BT

InfoQ Homepage Presentations OpenID Connect & OAuth - Demystifying Cloud Identity

OpenID Connect & OAuth - Demystifying Cloud Identity

Bookmarks

Bio

Filip Hanik works as a Senior Staff Engineer at Pivotal. Sree Tummidi is the Product Manager for Identity & Access Management on Pivotal Cloud Foundry.

About the conference

SpringOne Platform brings together the people, process and tools for delivering and operating software services. Learn and share with the startups and enterprises leveraging modern Java with Spring connecting all the pieces of the modern software puzzle from developer, operator, architect, data scientist to executive.

Recorded at:

Dec 10, 2016

Hello stranger!

You need to Register an InfoQ account or or login to post comments. But there's so much more behind being registered.

Get the most out of the InfoQ experience.

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

Community comments

  • OAuth does not equal OpenID Connect

    by Gluu Federation /

    Your message is awaiting moderation. Thank you for participating in the discussion.

    What I see a lot is that people use OAuth2 clients, which work with OpenID Connect, but do not use the security features of OpenID Connect. Is this code verifying the nonce in the id_token? Does it follow all the recommendations in the OpenID Connect basic client implementers guide. Working code is great. But secure code is better. See www.gluu.co/oauth-saml-openid on OAuth v. SAML v. OpenID Connect for a deeper discussion. Also, consider using a client like oxd.gluu.org oxd which provides a secure implementation of OpenID Connect client calls, without some of the complexity required by a low level OAuth client.

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

BT

Is your profile up-to-date? Please take a moment to review and update.

Note: If updating/changing your email, a validation request will be sent

Company name:
Company role:
Company size:
Country/Zone:
State/Province/Region:
You will be sent an email to validate the new email address. This pop-up will close itself in a few moments.