Google Services Authentication in App Engine, Part 2
In the first part of the tutorial I described how to use OAuth for access/authentication for Google’s API services. Unfortunately, as I discovered a bit later, the approach I used was OAuth 1.0, which...
View ArticleOAuth 2.0 Webapp Flow Overview
In my last few blogs I’ve been talking about accessing Software as a Service (SaaS) providers such as Facebook and Twitter using Spring Social. Some of you may have noticed that my sample code may have...
View ArticleOAuth 2.0 Bearer Token Profile Vs MAC Token Profile
Almost all the implementation I see today are based on OAuth 2.0 Bearer Token Profile. Of course its an RFC proposed standard today. OAuth 2.0 Bearer Token profile brings a simplified scheme for...
View ArticleWhy OAuth it self is not an authentication framework ?
Let’s straight a way start with definitions to avoid any confusions. Authentication is the act of confirming the truth of an attribute of a datum or entity. If I say, I am Prabath – I need to prove...
View ArticleLandscapes in Mobile Application Security
There are different aspects in Cloud and Mobile application security – and in different angles you can look in to it. Within the first decade of the 21st century – internet worldwide increased from 350...
View ArticleInvoking APIs using a Web App with OAuth2 and use of JWT – WSO2 API Manager
In this post I am to share my experience and understandings using WSO2 API Manager(API-M) for a very common and useful scenario in the industry. In brief following is the flow. An API is exposed for...
View ArticleTutorial: How to Implement Java OAuth 2.0 to Sign-In with GitHub and Google
A guide to adding Google and GitHub OAuth sign-in to your Java application One of the most recent features that we’ve added to Takipi is 3rd party sign-in. If you’re remotely lazy like I do, then I...
View ArticleBuild a Spring Boot App with Secure Server-to-Server Communication via OAuth...
“I love writing authentication and authorization code.” ~ No Java Developer Ever. Tired of building the same login screens over and over? Try the Okta API for hosted authentication, authorization, and...
View ArticleSecure Service-to-Service Spring Microservices with HTTPS and OAuth 2.0
“I love writing authentication and authorization code.” ~ No Java Developer Ever. Tired of building the same login screens over and over? Try the Okta API for hosted authentication, authorization, and...
View ArticleA Quick Guide to OAuth 2.0 with Spring Security
“I love writing authentication and authorization code.” ~ No Java Developer Ever. Tired of building the same login screens over and over? Try the Okta API for hosted authentication, authorization, and...
View Article