click to
look inside
Look inside
FREE
You can see this entire book for free.
Click the table of contents to start reading.

OAuth 2 in Action

Justin Richer and Antonio Sanso
Foreword by Ian Glazer
  • March 2017
  • ISBN 9781617293276
  • 360 pages
  • printed in black & white

placing your order...

Don't refresh or navigate away from the page.
print book Receive a print copy shipped to your door + the eBook in Kindle, ePub, & PDF formats + liveBook, our enhanced eBook format accessible from any web browser. $32.49 $49.99 you save: $17 (35%) pBook + eBook + liveBook
Additional shipping charges may apply
Prints and ships within 3-5 days
FREE domestic shipping on orders of three or more print books
OAuth 2 in Action (print book) added to cart
continue shopping
go to cart

eBook Our eBooks come in Kindle, ePub, and DRM-free PDF formats + liveBook, our enhanced eBook format accessible from any web browser. $25.99 $39.99 you save: $14 (35%) 3 formats + liveBook
FREE domestic shipping on orders of three or more print books
OAuth 2 in Action (eBook) added to cart
continue shopping
go to cart

Provides pragmatic guidance on what to do ... and what not to do.

From the Foreword by Ian Glazer, Salesforce
Look inside

OAuth 2 in Action teaches you the practical use and deployment of this HTTP-based protocol from the perspectives of a client, authorization server, and resource server. You'll learn how to confidently and securely build and deploy OAuth on both the client and server sides.

about the technology

Think of OAuth 2 as the web version of a valet key. It is an HTTP-based security protocol that allows users of a service to enable applications to use that service on their behalf without handing over full control. And OAuth is used everywhere, from Facebook and Google, to startups and cloud services.

about the book

OAuth 2 in Action teaches you practical use and deployment of OAuth 2 from the perspectives of a client, an authorization server, and a resource server. You'll begin with an overview of OAuth and its components and interactions. Next, you'll get hands-on and build an OAuth client, an authorization server, and a protected resource. Then you'll dig into tokens, dynamic client registration, and more advanced topics. By the end, you'll be able to confidently and securely build and deploy OAuth on both the client and server sides.

what's inside

  • Covers OAuth 2 protocol and design
  • Authorization with OAuth 2
  • OpenID Connect and User-Managed Access
  • Implementation risks
  • JOSE, introspection, revocation, and registration
  • Protecting and accessing REST APIs

about the reader

Readers need basic programming skills and knowledge of HTTP and JSON.

about the author

Justin Richer is a systems architect and software engineer. Antonio Sanso is a security software engineer and a security researcher. Both authors contribute to open standards and open source.

FREE domestic shipping on orders of three or more print books

Unmatched in both scope and depth. Code examples show how protocols work internally.

Thomas O'Rourke, Upstream Innovations

A thorough treatment of OAuth 2 ... the authors really know this domain.

Travis Nelson, Software Technology Group

A complex topic made easy.

Jorge Bo, 4Finance IT
RECENTLY VIEWED