OAuth Happy Hour

preview_player
Показать описание
Join Aaron Parecki and Lee Brandt from Okta for an hour of live Q&A about all things OAuth and OpenID Connect! Bring your questions, or just come to learn about what's new!

Today we'll be focusing on scopes and claims in OAuth!
  1. OktaDev
Рекомендации по теме
OAuth Happy Hour 1:02:25

OAuth Happy Hour

OAuth Happy Hour 0:53:03

OAuth Happy Hour

OAuth Happy Hour 0:57:29

OAuth Happy Hour

OAuth Happy Hour 1:00:35

OAuth Happy Hour

OAuth Happy Hour 0:59:27

OAuth Happy Hour

OAuth Happy Hour 1:02:09

OAuth Happy Hour

OAuth Happy Hour 0:59:31

OAuth Happy Hour Live Q&A

OAuth Happy Hour 0:59:07

OAuth Happy Hour - Live Q&A

OAuth Happy Hour 0:58:55

OAuth Happy Hour - What happened at IETF 113 Vienna?

OAuth Happy Hour 1:04:04

OAuth Happy Hour Live Q&A

OAuth Happy Hour 0:57:53

OAuth Happy Hour Live Q&A

OAuth Happy Hour 0:58:31

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:00:47

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:03:55

OAuth Happy Hour - Live Q&A

OAuth Happy Hour! 0:57:02

OAuth Happy Hour! Front-channel attacks, PKCE, browser security with Aaron and Vittorio

OAuth Happy Hour 0:59:11

OAuth Happy Hour - Live Q&A

OAuth Happy Hour 0:46:20

OAuth Happy Hour - Pushed Authorization Requests, Device Flow, Okta+Auth0 Developer Day

OAuth Happy Hour 0:51:29

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:04:34

OAuth Happy Hour Live Q&A - IETF 114 Philadelphia Recap

OAuth Happy Hour 0:59:37

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:00:05

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:00:45

OAuth Happy Hour Live Q&A

OAuth Happy Hour 1:00:46

OAuth Happy Hour Live Q&A

OAuth 2.1, Future 1:00:39

OAuth 2.1, Future of OAuth XYZ/GNAP/TxAuth - OAuth Happy Hour Live Q&A

Комментарии
Автор

Regarding 23:50 : the id_token is not required during the redirection (if only response_type=code is set), but it is required on the /token endpoint as soon as the "openid" scope was granted, if I understand it correctly. Thus, a basic OAuth provider cannot be compatible with OIDC despite the fact it could implement the /userinfo endpoint for the "openid" scope. If the id_token was optional, OIDC could be implemented with a basic OAuth provider.
It is a little bit frustrating that OIDC really is incompatible with OAuth. I would have preferred a standard /userinfo endpoint on top of OAuth and an optional id_token for those who support it.

RoterFruchtZwerg
Автор

If ID token which application requires in order to learn about the user claim then what is the benefit of Userinfo Endpoint ? What is the difference between the information which application gets from ID Token and Userinfo Endpoint . Thanks

gobindrawat
welcome to shbcf.ru