OAuth - the good Parts - Anders Abel - NDC Security 2023

แชร์
ฝัง
  • เผยแพร่เมื่อ 3 ม.ค. 2025

ความคิดเห็น • 2

  •  ปีที่แล้ว +1

    Great talk. One thing that was unclear was where are the refresh tokens stored. In local storage or in the cookie.

  • @vrjb100
    @vrjb100 ปีที่แล้ว

    Oauth is a perfect demonstration on how software architects live in a different world than developers.
    It would be handy when architects stick to the same terms as developers do, call them roles, not scopes.
    In a company the user is not the owner of the data, so the concept of resource owner is wrong and no concept of consent is applicable