OAuth 2 for Identity and Data Access

Description

OAuth 2 is the latest version of the OAuth standard-- unlocking authorized access to user data from dozens of different APIs like YouTube, Google Apps and Facebook in a way that's easier than ever for developers. OAuth 2 can now be used via OpenID Connect to allow users to easily login and sign up with apps faster, with less developer effort.

This session will cover how web and mobile applications can take advantage of this technology to improve the experience and security of user accounts.

Questions Answered

1. What's the difference between authentication and authorization, and how does OAuth 2 enable each?
2. When should I use the client-side implicit flow and when should I use the server-to-server authorization code flow?
3. I'm building a mobile app. What are my options for getting access to user data using OAuth 2?
4. Why should I use OAuth 2 to log users into my application? Is delegation of authentication really safer for my application and easier for my users?
5. How can OAuth be used for authorizing access to data owned by an application rather than by an end-user?

Tags

authorization, api, identity

Meta

Event

Interactive

Category

Solo

Theme

Design and Development

Level

Intermediate

Speakers

• Ryan Boyd Google

Organizer

Ryan Boyd Google

Additional Supporting Materials

SXSW Interactive 2013

Share This Idea