Aaron Parecki

#oauth

• OAuth

  Sat, Feb 4, 2017 11:35am -08:00

  

  Hi, I'm Aaron Parecki. I write about OAuth here, and provide OAuth 2.0 consulting services. Below you'll find my recent posts about various OAuth-related things. I've also written two community resources about OAuth:

  OAuth 2.0 Simplified is a guide to OAuth 2.0 focused on writing clients that gives a clear overview of the spec at an introductory level.

  In 2017, I published a longer version of this guide as a book, available on oauth.com as well as a print version. The book guides you through building an OAuth server, and covers many details that are not part of the spec. I published this book in conjunction with Okta.

  Portland, Oregon

  #oauth #oauth2

  Sat, Feb 4, 2017 11:35am -08:00

• Nürnberg (NUE) to Frankfurt (FRA)

  October 22, 2018 from 11:15am to 12:00pm (+0200)

  Lufthansa Flight 147

  Frankfurt (FRA) to Seattle (SEA)

  October 22, 2018 from 2:25pm to 4:10pm (+0200)

  Condor Flight 2032

  

  San Francisco, California • 59°F

  #oauth #indiewebcamp

  permalink
• Seattle (SEA) to Frankfurt (FRA)

  October 15, 2018 at 6:10pm (-0700) until Oct 16 at 1:35pm (+0200)

  Condor Flight 2033

  Frankfurt (FRA) to Nürnberg (NUE)

  October 16, 2018 from 5:20pm to 6:00pm (+0200)

  Lufthansa Flight 148

  

  San Francisco, California • 59°F

  #oauth #indiewebcamp

  permalink
• Nate Barbettini https://www.recaffeinate.co/

  Gave an updated version of my talk on OAuth and OpenID Connect recently at the Portland .NET meetup. Thanks to @aaronpk for recording! #oauth #oidc https://buff.ly/2qh9Y3V

  Portland, Oregon • 50°F

  1 mention

  #oauth #oidc

  Wed, Apr 11, 2018 8:56am -07:00 (liked on Wed, Apr 11, 2018 9:16am -07:00)
• Adactio: Journal—The password anti-pattern (adactio.com)

  Portland, Oregon • 63°F

  #oauth

  Tue, Apr 10, 2018 3:42pm -07:00
• That new computer feel.

  

  Portland, Oregon • 63°F

  7 likes 1 reply

  #oauth

  Tue, Apr 10, 2018 3:23pm -07:00
• Fun thing about using unique random strings in my book examples is you can see where else they end up:
  
  https://www.google.com/search?q=xcoivjuywkdkhvusuye3kch
  
  Some of these even changed other parameters but left that one alone!

  Portland, Oregon • 58°F

  3 likes

  #oauth

  Fri, Mar 30, 2018 3:55pm -07:00
• Had a great time at the @pdxnode meetup tonight! Here are some of the resources I talked about!
  
  https://indieweb.org
  
  https://indieweb.org/webmention
  
  Okta APIs which I used to log in to my website
  https://developer.okta.com
  
  https://indieauth.spec.indieweb.org
  
  Monocle
  https://aaronparecki.com/2018/03/12/17/building-an-indieweb-reader

  

  Portland, Oregon • 52°F

  14 likes 2 reposts 1 reply 2 mentions

  #pdxnode #indieweb #okta #oauth

  Thu, Mar 29, 2018 10:38pm -07:00
• It never occurred to me that people would be blaming @oauth_2 for the Facebook mess. Friendly reminder that OAuth is what lets you control *which* parts of your Facebook data apps get access to, and what lets you revoke that access, which you can do here: https://www.facebook.com/settings?tab=applications

  San Francisco, California • 56°F

  10 likes 6 reposts 6 replies 2 mentions

  #oauth

  Wed, Mar 21, 2018 7:52am -07:00
• OpenID Connect Federation – notiz.Blog (notiz.blog)

  Portland, Oregon • 47°F

  #openid #oauth #indieauth

  Wed, Feb 14, 2018 12:53pm -08:00
• No One Looks Good in Uber's Bug Bounty Fight (gizmodo.com)

  

  Portland, Oregon

  #oauth #press

  Tue, Dec 26, 2017 3:52pm -08:00
• PLUG: OAuth 2.0 Simplified

  Dec

  7

  December 7, 2017 at 7:00pm UTC-8

  PSU

  Portland, Oregon

  Portland Linux/Unix Group

  View Slides

  1 mention

  #oauth #oauth2

  permalink
• I'm giving a short talk tonight about OAuth 2.0 at the @pdxlinux meetup! 7pm at PSU: http://pdxlinux.org

  Portland, Oregon, USA

  1 like

  #oauth #plug #oauth2

  Thu, Dec 7, 2017 5:00pm -08:00

• Announcing the IndieAuth Spec!

