OAuth 2.0 explained with examples
Рет қаралды 96,187
9 ай бұрынWelcome to the ultimate guide on OAuth 2.0! In this 10-minute video, we'll unravel the complexities of OAuth 2.0, exploring its fundamental workings, identity providers, access tokens, the four types of OAuth flows, and its integration with JWT. Whether you're a seasoned developer or new to the world of digital security, this video will equip you with the knowledge you need.
🔐 Topics Covered:
OAuth 2.0 Basics
Identity Providers
Access Tokens Explained
Deep Dive into OAuth Flows
OAuth vs. Authentication
JWT Integration
🚀 Enhance your app development skills and bolster your understanding of OAuth 2.0-crucial for modern digital security. Hit the "Like" button, subscribe for more tech insights, and let's dive right in!
OAuth Flow Graphic Credit: dev.to/hem/oauth-2-0-flows-ex...
►LinkedIn: / bytemonk
System Design Interview Basics Playlist:
► • System Design Intervie...
AWS Certification:
►AWS Certified Cloud Practioner: • How to Pass AWS Certif...
►AWS Certified Solution Architect Associate: • How to Pass AWS Certif...
►AWS Certified Solution Architect Professional: • How to Pass AWS Certif...
@josiahroa177 8 ай бұрын
Just found this channel and it's amazing. Keep it up man, you're providing tons of value to the software design industry.
@narekpapukyan5455 3 ай бұрын
Been searching for an easy to understand visual of OAuth...and this is one of the best videos by far! Thank you!
@LobbanVlogs 3 ай бұрын
Same here...I needed the visuals for clarity.
@GalPovsod2022 8 ай бұрын
I just recently founded your channel andI'm amazed! Keep up the great work! God bless!
@adveshsworld4962 5 ай бұрын
Excellent explanation on OAuth concepts in plain language to reach broader audiences. Thank you!
@PC-pr8gi 9 ай бұрын
Great explanation with nice animation showing all the steps!! Thanks!
@JagjitSingh-pf3ji 8 ай бұрын
Best channel So far in terms of explanation in short duration on basic topics… kudos🔥
@srawat1212 9 ай бұрын
Underrated channel. You'll be having thousands of views in no time. Keep it up.
@sowmiyavenkatesan2525 7 ай бұрын
Oauth 2.0 is very well explained in this video. Thank you!
@satya5067 7 ай бұрын
Brilliant explanation that even a layman like me can understand these concepts to some extent atleast .. thank you so much 🙏
@termsofblunder 9 ай бұрын
I'm sorry, but you are truly a genius. Your ability to explain all these various different topics and technologies is absolutely remarkable. It is very clear and comprehensible. You are extremely extremely talented, not only in your grasp of technology but in your ability to communicate and convey your knowledge in a manner that others can easily consume and comprehend. Bravo! Bravo! Once again, one of the most talented individuals I have ever seen on the internet.
@ByteMonk 9 ай бұрын
Thank you so much for this lovely comment and your support 🙏
@SleepeJobs 7 ай бұрын
+100
@extremeweirdness1528 6 ай бұрын
@@ByteMonk You are really good most of my doubts got cleared .
@rpvaghasiya 5 ай бұрын
why are you sorry for a compliment 😀
@rstheg 2 ай бұрын
@@rpvaghasiyais it not a criminal offence to compliment? 😅
@antonyfernando674 7 ай бұрын
This is an awesome video, very detailed. Thanks for sharing !!!
@arifmohiuddin9933 8 ай бұрын
precise and well explained with well animations👍
@viswanadhkasi2168 Ай бұрын
Your video editing skills are amazed brother and colors are great
@RicardoSilvaTripcall 9 ай бұрын
Great Explanation !!!
@mubafaw 2 ай бұрын
Nice and elegant explanation. Thanks 👍
@mdk1983 4 ай бұрын
a minor audio improvement suggestion for your videos. Applying an EQ which removes frequencies below 80 Hz or 90 Hz (High pass filter), will remove the boominess in your voice and give more clarity and comfortable listening experience.
@ByteMonk 4 ай бұрын
Thanks for the tips!
@ByteMonk 4 ай бұрын
Would love to connect with you sometime to ensure my audio processing is correct
@khushbooJahanRiaz 2 ай бұрын
very precise nice expalnation thanku so much
@premraj.m 5 ай бұрын
Excellent video on OAuth 2.0, but small confusion at 5:15 convert access token encodes to JWT
@sandyj342 5 ай бұрын
This is too good! Subscribed 😊
@ByteMonk 5 ай бұрын
Thank you so much 😁
@Joseph-oz7tx 2 күн бұрын
very good video bro , thanks for sharing us
@edgiefive1317 3 ай бұрын
excellent, thank you
@sarimhaque3253 3 ай бұрын
that was soo good!
