Hands-On Intro to OAuth 2.0 - DevNexus

February 18, 2021

In this half-day workshop you’ll learn everything you need to know to build secure websites, mobile apps, and API services using OAuth and OpenID Connect.

This workshop will be led by Aaron Parecki.

You'll learn best practices for implementing OAuth in web apps, native apps and single-page apps, as well as how to protect an API using OAuth access tokens. You'll also learn how OpenID Connect builds on top of OAuth 2.0 to provide the identity of users signing in.

The hands-on exercises will give you a better understanding of the OAuth flows. The workshop will cover the common OAuth grants: authorization code, PKCE, refresh tokens, and OpenID Connect, and demonstrate how each works step by step. You’ll interact with a live OAuth server and use each grant to get an access token to make API requests and an ID token to get user information.

Register for an account on developer.okta.com which we'll use for the exercises.