced Learning
Resources
Tutorials
Quizzes
Blogs
About
About the founder
About us
Contact us
Learners Portal

OAuth 2.0

SECTIONS

Introduction

OAuth 2.0 stands for Open Authorization and has been created for the purpose of permitting a website or an application to gain access to resources which are hosted by different web applications. This is done on behalf of a user. In other words, OAuth 2.0 gives access with consent and also limits those actions on resources which can be executed by the client application on behalf of the user, without sharing the details of the user.

OAuth 2.0 is standardized protocol which is used across the industry to get authorization. While the main purpose of this protocol is to maintain flow of authorization for web and desktop applications, it also ensures simplicity of the process for the client developers.

OAuth 2.0 primarily runs on a few principles which have been listed below-

  • It is important to not confuse OAuth 2.0 to be an authentication tool. It is only an authorization tool with the focus being on allowing access to certain set of resources.
  • OAuth 2.0 requires an Access Token. An access token is in the form of data which shows the authorization for accessing resources and does this on the end-user’s behalf. There is no fixed format for Access tokens, but the most commonly used format is JSON Web Token. This way, the issuers of the token are able to integrate the data with the token. Access tokens also come with expiration date to keep security intact.

It is interesting to know that one access token can give different levels of access to many APIs. Scope is one parameter which manages the resources to which access token gives permission.

The process of working of OAuth 2.0 is fairly simple. The first step is to seek client credentials. Next, a request is raised by the client application to get an access token from the server. At this stage, there are one or more than one values are sent to the scope parameter.  This is followed by extraction of token from the response and the token is sent to the particular API that needs to be accessed. Sometimes, it may be required to refresh the access token as they are applicable for limited time.


Training

About

envelopeinfo@uptut.com
phone+91 92679 97641
location-dotWeWork, 32nd Milestone,Sector-15, Gurugram India
linkedin
square-facebook
square-instagram
youtube
meetup
© 2023 Mirav Software Services Private Ltd.
info@uptut.com
+91 92679 97641
WeWork, 32nd Milestone,
Sector-15, Gurugram
India

Training

DevOps
QA
Agile
Cloud
Learners Portal

About

About the Founder
Uptut Edge
About Us
Contact Us
Privacy Policy
Terms of Use
linkedin
square-facebook
square-instagram
youtube
meetup
© 2022 Mirav Software Services Private Ltd.
envelopeinfo@uptut.com
phone+91 92679 97641
locationWeWork, 32nd Milestone, Sector-15, Gurugram India
linkedin
facebook
instagram
youtube
meetup
Learner Portal
Contact Us
About the Founder
Privacy Policy
About Us
Terms of Use
© 2023 Mirav Software Services Private Ltd.