Workshop outline

    1. Introduction to this Workshop

    2. What is OAuth?

    3. Why OAuth?

    4. Exercise: How to identify a phishing attack

    5. OAuth vs OpenID Connect

    6. Roles in OAuth

    7. Quiz: Introduction

    1. Types of OAuth Applications

    2. Authorization Code + PKCE

    3. Device Flow

    4. Client Credentials

    5. Refresh Tokens

    6. OpenID Connect

    7. Legacy OAuth Flows

    8. Quiz: OAuth Flows

    1. Intro to APIs

    2. Access Token Validation

    3. Using API Gateways

    4. Defining OAuth Scopes

    1. Choosing Token Lifetimes

    2. Custom Claims in Tokens

    3. Gathering Consent

    1. Resources and Further Reading

      FREE PREVIEW

    2. Live demos and Q&A with the instructor!

About this course

  • 24 lessons
  • 1.5 hours of video content

Meet your Instructor

Aaron Parecki

Senior Security Architect

Aaron Parecki is a Senior Security Architect at Okta. He is the author of OAuth 2.0 Simplified, a guide to building OAuth apps and servers. He regularly writes and gives talks about OAuth and online security, and is the editor of several specifications in the OAuth working group at the IETF. Aaron has spoken at conferences around the world about OAuth, data ownership, quantified self, and home automation, and his work has been featured in Wired, Fast Company and more.

FAQ

  • Is this workshop available to the public?

    This workshop is available to select Okta customers by invitation only. If you are interested in this workshop for your company, reach out to your Okta representative.

  • Is this workshop live or prerecorded?

    This workshop is a combination of prerecorded content and a live session with the instructor. When your company enrolls in this workshop, you will be set up with a live Q&A session with the instructor.

Start building with OAuth today