  Tue, Dec 5, 2017 12:30pm -08:00

  It's been a long time coming, but I've finally published a proper IndieAuth spec!

  IndieAuth has been around for years, and is even referenced by the Micropub spec. But until now, there wasn't a canonical version of the spec all in one place. Previously it existed as a series of how-to guides on the IndieWeb wiki. Arguably it's actually more useful that way, since the whole point of specs is to communicate a consistent way of implementing something. But it did make it awkward to refer to it formally.

  So I'm happy to say that there is finally a spec for IndieAuth, at https://indieauth.net/spec/

  This document captures the current state of what has been implemented, and incorporates much of the feedback we've gathered over the years. Most of the document is split up into authentication and authorization sections, for when you are trying to just identify users for sign-in in vs when a Micropub client is trying to get an access token to post to the user's site. Formally it's an extension to OAuth 2.0, and makes several decisions that were left un-specified in the OAuth 2.0 core spec.

  If you've implemented any part of this spec, or are thinking about it, I'd appreciate any feedback! Feel free to comment on this post, file an issue on GitHub, or drop a note in the IndieWeb chat!

  Portland, Oregon

  2 likes 1 reply 2 mentions

  #indieweb #indiewebchallenge #indieauth #oauth2 #oauth

  Tue, Dec 5, 2017 12:30pm -08:00
• Luis Augusto Weir http://www.soa4u.co.uk

  #OAuth 2.0 simplified. A must-read guide if you're implementing public #APIs. https://aaronparecki.com/oauth-2-simplified/

  Portland, Oregon

  #OAuth #APIs

  Sat, Nov 11, 2017 9:25am +00:00 (liked on Sat, Nov 11, 2017 5:13pm -08:00)
• It's taken longer than I would have liked, but my book "OAuth 2.0 Simplified" is finally available! https://oauth2simplified.com
  
  We did a pre-launch at Okta's conference in Las Vegas in August, and it's taken a bit longer to sort out the details of actually listing it for sale. It's available for purchase right now at the website, and will be visible on Amazon.com in 6-8 weeks.
  
  Next I'm working out the logistics of publishing an ePub/Kindle version, which it turns out is not just pushing the "ebook" button. This has been a fascinating process to learn about!

  Portland, Oregon, USA

  32 likes 6 replies

  #oauth #oauth2

  Tue, Oct 17, 2017 2:22pm -07:00
• Super happy to announce that my book "OAuth 2.0 Simplified" is now available! https://oauth2simplified.com

  Portland, Oregon, USA

  94 likes 35 reposts 6 replies 5 mentions

  #oauth #oauth2

  Tue, Oct 17, 2017 1:51pm -07:00
• San Francisco (SFO) to Portland (PDX)

  October 13, 2017 from 6:55pm to 8:33pm (-0700)

  Alaska Flight 223

  

  Portland, Oregon

  #okta #oauth

  permalink
• OAuth 2.0 Debugger (oauthdebugger.com)

  

  San Francisco, California

  #oauth #oauth2 #resources #okta

  Thu, Oct 12, 2017 9:10pm -07:00
• Portland (PDX) to San Francisco (SFO)

  October 12, 2017 from 6:40am to 8:22am (-0700)

  Virgin America Flight 1022

  

  Portland, Oregon

  #okta #oauth

  permalink
• pdxdevops https://twitter.com/pdxdevops   •   Sep 27

  We're seeking speakers for Oct 25th! Can be a talk you've done elsewhere. Don't be shy!
  @pdxdevops I'd be happy to give a talk on OAuth 2! Based on my book and blog post https://aaronparecki.com/oauth-2-simplified/ https://oauth2simplified.com

  Portland, Oregon, USA

  1 reply

  #oauth

  Wed, Oct 4, 2017 1:42pm -07:00