The Many Layers of OAuth

Keith Casey

Tuesday 16 May 2023 from 10:00 to 11:00

Talk in English - US at php[tek] 2023
Short URL: https://joind.in/talk/c6643 (QR-Code (opens in new window))

Avg. Rating

OAuth is one of the most important but most misunderstood frameworks out there. What you think it is, it probably isn’t. What it actually is, you probably hadn’t considered. Regardless, when you consider the standards, specifications, and common practices interact and fit together, it’s impressive what you can accomplish with minimal effort. In this session, we’ll explore through the most common RFCs that are combined to make powerful, robust, and secure solutions that drive modern software development.

Comments

Comments are closed.

Gordon Forsythe at 10:51 on 16 May 2023

Great stuff. Thank you

Eli White at 10:53 on 16 May 2023

Energetic and descriptive

George Campbell at 10:53 on 16 May 2023

Great at correcting misunderstandings about OAuth.

Steve Grunwell at 10:56 on 16 May 2023

A really great look at the intricacies, terms, and pitfalls of OAuth 2.0 and OpenID Connect. Not too deep, but full of all sorts of great information!

McGhee Rich at 11:00 on 16 May 2023

Simplest explanation I’ve seen of the gross steps for OAuth, excellent.

Ian Littman at 11:28 on 16 May 2023

Excellent presentation engaging enough that the audience asked good questions, which got answered adroitly because Keith knows his stuff.

john barclay at 12:14 on 16 May 2023

Lacked density/content. Alot of generalizations and lead-ins to ancedotes that weren't finished along with name dropping and personal historical make the start slow. Enjoyable and well presented, but assertions lacked supporting evidence and content. General workflow and framework specs could have been extended to include concrete examples of endpoint data. Could have been a great 1/2 hour talk.

Sergei Morozov at 13:36 on 16 May 2023

The talk was informative and entertaining at the same time. I enjoyed it!

Ryan Howe at 19:53 on 16 May 2023

OAuth is a difficult topic and it takes someone who has a deep understanding of it to be table to deliver a talk that clearly illustrates its boundaries and accompanying technologies that turn OAuth into a solution for companies to utilize.

Jason Wassing at 12:28 on 17 May 2023

Highly enjoyed this - simple, yet comprehensive.

David Lundgren at 13:45 on 18 May 2023

Helped to clarify some of the differences in v1 vs vs2 as well as openid vs openid connect.

Keith Casey (Speaker) at 10:11 on 19 May 2023

Thanks @john barclay for the feedback!

Since giving this on Tuesday, I've gone through and revamped it with some more diagrams and concrete explanations for giving it at a different conference today.

@John - if we cross paths again, I owe you a beverage as a thank you. That offer doesn't expire. :)