Aaron Parecki

#oauth

• 

  Hi, I'm Aaron Parecki. I write about OAuth here, and I give talks about OAuth 2.0. Below you'll find my recent posts about various OAuth-related things, including talks I'm giving. I've also written two community resources about OAuth:

  OAuth 2.0 Simplified is a guide to OAuth 2.0 focused on writing clients that gives a clear overview of the spec at an introductory level.

  In 2017, I published a longer version of this guide as a book, available on oauth.com as well as a print version. The book guides you through building an OAuth server, and covers many details that are not part of the spec. I published this book in conjunction with Okta.

  Portland, Oregon

  Sat, Feb 4, 2017 11:35am -08:00 #oauth #oauth2

• 

  I'm working on a 2020 revision to my book, OAuth 2.0 Simplified!
  
  https://oauth2simplified.com
  
  If you find a typo or other error that I am not already aware of, I will send you an OAuth cat sticker! Send me an email or DM with details if you find something!

  

  Portland, Oregon • 37°F

  40 likes 13 reposts 1 reply

  Tue, Jan 14, 2020 10:54am -08:00 #oauth
• Vladimir Dzhuvinov https://twitter.com/dzhuvi

  #OAuth 2.1 - time to consolidate the patchwork of specs and BCPs into one clean RFC, with all deprecated stuff removed?

  Portland, Oregon • 43°F

  Tue, Dec 17, 2019 5:45pm +00:00 (liked on Tue, Dec 17, 2019 2:35pm -08:00) #OAuth
• Florian Weil https://twitter.com/derhess

  Again a great webinar by @aaronpk about protecting your #api with #oauth https://youtu.be/8c1SOuO4mPc #webdev #auth #security #identity #coding

  Portland, Oregon • 40°F

  Sun, Dec 15, 2019 2:49pm +00:00 (liked on Sun, Dec 15, 2019 8:14am -08:00) #api #oauth #webdev #auth #security #identity #coding
• Matt Raible https://twitter.com/mraible

  OAuth's implicit flow was created before browsers supported CORS. Let's deprecate it!
  
  Auth code flow + PKCE is the future. Cheers to #OAuth 2.1. 🎉🍻

  Portland, Oregon • 48°F

  Fri, Dec 13, 2019 7:04pm +00:00 (liked on Fri, Dec 13, 2019 11:04am -08:00) #OAuth
• 

  Some more info on OAuth 2.1 from the @oktadev blog:
  
  OAuth 2.1: How many RFCs does it take to change a light bulb?
  
  https://developer.okta.com/blog/2019/12/13/oauth-2-1-how-many-rfcs

  Portland, Oregon • 46°F

  31 likes 5 reposts 7 replies 2 mentions

  Fri, Dec 13, 2019 10:29am -08:00 #oauth #oauth2
• Thomas Vitale https://twitter.com/vitalethomas

  OAuth 2.1 - “There should be no need to document the most secure way to implement OAuth, since that should be the only option available when you read the spec.” #OAuth #AuthZ #AppSec @aaronpk https://aaronparecki.com/2019/12/12/21/its-time-for-oauth-2-dot-1

  Portland, Oregon • 43°F

  Fri, Dec 13, 2019 4:09pm +00:00 (liked on Fri, Dec 13, 2019 8:10am -08:00) #OAuth #AuthZ #AppSec

• It's Time for OAuth 2.1

  

  Trying to understand OAuth often feels like being trapped inside a maze of specs, trying to find your way out, before you can finally do what you actually set out to do: build your application.

  continue reading...

