|
client-credentials-grant-flow 2021-09-03 nishant.07@gmail.com This post explains the client credentials grant flow |
|
backend-for-frontend-pattern-for-spa 2021-09-02 nishant.07@gmail.com this post explains the backend for frontend pattern for spa |
|
difference-between-id-and-access-token 2021-09-01 nishant.07@gmail.com This post explains the difference between id and access token |
|
what-are-oauth-refresh-tokens 2021-09-01 nishant.07@gmail.com describes oauth refresh tokens |
|
oauth-refresh-token-rotation 2021-09-01 nishant.07@gmail.com this article explains refresh token rotation |
|
OIDC-silent-authentication 2021-08-24 nishant.07@gmail.com This post explains OIDC silent authentication |
|
OIDC-hybrid-flow 2021-08-22 nishant.07@gmail.com This post explains the OIDC hybrid flow |
|
What-is-the-advantage-of-response_mode-form_post-in-oauth 2021-08-20 nishant.07@gmail.com This post describes the advantage of response_mode form_post in oauth |
|
OAuth-Resource-Owner-Password-Grant-flow 2021-08-06 nishant.07@gmail.com This post explains the OAuth Resource Owner Password Credentials flow |
|
What-is-token-based-authentication 2021-08-05 nishant.07@gmail.com This post explains what is token based authentication and its advantages |
|
Should-the-OAuth-access-tokens-be-opaque-bearer-tokens-or-self-contained-JWT-tokens 2021-08-05 nishant.07@gmail.com Should the OAuth access tokens be opaque bearer tokens or self contained JWT tokens |
|
Which-OAUTH-or-OIDC-flow-to-use 2021-08-03 nishant.07@gmail.com This article explains which OAUTH/OIDC flow to use in which situation |
|
What-kind-of-CSRF-attack-is-blocked-by-state-parameter-in-OAuth 2021-07-24 nishant.07@gmail.com This article describes how a CSRF attack is blocked by state parameter in OAuth |
|
OpenID-Connect-Protocol 2021-07-20 nishant.07@gmail.com This post provides a brief introduction of OpenID Connect Protocol |
|
What-is-the-Federated-Identity-Pattern 2021-07-20 nishant.07@gmail.com This post gives on overview of the federated Identity Pattern |
|
OAuth-implicit-flow 2021-07-20 nishant.07@gmail.com This article describes OAuth 2.0 implicit flow |
|
OAuth-authorization-code-flow-with-PKCE-for-native-apps 2021-07-17 nishant.07@gmail.com OAuth authorization code flow with PKCE is now the recommended flow for native apps rather than the implicit flow. |
|
OAuth-2-authorization-code-flow 2021-07-15 nishant.07@gmail.com OAuth 2.0 authorization code flow |
|
OAuth-tricky-questions 2021-07-14 nishant.07@gmail.com This is a collection of potentially tricky OAuth Questions |
|
Can-OAuth-2-access-token-be-JWT-token 2021-07-14 nishant.07@gmail.com Can OAuth 2 access tokens be JWT token or should they be bearer token |
|
Are-OAuth-refresh-tokens-for-performance-or-security-or-both 2021-07-11 nishant.07@gmail.com Are OAuth refresh tokens for performance or security or both |
|
If-OAuth-is-an-authorization-framework-then-why-is-it-used-extensively-for-authentication 2021-07-10 nishant.07@gmail.com If OAuth is an authorization framework then why is it used extensively for authentication |
|
OAuth-2-in-simple-english 2021-07-10 nishant.07@gmail.com This post attempts to explain the concepts of OAuth framework in simple words. |