Posts
All the articles I've posted.
-
Is Authorization Code Grant Type Secure Enough?
• 10 min readIs Authorization Code Grant Type Secure Enough?
-
OAuth2 Token Exchange in Practice
• 14 min readOAuth2 Token Exchange in Practice
-
How to register and manage OAuth2 clients?
• 13 min readHow to register and manage OAuth2 clients?
-
How do you discover the OAuth2 server configuration?
• 8 min readHow do you discover the OAuth2 server configuration?
-
Understanding OAuth2 Landscape
• 24 min readUnderstanding OAuth2 Landscape
-
API Security: How to avoid Broken Object Level Authorization & Broken Function Level Authorization
• 8 min readAPI Security: How to avoid Broken Object Level Authorization & Broken Function Level Authorization
-
Web Browser SSO Profile
• 16 min readWeb Browser SSO Profile
-
Reloading SAML: IdP Discovery
• 16 min readIdP Discovery
-
Reloading SAML: Why do you need SAML Metadata?
• 10 min readWhy do you need SAML Metadata?
-
Reloading SAML: SAML Basics
• 12 min readSAML Basics