Oauth 2 In Action by Justin RicherOauth 2 In Action by Justin Richer

Oauth 2 In Action

byJustin Richer, Antonio Sanso

Paperback | March 18, 2017

Pricing and Purchase Info

$52.87 online 
$64.95 list price
Earn 264 plum® points

Prices and offers may vary in store

Out of stock online

Not available in stores



OAuth 2 in Actionteaches you the practical use and deployment of this HTTP-based protocol from the perspectives of a client, authorization server, and resource server. You'll learn how to confidently and securely build and deploy OAuth on both the client and server sides. Foreword by Ian Glazer.

Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.

About the Technology

Think of OAuth 2 as the web version of a valet key. It is an HTTP-based security protocol that allows users of a service to enable applications to use that service on their behalf without handing over full control. And OAuth is used everywhere, from Facebook and Google, to startups and cloud services.

About the Book

OAuth 2 in Actionteaches you practical use and deployment of OAuth 2 from the perspectives of a client, an authorization server, and a resource server. You'll begin with an overview of OAuth and its components and interactions. Next, you'll get hands-on and build an OAuth client, an authorization server, and a protected resource. Then you'll dig into tokens, dynamic client registration, and more advanced topics. By the end, you'll be able to confidently and securely build and deploy OAuth on both the client and server sides.

What's Inside

  • Covers OAuth 2 protocol and design
  • Authorization with OAuth 2
  • OpenID Connect and User-Managed Access
  • Implementation risks
  • JOSE, introspection, revocation, and registration
  • Protecting and accessing REST APIs

About the Reader

Readers need basic programming skills and knowledge of HTTP and JSON.

About the Author

Justin Richeris a systems architect and software engineer.Antonio Sansois a security software engineer and a security researcher. Both authors contribute to open standards and open source.

Table of Contents

    Part 1 - First steps

  1. What is OAuth 2.0 and why should you care?
  2. The OAuth dance
  3. Part 2 - Building an OAuth 2 environment

  4. Building a simple OAuth client
  5. Building a simple OAuth protected resource
  6. Building a simple OAuth authorization server
  7. OAuth 2.0 in the real world
  8. Part 3 - OAuth 2 implementation and vulnerabilities

  9. Common client vulnerabilities
  10. Common protected resources vulnerabilities
  11. Common authorization server vulnerabilities
  12. Common OAuth token vulnerabilities
  13. Part 4 - Taking OAuth further

  14. OAuth tokens
  15. Dynamic client registration
  16. User authentication with OAuth 2.0
  17. Protocols and profiles using OAuth 2.0
  18. Beyond bearer tokens
  19. Summary and conclusions
Justin Richeris a systems architect, software engineer, standards editor, and service designer working as an independent consultant.Antonio Sansoworks as Security Software Engineer, he is a vulnerability security researcher and an active open source contributor.
Title:Oauth 2 In ActionFormat:PaperbackDimensions:360 pages, 9.25 × 7.38 × 0.68 inPublished:March 18, 2017Publisher:Manning PublicationsLanguage:English

The following ISBNs are associated with this title:

ISBN - 10:161729327X

ISBN - 13:9781617293276

Look for similar items by category: