Oauth

Discover Refind’s best articles, videos, and resources on Oauth. Follow along to get the most relevant new links picked for you.
9 Best Articles in 2022
aaronparecki.com
OAuth 2 Simplifiedaaronparecki.com
From 2017 · This post describes OAuth 2.0 in a simplified format to help developers and service providers implement the protocol. The OAuth 2 spec can be a bit confusing to read, so I've written this post to help…
Reader View · Shared by 19, including Francis DB, Paul E Sevinç, platzh1rsch
oauth
authentication
security
oauthbible.com
The OAuth Bibleoauthbible.com
~12 min read · From 2013 · Signed / Signature String made up of several HTTP request elements in a single string. These include the Request Method & URL & Parameters, which is then encrypted against the key which consists of:…
Reader View · Shared by 42, including Alexander Seifert, Jon Thompson, Brian, Philipp Laurim, Fargo, Daniel Williams, Mohamed JEBLI
oauth
api
references
The Hacker News
GitHub Says Hackers Breached Dozens of Organizations Using Stolen OAuth Access TokensThe Hacker News
2 min read · Apr 16th · GitHub reveals that hackers abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI.
Reader View · Shared by 16, including William Toll, Tactical Tech
oauth.net
OAuth Community Siteoauth.net
From 2007 · The OAuth 2.0 authorization framework enables third-party applications to obtain limited access to a web service. This website is supported by Try Okta to make OAuth painless
Shared by 17, including Chung Chen, William El Kaim, Chris Messina, Francis DB
api
authentication
open source
oauth.io
OAuth that just works.oauth.io
From 2015 · Integrate 100+ OAuth providers in minutes. Setup your keys, install oauth.js, and you are ready to play !
Shared by 17, including Chris Messina, Philippe Gauvin, Francis DB
github.blog
Security alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integratorsgithub.blog
3 min read · Apr 16th · On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to…
Reader View · Shared by 16, including jesse squires 🏴
blog.teller.io
Introducing TAuth: Why OAuth 2.0 is bad for banking APIs and how we're fixing itblog.teller.io
7 min read · From 2016 · Teller is an API that enables developers to program their bank accounts
Reader View · Shared by 23, including Jon Thompson, Marco Unternaehrer, Paddy Zab
oauth
security
api
The Hacker News
Github Notifies Victims Whose Private Data Was Accessed Using OAuth TokensThe Hacker News
1 min read · Apr 19th · Github's security team has notified users/organisations whose private data was downloaded with stolen OAuth user tokens.
Reader View · Shared by 12, including Yves Mulkers, William Toll
ZDNet
Hackers stole GitHub and GitLab OAuth tokens from Git analytics firm WaydevZDNet
3 min read · 2020-07-27 · OAuth tokens have been abused for intrusions at least two other companies, Dave.com and Flood.io.
Reader View · Shared by 12, including Troy Hunt
Trending
github.blog
npm security update: Attack campaign using stolen OAuth tokensgithub.blog
May 27th · npm's impact analysis of the attack campaign using stolen OAuth tokens and additional findings.
Shared by 21, including NamosSec is Offline Today, sMyle, William Toll, fantastic ms., Axel Rauschmayer
The Hacker News
Nearly 100,000 NPM Users' Credentials Stolen in GitHub OAuth BreachThe Hacker News
2 min read · May 27th · GitHub shares more details about the recent OAuth token breach, revealing that the attacker gained access to the credentials of nearly 100k NPM users.
Reader View · Shared by 10, including Yves Mulkers
The Hacker News
Heroku Forces User Password Resets Following GitHub OAuth Token TheftThe Hacker News
1 min read · May 5th · Salesforce-owned Heroku begins resetting users' passwords following the theft of GitHub OAuth tokens.
Reader View · Shared by 6
The Hacker News
High-Severity Bug Reported in Google's OAuth Client Library for JavaThe Hacker News
1 min read · May 19th · Google has patched a high-severity vulnerability in its OAuth library for Java that could be exploited by a malicious actor with a compromised tokens.
Reader View · Shared by 9, including Tactical Tech
More like this
github.blog
npm security update: Attack campaign using stolen OAuth tokensgithub.blog
May 27th · npm's impact analysis of the attack campaign using stolen OAuth tokens and additional findings.
Shared by 21, including NamosSec is Offline Today, sMyle, William Toll, fantastic ms., Axel Rauschmayer
gravitational.com
Everything You Need to Know About OAuth (2.0)gravitational.com
9 min read · 2020-07-16 · Boiling down to its core purpose, OAuth exists to provide third party applications limited access to secure resources without compromising the user’s data.
Reader View · Shared by 11, including Bryan Onel, René Stalder
The Hacker News
Nearly 100,000 NPM Users' Credentials Stolen in GitHub OAuth BreachThe Hacker News
2 min read · May 27th · GitHub shares more details about the recent OAuth token breach, revealing that the attacker gained access to the credentials of nearly 100k NPM users.
Reader View · Shared by 10, including Yves Mulkers
adodson.com
hello.js - Javascript API for OAuth2 authentication and REST servicesadodson.com
7 min read · From 2016 · A client-side JavaScript SDK for authenticating with OAuth2 (and OAuth 1 with an 'oauth proxy') web services and querying their REST APIs. HelloJS standardizes paths and responses to common APIs like Google Data Services, Facebook Graph and Windows Live Connect. It's modular, so that list is growing. No more spaghetti code!
Reader View · Shared by 22, including Charlie O'Keefe, Marc Wieland, Francis DB, Tibor Martini 🇺🇦, Brian
thebuzzmedia.com
Designing a Secure REST (Web) API without OAuththebuzzmedia.com
From 2012 · Click here to proceed.
Shared by 23, including Jens-Christian Fischer, Chung Chen, Balda
developers.googleblog.com
Modernizing OAuth interactions in Native Apps for Better Usability and Securitydevelopers.googleblog.com
5 min read · From 2016 · News and insights on Google platforms, tools, and events.
Reader View · Shared by 12, including Klaus Eck, Chris Messina
google
oauth
security
github.com
abraham/twitteroauthgithub.com
From 2016 · twitteroauth - The most popular PHP library for use with the Twitter OAuth REST API.
Shared by 10, including Tibor Martini 🇺🇦, Nico Müller 🇺🇦, adrianoesch
php
twitter
oauth
Martin Fowler
Using oauth for a simple command line script to access Google's dataMartin Fowler
~19 min read · From 2015 · I found that juggling Google's authorization codes, refresh tokens, and access tokens was not difficult; but also not clearly documented.
Reader View · Shared by 16
keycloak.org
Open Source Identity and Access Managementkeycloak.org
1 min read · From 2017 · Login once to multiple applications OpenID Connect, OAuth 2.0 and SAML 2.0 Secure applications and services easily Connect to existing user directories Easily enab
Reader View · Shared by 12, including William El Kaim
iam
identity
open source
Oauth

9 Best Articles in 2022

Trending

More like this

Get smarter every day

Get smarter every day
