Aaron Parecki

The video from my @OReillySACon talk is up! "OAuth: When Things Go Wrong" https://www.youtube.com/watch?v=H6MxsFMAoP8

Portland, Oregon, USA • 37°F

11 likes 5 reposts 1 mention

Tue, Feb 26, 2019 11:04am -08:00 #oauth #okta
I mentioned in my #OAuth talk last week that I was working on a blog post describing how to add the Device Flow to any OAuth server, and I just finished the post! \o/ 🔐 https://developer.okta.com/blog/2019/02/19/add-oauth-device-flow-to-any-server

Chicago, Illinois, USA • 33°F

11 likes 4 reposts 1 reply

Wed, Feb 20, 2019 12:49pm -06:00 #oauth #oktadev #okta
always fun to google the random strings I make up for my OAuth examples and see who else's API docs and tutorials they end up in: https://www.google.com/search?q=RsT5OjbzRn430zqMLgV3Ia

Portland, Oregon, USA • 37°F

9 likes 1 repost 3 replies

Thu, Feb 14, 2019 3:46pm -08:00 #oauth
I just posted the slides from my #OReillySACon talk last week!

OAuth: When Things Go Wrong

https://speakerdeck.com/aaronpk/oauth-when-things-go-wrong

Portland, Oregon, USA • 41°F

23 likes 8 reposts 1 reply

Tue, Feb 12, 2019 4:20pm -08:00 #oauth #oreillysacon
at The Fishbowl

New York, New York • Thu, February 7, 2019 11:08am

40.764636 -73.982069

Setting up for my #OAuth workshop!

New York, NY, United States • 39°F

1 like 29 Coins

Thu, Feb 7, 2019 11:08am -05:00 #oauth
#OReillySACon Come by the @okta booth if you'd like some #oauth cat stickers! Also if you want a PDF of my book and the slides from the talk, make sure we scan your badge!

New York, New York, USA • 62°F

2 likes 5 replies

Tue, Feb 5, 2019 5:12pm -05:00 #okta #oreillysacon #oauth
I'm giving a talk on #OAuth at #OReillySACon tomorrow! 3:50pm in Sutton North. I'll have books and cat stickers to give out afterwards too! https://conferences.oreilly.com/software-architecture/sa-ny/public/schedule/detail/75121

New York, New York, USA • 48°F

22 likes 7 reposts 1 reply

Mon, Feb 4, 2019 8:28pm -05:00 #okta #oktadev #oreillysacon #oauth
New York City here I come!

#bytrain #nyc #newark

New York, New York • 49°F

22 likes

Mon, Feb 4, 2019 5:46pm -05:00 #bytrain #nyc #newark #oreillysacon #oktadev
If you've ever needed a link to send someone to explain why OAuth secrets aren't safe in mobile apps, I made you a thing: https://developer.okta.com/blog/2019/01/22/oauth-api-keys-arent-safe-in-mobile-apps

San Francisco, California, USA • 59°F

13 likes 10 reposts 3 replies

Tue, Jan 22, 2019 4:09pm -08:00 #oauth #oauth2 #api #security
A pretty good step-by-step walkthrough of the @oauth2 PKCE flow by @afitnerd https://developer.okta.com/blog/2018/12/13/oauth-2-for-native-and-mobile-apps

and yes it's pronounced "pixie"

Springfield Gardens, New York • 50°F

2 likes 3 reposts 1 reply 1 mention

Fri, Dec 14, 2018 12:19pm -05:00 #oauth #pkce
Take 3 minutes to learn how OAuth access tokens are like a hotel keycard! 🔐💳
https://www.youtube.com/watch?v=BNEoKexlmA4 (Filmed last week at my hotel!)

10 likes 7 reposts 1 reply

Thu, Dec 13, 2018 2:54pm -05:00 #oauth
Just got this ad while watching YouTube so I guess @okta's targeting is working 🤣

San Francisco, California • 57°F

4 likes 1 reply

Thu, Nov 29, 2018 8:58pm -08:00 #okta
Yet another example of why SMS is terrible for 2fa and account recovery.

"the database — running on Amazon’s Elasticsearch — was configured with a Kibana front-end, making the data within easily readable"

https://techcrunch.com/2018/11/15/millions-sms-text-messages-leaked-two-factor-codes/

Chicago, Illinois, USA • 39°F

7 likes 9 reposts 2 replies

Fri, Nov 16, 2018 3:23pm -06:00 #security #sms #2fa
Alright, I think we can call it. Between @tlodderstedt's OAuth Security Best Practices and OAuth 2.0 for Browser Apps, the Implicit Flow is dead.

https://tools.ietf.org/html/draft-ietf-oauth-security-topics-09

https://tools.ietf.org/html/draft-parecki-oauth-browser-based-apps-00

https://medium.com/@torsten_lodderstedt/why-you-should-stop-using-the-oauth-implicit-grant-2436ced1c926

Portland, Oregon, USA • 36°F

4 likes 5 reposts 2 mentions

Fri, Nov 9, 2018 8:57am -08:00 #oauth #oauth2
I learned a lot about writing WordPress plugins making this! Kinda cool that you can completely take over the WordPress login screen like this too. https://developer.okta.com/blog/2018/10/30/wordpress-authentication-with-okta

Seattle, Washington, USA • 54°F

11 likes 1 repost 3 replies

Tue, Oct 30, 2018 1:57pm -07:00 #wordpress #okta
Listening to @tlodderstedt present some new OAuth 2.0 Security recommendations #iiw

Mountain View, California, USA • 60°F

2 likes

Thu, Oct 25, 2018 10:06am -07:00 #oauth #iiw
Congrats @strava on some great looking #OAuth security updates to your API! https://developers.strava.com/docs/oauth-updates/

Portland, Oregon, USA • 64°F

2 likes 2 reposts

Mon, Oct 15, 2018 1:45pm -07:00 #oauth
Next week I'll be hosting a workshop on @OAuth2 in Germany as part of Nürnberg Web Week festival @nueww! It's filling up fast but there are still some spots left! https://nuernberg.digital/festival/programm/2018/understanding-and-implementing-oauth-2-0-mit-aaron-parecki-42/

Columbus, Ohio, USA • 72°F

11 likes 6 reposts 3 replies

Wed, Oct 10, 2018 7:32pm -04:00 #oauth #oauth2
Had a great time giving a talk on @OAuth2 at @SCSU tonight! Thanks to all the students who braved the rain and came anyway! ☔️

New Haven, Connecticut, USA • 70°F

6 likes

Tue, Sep 25, 2018 10:56pm -04:00 #oauth #oktadev
at Southern Connecticut State University (SCSU)

New Haven, Connecticut • Tue, September 25, 2018 6:49pm

41.332195 -72.947328

Giving a talk on #OAuth here in a little bit!

New Haven, CT, United States

8 Coins

Tue, Sep 25, 2018 6:49pm -04:00 #oauth

older