The complete guide to protecting your APIs with OAuth2 (part 1)
OAuth2 is one of the most popular specifications for API authentication today, though wrapping your head around it can be a challenge.
Dan Moore
Dan Moore is the head of developer relations at FusionAuth. Dan helps developers leverage FusionAuth for their applications, educates developers about OAuth and authentication, and supports the FusionAuth developer community. Dan has been coding for over 20 years and has been a CTO, engineering manager, contractor, technical trainer, and software engineer. Dan has also been a speaker at numerous tech conferences and meetups. Dan is a published author of two books and a contributor on a third: “Developing Cross Platform Mobile Applications with Cordova CLI”, “Letters to a New Developer”, and “97 Things Every Cloud Engineer Should Know”. Outside of work he enjoys gardening, camping and backpacking.
You can add biometric authentication to your webpage. Here’s how.
Prompting for a username and password is so 2005. Today, you can just prompt for a fingerprint.
The Authorization Code grant (in excruciating detail) Part 2 of 2
Previously, I examined OAuth at a high level, including the standards and the grants outlined in the specifications. If you haven’t you may want to read that article. In this post, you’ll learn the nuts and bolts of integrating OAuth to protect resources like APIs. While there are a number of different ways to do…