Aaron Parecki

#oauth

• OAuth

  Hi, I'm Aaron Parecki. I write about OAuth here, and I give talks about OAuth 2.0. Below you'll find my recent posts about various OAuth-related things, including talks I'm giving. I've also written two community resources about OAuth:

  continue reading...

  #oauth #oauth2

  Sat, Feb 4, 2017 11:35am -08:00

• IETF 109 Bangkok

  Nov

  14

  Nov

  …

  Nov

  20

  November 14-20, 2020
  7 days

  Bangkok Marriott Marquis Queen's Park

  แขวงคลองเตย, จังหวัดกรุงเทพมหานคร, THA

  #ietf #oauth #okta

  permalink
• API Days Live Australia

  Sep

  14

  Sep

  15

  Sep

  16

  September 14-16, 2020
  3 days

  Online

  #apidays #oauth #security

  permalink
• How to Think About OAuth Security

  Sep

  2

  September 2, 2020 11:00am - 11:45am (-0700)

  Online

  Disclosure

  #oauth #security

  permalink
• Disclosure

  Sep

  2

  September 2, 2020 9:00am - 6:00pm (-0700)

  Online

  #okta #oauth #security

  permalink
• What's New with OAuth and OpenID Connect

  Aug

  19

  August 19, 2020 10:50am - 11:15am (+0800)

  Online

  API Days Live Singapore

  #oauth #openid #security #apidays

  permalink
• API Days Live Singapore

  Aug

  18

  Aug

  19

  Aug

  20

  August 18-20, 2020
  3 days

  Online

  #apidays #oauth #security

  permalink
• Connect2id https://twitter.com/connect2id

  We set out to give an overview of #OAuth 2.1, for developers already familiar with OAuth 2.0 as well as newcomers @DickHardt @aaronpk @tlodderstedt http://c2id.co/8q

  

  Portland, Oregon • 61°F

  #OAuth

  Thu, Aug 6, 2020 6:03pm +00:00 (liked on Thu, Aug 6, 2020 11:16am -07:00)
• Least privilege with less effort: Macaroon access tokens in AM 7.0 – Neil Madden (neilmadden.blog)

  "The only problem was it turned out that even if you did have the secret key you often couldn’t use the token either, because it was just too hard to get request signing to work reliably. Some brave souls periodically try and revive this idea."

  #oauth #signing

  Thu, Jul 30, 2020 10:54am -07:00
• 

  OAuth 2.1 has officially been adopted by the IETF OAuth working group! 🎉
  
  https://tools.ietf.org/html/draft-ietf-oauth-v2-1-00
  
  I'll be chatting about this and many other updates from last week's security workshop today during OAuth Happy Hour! Join me and bring your questions!
  
  https://www.youtube.com/watch?v=sUEBatNmsbY

  Portland, Oregon • 71°F

  36 likes 11 reposts 3 replies 1 mention

  #oauth

  Thu, Jul 30, 2020 8:51am -07:00
• Blort™ (Unofficial) 🚫 https://social.tchncs.de/@Blort   •   Jul 25

  @aaronpk
  So, have you heard of any progress on the horizon towards a self hostable identity/authorization login service yet?

  Still waiting for the day that logging into another Fediverse service is as easy as logging into a new website with Facebook...(or at least that we can see progress towards something like it...) #Mozilla #Persona looked good. Not sure if #ReclaimID is going anywhere. I'd love to hear about it if something is moving forward somewhere...

  (Not sure if #Oauth related or not)
  

  I'm doing a talk at #APConf about exactly this... how the fediverse can use #OAuth to achieve exactly this goal! https://conf.activitypub.rocks/

  Portland, Oregon • 67°F

  #apconf #oauth

  Fri, Jul 24, 2020 8:00pm -07:00
• 

  Shoutout to the #osw2020 organizers for putting together an extremely successful virtual event! 🎉 Even if it did mean I had to be awake and on camera by 5am the last three days. 😴 Still had a great bunch of #OAuth discussions!

  Portland, Oregon • 70°F

  10 likes 1 repost 1 reply

  #osw2020 #oauth

  Fri, Jul 24, 2020 3:05pm -07:00
• Vladimir Dzhuvinov 🇪🇺 🇧🇬 https://twitter.com/dzhuvi

  OAuth 2.1 becomes the simpler & more secure #OAuth. A bunch of existing RFCs and drafts roll into one, so easier to follow too. Presented by @aaronpk at the #osw2020

  

  Portland, Oregon • 64°F

  #OAuth #osw2020

  Wed, Jul 22, 2020 2:57pm +00:00 (liked on Wed, Jul 22, 2020 8:16am -07:00)
• OAuth 2.1

  Jul

  22

  July 22, 2020 7:30am - 8:00am (-0700)

  Online

  OAuth Security Workshop

  View Slides

  #oauth #security

  permalink
• 

  My view today for the OAuth Security Workshop! #osw2020

  

  Portland, Oregon • 64°F

  17 likes 2 reposts 1 reply

  #oauth #osw2020

  Wed, Jul 22, 2020 6:31am -07:00
• Protecting Single-Page Apps using OAuth

  Jul

  22

  July 22, 2020 5:30am - 6:00am (-0700)

  Online

  OAuth Security Workshop

  View Slides

  #oauth #security

  permalink
• Vladimir Dzhuvinov 🇪🇺 🇧🇬 https://twitter.com/dzhuvi

  Today @aaronpk will be presenting #OAuth 2.1. The core OAuth grants are getting consolidated, security gets hardened with PKCE #osw2020 https://barcamptools.eu/oauth-security-workshop-2020/events/0d0423b6-5924-4e6f-8b3b-63edbbe0ae59/oauth_2_1

  Portland, Oregon • 64°F

  #OAuth #osw2020

  Wed, Jul 22, 2020 8:56am +00:00 (liked on Wed, Jul 22, 2020 4:52am -07:00)
• OAuth Security Workshop

  Jul

  22

  Jul

  23

  Jul

  24

  July 22-24, 2020
  3 days

  Scandic Nidelven

  Trondheim, Trøndelag, NOR

  #oauth #okta

  permalink
• 

  I'm going live with @afitnerd in 5 minutes to talk about OAuth, online security, and also chat about yesterday's massive #TwitterHack! Join us, and bring your OAuth questions! https://youtu.be/dJl5wNAPm-w

  Portland, Oregon, USA

  3 likes 1 repost

  #oauth #twitter #security #twitterhack

  Thu, Jul 16, 2020 12:55pm -07:00
• An offensive guide to the Authorization Code grant (postvidia.com)

  #oauth #security

  Tue, Jul 14, 2020 4:58pm -07:00
• The State of OAuth

  Jun

  30

  June 30, 2020 10:20am - 10:45am (-0700)

  Online

  Interface by API Days

  View Slides

  #oauth

  permalink