OAuth 2.0 - PKCE

Показать описание

This short video explains PKCE (Proof Key for Code Exchange, RFC 7636). It explains what it is, why it exists, how it works. This video should help developers get their mind around this OAuth protocol extension and hopefully encourages them to support it rather sooner than later.
Generally any developer should support in all application where use the oauth authorization_code flow!

If this video was helpful to you, please consider buying me a coffee:

Рекомендации по теме

Комментарии

One of the best videos I’ve seen on PKCE explanation.

FredWhosDead

This is a very clean explanation for the PKCE flow. I have bookmarked this YouTube video. Thank you Sascha!

nayaksrigovind

This is so well explained. I had so many questions and this video has answered them all. Thank you Sascha!

sachinpachpute

The best Video on PKCE till date...thank you🙏

santoshram

Thanks, you saves me a day with just a 9 minutes video.

mrledangvu

Came here after trying to understand what Auth0 was trying to say on their documentation. Thank you sir.

AnHoang

8:48 very well invested. Thank you Sascha, brilliantly verbalized.

olivierquirion

I was looking a video to share with my colleagues. Your video is the best I've found to explain how PKCE works.

Trankiliss

Excelente! Easy to understand, and I like the format; that you covered the flow twice but with a slightly different angle second time. Ty!

belgiandip

There may be funnier explanations on youtube, but this one was the first, I actually did understand. Thanks.

saschahoppe

Brief and crystal clear explanation, Thanks !!

selffighter

the greatest explanation of PKCE available on youtube. Thanks for sharing this buddy

tusharsinghal

Brilliant explanation! Very clear and to the point. Keep up the good work

takkerutube

Such an awesome explanation, thank you very much @Sascha Preibisch.

enriquesierragutierrez

Thank You So Much, very clear and professional way of explanation

nadeemkh

was able to skip reading rfc7636 thanks to you. :)

artolaganus

Thank you for the video, really well explained.

vlad

very good explanation, thank you! the only further potential attack would be if the malicious app could somehow gain access to the myapp memory to leak the code_verifier, but in this case nothing else would be secure on this operating system anymore ^^

KnockiN

Thank you for your helpful video. You've saved me for a couple of hours to searching for this issue :D

gnso

Great way to explain a relatively complex and important topic.. :thumbs_up:

FaisalAli-nhsh

OAuth 2.0 - PKCE

OAuth2 Authorisation Code + PKCE Grant Type Walkthrough

Visualizing the OAuth Flow and Why PKCE is Needed

OAuth PKCE | OAuth Proof Key for Code Exchange explained

OAuth 2 Explained In Simple Terms

OAuth 2.0 - PKCE

An Illustrated Guide to OAuth and OpenID Connect

OAuth 2.0 explained with examples

What is OAuth with PKCE and How Does it Work? | Way of the Future

OAuth 2.0: Implicit, Authorization Code, and PKCE

OAuth 2 0 and OpenID Connect for Single Page Applications Philippe De Ryck

OAuth Flow with PKCE

oAuth for Beginners - How oauth authentication🔒 works ?

ID Tokens VS Access Tokens: What's the Difference?

OAuth 2.0 and OpenID Connect (in plain English)

Authorization Code Grant Flow Overview

OAuth 2.0 Refresh & Access Token Setup with PKCE Flow | Spring Boot Security Tutorial

Introduction to OAuth 2.0 and OpenID Connect By Philippe De Ryck

PKCE Grant Type in OAuth & How to Use it (Teaser) • Aaron Parecki & Eric Johnson • GOTO 2020...

Что такое OAuth 2.0 и OpenID Connect за 15 минут

Everything You Ever Wanted to Know About OAuth and OIDC

29 Authorization Code Flow With PKCE

oauth 2.0 PKCE, AUTH GRANT, IMPLICIT Spring BOOT Microservices

1- Prepare Client for our Authorization Server | OAuth2.0 Code Flow + PKCE | oauth2.0 example

More Secure JavaScript Single-Page Applications with MSAL 2.0 and OAuth 2.0 Auth Code Flow with PKCE