Tag feed

#oauth

335 posts29 followers

KMKingsley Mgbamskingsleymgbams.hashnode.dev

Introducing Named Query API

A Declarative Approach to Salesforce Integrations If you’ve built Salesforce integrations, you’ve likely used one of these approaches: 🔹 The standard REST Query resource (/query?q=SELECT...)🔹 sObjec

1d ago6 min read

MRMohammad Reza Mirzadzareblog.mirzadzare.net

IP Spoofing to Account Takeover: You Patched It? Really?

Abstract In my previous article, I described how I found a security flaw in a popular desktop app's OAuth flow that allowed me to steal any user's account with just one click. I reported it, saw it pa

4d ago7 min read

TITech Insights Hubtopperblog.hashnode.dev

OAuth 2.0 Tutorial: Complete Auth Guide

OAuth 2.0 Tutorial: Complete Authentication Guide for Modern Applications OAuth 2.0 remains the dominant authorization framework for securing APIs and enabling third-party access in 2025, yet implementation failures continue to expose user data, crea...

Feb 1210 min read

TITech Insights Hubtopperblog.hashnode.dev

OAuth2 PKCE Flow: Mobile Authentication

Why Traditional OAuth2 Fails for Mobile Applications The standard OAuth2 authorization code flow was designed for confidential clients—web applications running on servers where client secrets remain protected. Mobile applications are public clients: ...

Feb 1210 min read

TITech Insights Hubtopperblog.hashnode.dev

API Security: OAuth2 Flows Token Management

API Security: OAuth2 Flows and Token Management Introduction OAuth2 has become the de facto standard for API authorization, but implementing it correctly remains one of the most challenging aspects of modern application development. As we approach 20...

Feb 128 min read

TITech Insights Hubtopperblog.hashnode.dev

API Security Best Practices: Beyond OAuth and JWT

API Security Best Practices: Beyond OAuth and JWT Metadata { "seo_title": "API Security Best Practices: Beyond OAuth and JWT in 2024", "meta_description": "Discover advanced API security practices for developers. Learn rate limiting, request sign...

Feb 1210 min read

SMSushobhan Mondalbiriyanibot.hashnode.dev

Old Problem, New Protocol: Why the Confused Deputy Still Matters in AI

The Model Context Protocol (MCP) is an open standard that lets AI applications (clients) connect to external tools, systems, and data sources (servers) through a single, uniform interface—often described as “USB‑C for AI.” It solves the painful N×M i...

Feb 116 min read

FKFrank Kelechi Ogefrankoge.com

Kill the Password: How to Implement "Sign In With Ethereum" (SIWE) in 2026

We have all built a "Login with Google" button. It relies on OAuth. But in the Web3 world, we don't need Google. We have Public Key Cryptography. The "Connect Wallet" button on most DApps is often a lie. It just reads the public address from the bro...

Feb 92 min read

JSJungJun Sungjungjun-sung.hashnode.dev

How Clerk Saved Me Two Weeks

One of the first decisions I made when starting Roavelo was not to build authentication from scratch. Why Clerk I needed to ship the MVP quickly. Building auth from scratch would take at least 2-3 weeks. - JWT sign/verify logic - Refresh token rotati...

Feb 69 min read

DKDevadath KVoauth-20.hashnode.dev

OAuth 2.0

Intro If you’ve ever clicked “Continue with Google” or “Login with GitHub”, then congratulations — you’ve already used OAuth 2.0 in real life. In this blog, I’ll help you understand what this stuff is and how it has currently changed the authorizatio...

Feb 52 min read

Search Hashnode

#oauth

Introducing Named Query API

IP Spoofing to Account Takeover: You Patched It? Really?

OAuth 2.0 Tutorial: Complete Auth Guide

OAuth2 PKCE Flow: Mobile Authentication

API Security: OAuth2 Flows Token Management

API Security Best Practices: Beyond OAuth and JWT

Old Problem, New Protocol: Why the Confused Deputy Still Matters in AI

Kill the Password: How to Implement "Sign In With Ethereum" (SIWE) in 2026

How Clerk Saved Me Two Weeks

OAuth 2.0