Tags » OAuth

New in IdentityServer4: Resource-based Configuration

For RC4 we decided to re-design our configuration object model for resources (formerly known as scopes).

I know, I know – we are not supposed to make fundamental breaking changes once reaching the RC status – but hey – we kind of had our “DNX” moment, and realized that we either change this now – or never. 724 more words

Google API Oauth v2 Curl PHP

When trying to integrate with google sheets api and looking through all the documentation from google I thought There must be a easier why then installing composer and having there dependencies. 712 more words

PHP

Threatpost: OAuth 2.0 Hack Exposes 1 Billion Mobile Apps to Account Hijacking

Threatpost: OAuth 2.0 Hack Exposes 1 Billion Mobile Apps to Account Hijacking. “The researchers examined 600 top U.S. and Chinese Android mobile apps that use OAuth 2.0 APIs from Facebook, Google and Sina—which operates Weibo in China—and support SSO for third-party apps. 60 more words

Security & Legal Issues

OAuth 2.0 VS JSON Web Tokens: How to secure an API??

In this blog post I will be examining two popular approaches to securing an API, OAuth2 and JSON Web Tokens(now on called JWT).

There are many other solutions I could have examined, but for the sake of relative brevity I will focus on these two. 1,873 more words