Authn / Authz

Authentication and Authorization

1. Just let me log in

Using OAuth 2.0, specifically OpenID Connect is a good way to handle authentication for your app. Having personal identifiable data and having to protect the privacy of the users' data is a liability which is better left to third parties.

How OpenID Connect Works - OpenID FoundationOpenID Foundation - Helping people assert their identity wherever they choose

2. Maybe I need just one more thing

OAuth 2.0 has other capabilities beyond those supported by OpenID Connect.

OAuth.com - OAuth 2.0 SimplifiedOAuth 2.0 Simplified

3. OK, I need some custom third-party info

If developing software for developers and you want specific integrations it is better to use specific capabilities provided by the third party.

Building OAuth apps - GitHub DocsGitHub Docs

4. In this particular case, I'm going to use a site username/password

JWT.IOJSON Web Tokens - jwt.io

5. Authentication/Authorization provider services can do more

Secure AI Agent & User Authentication | Auth0Auth0

Secure Identity for Employees, Customers, and AI | Oktaokta.com

PreviousSoftware Design Patterns NextType-safe SQL with SafeQL

Last updated 5 years ago

hashtag1. Just let me log in

hashtag2. Maybe I need just one more thing

hashtag3. OK, I need some custom third-party info

hashtag4. In this particular case, I'm going to use a site username/password

hashtag5. Authentication/Authorization provider services can do more

1. Just let me log in

2. Maybe I need just one more thing

3. OK, I need some custom third-party info

4. In this particular case, I'm going to use a site username/password

5. Authentication/Authorization provider services can do more