Security with OAuth + OpenID Connect + JWT
Understanding how OAuth, OpenID Connect and JWT work is essential to be able to protect your applications.
What is OAuth and how should you use it can be confusing. In this workshop, you’ll get to know in a simple way how this protocol works, who the actors are, what grant types are available and how to choose between them.
OpenID is tipically used as an extension of OAuth, given the fact that OAuth doesn’t define a way to implement authentication. You’ll understand what OpenID Connect is and what it adds to OAuth.
OAuth doesn’t define an access token format, so JWT helps us with a standard for creating and verifying our access tokens. Understanding this is very important to follow one of the most used standards nowadays.