Skip to main content
Software Engineering

Questions tagged [oauth]

Ask Question

The tag has no summary.

57 questions
Newest Active Bountied Unanswered
3 votes
1 answer
128 views

I am developing a home-grade web application (server-client, based on Nuxt and nuxt-auth-utils). I am using the opportunity to learn something about oAuth (and OpenID). One of the issues I face is ...
WoJ's user avatar
  • 1,661
1 vote
0 answers
77 views

We currently have a backend authentication mechanism in place that utilizes JWT tokens. Users sign in or sign up using email and password, and upon successful authentication, the backend issues JWT ...
Samiksha Garg's user avatar
  • 19
0 votes
0 answers
69 views

I am currently working on my own iOS application and am going to be using a locally developed API for fetching data. I wanted to outline my current account sign-in architecture and verify this is ...
Trenton's user avatar
  • 17
1 vote
1 answer
765 views

Description This is a long shot, but I'm in dire need of advice. If you know of a more appropriate forum for this type of question please share! I'm working with a legacy OAuth system using email + ...
cjhines's user avatar
  • 11
1 vote
2 answers
548 views

this is a followup question to the following StackExchange question - If you had a medium size company, several developers - but zero tests written in your REST API's - where would you start? At the ...
alilland's user avatar
  • 309
0 votes
0 answers
75 views

I asked this question on SO which is related to this. In this question, I propose exchanging a token from my OIDC provider for a token in my own custom OIDC provider, which becomes the ultimate token ...
Tobi Akinyemi's user avatar
  • 685
-1 votes
1 answer
1k views

I have a web api with controller methods that use rest http(post/get calls). Clients consume this API with normal httpclient calls and I pass an http response back. My use case is I have a legacy ...
Terrance Jackson's user avatar
  • 57
1 vote
1 answer
515 views

Let's say, we're using an OAuth / OpenID Connect (OIDC) flow (in a Zero-Trust situation) to secure two APIs: ServiceA and ServiceB. To implement some of the functionality of ServiceA, it depends on ...
Quido's user avatar
  • 326
1 vote
1 answer
247 views

I am building a simple application built in Rails that allows the client to connect to a third party api to sync customer data. The customer inputs their username and password and my application ...
Joe Ainsworth's user avatar
  • 113
3 votes
1 answer
539 views

I have a web application where users must authenticate with a 3rd-party OAuth 2.0 service in order to do what they need to do in the app. On initial registration/login, they will connect with the ...
jaredthecoder's user avatar
  • 139
1 vote
0 answers
74 views

I wanted to ask about your ideas on how to solve the problem that I have to solve in my application (App1). This is the classic Fronted + Backend (Angular + Java EE) application to which I am ...
PeterB's user avatar
  • 111
0 votes
0 answers
64 views

I have an api server that relies on an auth server (both owned by the same company). Once the client gets a grant from the auth server, it is no longer needed, because the only information I need from ...
oboforty's user avatar
  • 9
0 votes
1 answer
180 views

I have a confusion. So, in OAuth2.0 there are 4 types of Grant (Authorization Code, Password, Client Credentials and Implicit). In my use case, I have two login scenario. The first one is using ...
Imre Nagi's user avatar
  • 9
6 votes
1 answer
2k views

I'm working with a 3rd party company who are providing an API along with an unusual security approach. The security approach is essentially using a JWT by itself (no oauth). What's odd is that they'...
fml's user avatar
  • 537
13 votes
1 answer
4k views

I'm designing an app architecture using OAuth 2.0. I have a separate Resource Server and Authorization Server. The latter keeps a database of users and the scopes available to them. Now, my question ...
akavel's user avatar
  • 361

15 30 50 per page
1
2 3 4