Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 11, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 14🧬 Introduction We have already discussed how you can gain access via the Authorization Code Grant flow. In this article, we will look at an extension of that, how to use Authorization Code Grant flow with PKCE. PKCE is an acronym for Proof Key for C...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 10, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 12🧬 Introduction SAML2.0 Bearer Grant is a grant type in the OAuth2.0 framework that enables the exchange of a SAML2.0 assertion for an OAuth2.0 token. This grant type is defined in the SAML2.0 Profile for OAuth2.0 Client Authentication and Authorizat...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 11🧬 Introduction OAuth2.0 JWT Bearer Grant type is a grant type that enables the exchange of one JWT token for another. When a request is made to the /oauth2/token endpoint, with the JWT Bearer Grant type, the JWT assertion, the Client ID, and the Cli...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 10🧬 Introduction The Refresh Token Grant provides a way for client applications to obtain a new Access Token without requiring the user to re-authenticate. This can help improve the user experience by avoiding unnecessary login prompts and reducing th...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 9🧬 Introduction The Client Credentials Grant type provides a secure way for client applications to obtain an Access Token without user authentication. This can be useful in scenarios where the client application needs to access its own resources, suc...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 8🧬 Introduction The Password Grant flow is an OAuth2.0 grant type that enables a client application to obtain an access token by presenting the user's username and password directly to the Authorization Server. This flow is considered to be less secu...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 7🧬 Introduction As we discussed in the Authorization Code Flow article, the Implicit Grant flow is an authentication flow defined in the OIDC specification that allows you to authenticate a user and obtain an AccessToken. The Implicit Grant flow allo...DiscussOAuth2 and OpenID Connect with WSO2 ISOAuth2
Nipuna Upekshanipunaupeksha.hashnode.dev·Mar 8, 2024OAuth2 and OpenID Connect with WSO2 IS - Part 4🧬 Introduction As we discussed earlier, there are a few grant types that allow us to get Access Tokens so that our client application can access the resources in the resource server on our behalf. They are, Authorization Code Grant Type Implicit G...DiscussOAuth2 and OpenID Connect with WSO2 ISGrant Types