@sumeetsinha8575 6 ай бұрын
The Access token is not generated the way it has been represented. First an Authorization Code is generated and sent to the client app via the user agent. The authorization code is then sent by the client app directly with the the AS to generate the access token which is then used to access the resources.
@varsityoftruth 5 ай бұрын
Should there be an arrow or two between auth and resource servers?
@richyeva2149 9 ай бұрын
Thanks! Good explanation. Could you do a video on CA certificates or self-signed certificates?
@ByteMonk 9 ай бұрын
Here :) kzfaq.info/get/bejne/eLenfr1n38zdm2Q.html You may also checkout relevant videos in the playlist in description.
@ashwithchandra2622 4 ай бұрын
what if i wanted to authorize which does not uses application of the authorization server i.e, you said in the example that google authorization to access google calendar in an app but what if my app doesn't uses any of those?
@44Whisper44 8 ай бұрын
I love the animations explaining how it works. May I know what app you use for these?
@ByteMonk 8 ай бұрын
FCP, Adobe, Photoshop, Ppro. Takes about 10 hours for a 5-10 minutes video :)
@44Whisper44 8 ай бұрын
@@ByteMonk I'd say it's worth it.
@DheerajKumar-tf8dr 2 ай бұрын
nice explanation
@ViswanathTumbalamGooty Ай бұрын
How the resource-server will validate the token? Do the resource server still need to connect to authoriztionserver to get the token validated, once get validated it will fetch the access/permission details from the token?
@almedinshala8794 Ай бұрын
good explanation
@Loki-vy5vg 2 ай бұрын
How does the resource server variefies/validates the access/jwt token?
@termsofblunder 9 ай бұрын
@ByteMonk, just a small piece of feedback: when listening to your videos with headphones, the music at the end is noticeably louder than your voice. The difference in volume makes it uncomfortable for the ears. It would be helpful if the music volume was lower, or at least not louder than your voice, for a more comfortable listening experience. Thank you!
@ByteMonk 9 ай бұрын
Thank you 🙏
@user-fr6tr7vx7y 5 ай бұрын
hello currently i worked with django application & i have one query about authentications is oauth2.0 is more secure then session ?? because currently i using session authentication flow that return session key when we pass user name or password
@ruksharalam173 3 ай бұрын
How did you creat the OAuth 2.0 flows?
@MTX1699 4 ай бұрын
Hey can you make one for macaroons as well. There aren't enough resources for it online
@priyanshusahu7869 3 ай бұрын
Thanks man for the explanation, I have one request do you have any research papers related to 0auth 1.0 and 0auth 2.0, any reference would work also, I would be very helpful to you, Thanks again.
@ByteMonk 3 ай бұрын
Thank you! Its primarily based on my previous experience with OAuth and SSO in general. Unfortunately I did not maintain the list of papers and articles I went thru to make this video.
@user-th9nk6hs4w 4 ай бұрын
but once the client app has that token, it can request any information Google stores about the user??? it can consult his emails? his calendar? his maps history??? so instead of signing up in that web app filling a basic form with basic personal data, we use Oauth with Google (in this example) so the wep app can retrieve A LOT MORE INFORMATION about the user??!
@elliotthuff5634 4 ай бұрын
Whenever you grant it access it shows what information the app wants to access. It doesn't get everything
@cccc2740 4 ай бұрын
I am not clear how does resource server validates token. Video doesnt mention any interaction between resource server and authorization server.
@abimanoharan2378 3 ай бұрын
this is my confusion as well
@cccc2740 3 ай бұрын
@@abimanoharan2378 i got it. Token provided by authorization server has the information that resource server needs to contact authrization server. So when resource server receives token, it parses it and then uses that info to connect to auth server and validates the authenticity of token.
@saravanasai2391 2 ай бұрын
JWT is not a protocol. OAuth2.0 is protocol. JWT is used like access card which holds the required information for authorization.
@ganesha3559 9 ай бұрын
Can you do 1 video on SAML?
@ByteMonk 8 ай бұрын
SAML video just released!
@ganesha3559 8 ай бұрын
@@ByteMonk awesome.
@bryantwooters9527 12 күн бұрын
The ping is so freaking loud. My gosh.
Dan Vega
Рет қаралды 118 М.