  107 likes 58 reposts 1 bookmark 2 replies 24 mentions

  Thu, Dec 12, 2019 6:10pm -08:00 #oauth #oauth2 #oauth21
• 

  In a couple hours I'll be going live to talk about using #OAuth to protect your APIs! It's not too late to join!
  
  https://twitter.com/oktadev/status/1205173016407097344

  Portland, Oregon • 49°F

  7 likes 3 reposts 2 replies

  Thu, Dec 12, 2019 9:32am -08:00 #oauth #oktadev
• Hands-On Introduction to OAuth 2.0

  Dec

  11

  December 11, 2019 10:00am (-0800) - 1:00pm (-0700)

  O'Reilly Webinar

  permalink #oauth #oreilly #webinar
• 

  I'll be live with @oktadev office hours in 30 minutes! Join via Zoom or watch on YouTube! Bring your OAuth and .NET questions!
  
  https://twitter.com/oktadev/status/1204460313216634880

  Portland, Oregon • 43°F

  1 like

  Tue, Dec 10, 2019 10:30am -08:00 #oauth #oktadev
• 

  Since it's apparently OAuth week (yes I just made that up), this is your periodic reminder to review what third-party apps have access to your accounts!
  
  Here's a link to Twitter security settings: https://twitter.com/settings/applications
  
  and links for other services: https://indieweb.org/appaccess

  Portland, Oregon • 44°F

  10 likes 2 reposts 1 reply

  Mon, Dec 9, 2019 5:08pm -08:00 #oauth #security

• It's an OAuth week!

  

  Now is your chance to join and ask me your OAuth questions!

  continue reading...

  5 likes 3 reposts 1 mention

  Mon, Dec 9, 2019 1:28pm -08:00 #oauth #oauth2
• OktaDev https://twitter.com/oktadev

  It's not too late to sign-up. Join us next week as @aaronpk walks us through on how to protect an API with #OAuth.

  Portland, Oregon • 44°F

  Fri, Dec 6, 2019 11:36pm +00:00 (liked on Fri, Dec 6, 2019 6:12pm -08:00) #OAuth
• Singapore (SIN) to Seattle (SEA)

  November 23, 2019 from 9:25am (+0800) to 7:25am (-0800)

  Singapore Airlines Flight 28

  Seattle (SEA) to Portland (PDX)

  November 23, 2019 from 9:45am to 10:41am (-0800)

  Alaska Flight 2181

  

  Portland Intl in Portland

  1 mention

  permalink #okta #oauth #ietf #ietf106
• 

  at Khansama Tandoori Restaurant

  Singapore, Singapore • Thu, November 21, 2019 7:35pm

  1.308251 103.853122

  #OAuth WG dinner — with anomalily, microformats

  Singapore Singapore

  anomalily.world foursquare.com/user/13388566

  17 Coins

  Thu, Nov 21, 2019 7:35pm +08:00 #oauth
• 

  OH: "at the end of the day, a specification is a programming language designed to run on the worst runtime environment: engineers" @justin__richer #ietf106

  Singapore, Singapore, SGP • 81°F

  13 likes 6 reposts 2 replies

  Thu, Nov 21, 2019 6:45pm +08:00 #oauth #ietf #ietf106
• DeviceCheck | Apple Developer Documentation (developer.apple.com)

  Mon, Nov 18, 2019 5:43pm +08:00 #ios #apple #security #oauth
• 

  Just posted a page with the full agenda and links to related specs we'll be discussing at the #IETF106 OAuth meetings this week!
  
  https://oauth.net/events/2019-11-ietf106/
  
  Remote participation is free if you're into that sort of thing.

  Singapore, Singapore, SGP • 89°F

  3 likes 6 reposts

  Sun, Nov 17, 2019 4:42pm +08:00 #oauth #ietf106
• IETF 106

  Nov

  16

  Nov

  …

  Nov

  22

  November 16-22, 2019
  7 days

  Raffles City Convention Centre, Singapore

  Singapore SG

  permalink #ietf #oauth
• Portland (PDX) to Los Angeles (LAX)

  November 15, 2019 from 5:00am to 7:25am (-0800)

  Alaska Flight 502

  Los Angeles (LAX) to Singapore (SIN)

  November 15, 2019 at 9:15am (-0800) until Nov 16 at 7:05pm (+0800)

  Singapore Airlines Flight 35

  

  Changi Intl in Singapore

  1 mention

  permalink #okta #oauth #ietf