SlideShare a Scribd company logo

Binary studio academy 2013 c++ group (andrey and max)

Binary Studio, profile picture
Binary Studio

The document discusses the development of an OAuth library by a C++ group at Binary Studio Academy in 2013, aimed at implementing client-side functionality for OAuth 1.0 and 2.0 specifications. It outlines the purpose of OAuth as an open standard for authorization, addressing issues of credential management and access control. The library, which uses various tools and technologies, is available on GitHub under the WTFPL license, with working samples for both OAuth versions.

Technology
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
Binary Studio Academy 2013 Academy report. Implement OAuth library. C++ group Toder S. Raev A.
Long time ago, in a galaxy far, far away... Our task was to create OAuth library. It was supposed to implement client side functionality of 1.0 and 2.0 specifications. OAuth is an open standard for authorization that provides a method for clients to access server resources on behalf of a resource owner.
How to share access with third party? 2. Credentials (e.g. username/password) 3. Credentials 4. Protected data Simplest way: Though it isn't a safe way! User (resource owner) Third party server (client) Resource server 1. Request credentials
Why isn't it safe? ● No simple way to control, how credentials can be used. ● No way to revoke credentials for specific server without affecting other clients. Primary issues:
A better way! 1. Get client-specific credentials Client Resource server 2.1. Ask to confirm access 2.2 Confirm access User 3. Access protected resources This way user can see, what kind of access will client get, and this access can be revoked any time without side effects.
Tools used: ● C++ with C++11 features as programming language ● GIT and GitHub to work on project together ● SCons and GCC to build the library on both Windows and Linux. ● cURL and cURLpp to make requests over network ● OpenSSL for cryptography algorithms ● Doxygen to generate documentation ● GTest for unit testing
Demo: Facebook Notifier Let's count facebook private messages! But we need a permission first...
Demo: Facebook Notifier Embed Facebook dialog in application:
Demo: Facebook Notifier Receive a notification every time we get a new message in Facebook!
Results We have created OAuth library, that supports both OAuth 1.0 and 2.0. We also have working samples for both versions. Library is available on GitHub under WTFPL license: https://github.com/4d6178/academy-oauth

More Related Content

PPT
Grid security
josephineusha
 
PPTX
Apache Airavata Credential Store
smarru
 
PPTX
Secure Code Warrior - Insufficient data encoding
Secure Code Warrior
 
PPTX
Secure Code Warrior - XQuery injection
Secure Code Warrior
 
PPTX
Secure Code Warrior - Cookies and sessions
Secure Code Warrior
 
PPTX
Secure Code Warrior - NoSQL injection
Secure Code Warrior
 
PDF
Reema Agarwal , BCA Third Year
Dezyneecole
 
DOC
programming in C++ report
vikram mahendra
 
Grid security
josephineusha
 
Apache Airavata Credential Store
smarru
 
Secure Code Warrior - Insufficient data encoding
Secure Code Warrior
 
Secure Code Warrior - XQuery injection
Secure Code Warrior
 
Secure Code Warrior - Cookies and sessions
Secure Code Warrior
 
Secure Code Warrior - NoSQL injection
Secure Code Warrior
 
Reema Agarwal , BCA Third Year
Dezyneecole
 
programming in C++ report
vikram mahendra
 

Similar to Binary studio academy 2013 c++ group (andrey and max) (20)

PDF
Introduction to OAuth2.0
Oracle Corporation
 
PDF
A technical insight into the concepts and terminologies behind oauth – an ope...
eSAT Journals
 
PDF
Introduction to OAuth
Wei-Tsung Su
 
PPTX
Oauth 2.0 Introduction and Flows with MuleSoft
shyamraj55
 
PPTX
OAuth2 Implementation Presentation (Java)
Knoldus Inc.
 
PDF
Spring Security
Knoldus Inc.
 
PPTX
OAuth 2.0 - The fundamentals, the good , the bad, technical primer and commo...
Good Dog Labs, Inc.
 
PDF
Stateless Auth using OAuth2 & JWT
Gaurav Roy
 
PDF
Demystifying OAuth 2.0
Yury Roa
 
PDF
Oauth Behind The Scenes
Thang Tran Duc
 
PDF
Stateless Auth using OAUTH2 & JWT
Mobiliya
 
PPTX
OAuth
Tom Elrod
 
PDF
Full stack security
DPC Consulting Ltd
 
PDF
CIS13: Bootcamp: Ping Identity OAuth and OpenID Connect In Action with PingFe...
CloudIDSummit
 
PPTX
Oauth2 and OWSM OAuth2 support
Gaurav Sharma
 
PPTX
O auth2.0 20141003
Syed Ali Raza
 
PDF
OpenID and OAuth
Andrea Chiodoni
 
PPTX
OAuth
Adi Challa
 
PDF
When and Why Would I use Oauth2?
Dave Syer
 
PPTX
Introduction to OAuth and how to create it by JoeSelian
imcheaterid
 
Introduction to OAuth2.0
Oracle Corporation
 
A technical insight into the concepts and terminologies behind oauth – an ope...
eSAT Journals
 
Introduction to OAuth
Wei-Tsung Su
 
Oauth 2.0 Introduction and Flows with MuleSoft
shyamraj55
 
OAuth2 Implementation Presentation (Java)
Knoldus Inc.
 
Spring Security
Knoldus Inc.
 
OAuth 2.0 - The fundamentals, the good , the bad, technical primer and commo...
Good Dog Labs, Inc.
 
Stateless Auth using OAuth2 & JWT
Gaurav Roy
 
Demystifying OAuth 2.0
Yury Roa
 
Oauth Behind The Scenes
Thang Tran Duc
 
Stateless Auth using OAUTH2 & JWT
Mobiliya
 
OAuth
Tom Elrod
 
Full stack security
DPC Consulting Ltd
 
CIS13: Bootcamp: Ping Identity OAuth and OpenID Connect In Action with PingFe...
CloudIDSummit
 
Oauth2 and OWSM OAuth2 support
Gaurav Sharma
 
O auth2.0 20141003
Syed Ali Raza
 
OpenID and OAuth
Andrea Chiodoni
 
OAuth
Adi Challa
 
When and Why Would I use Oauth2?
Dave Syer
 
Introduction to OAuth and how to create it by JoeSelian
imcheaterid
 
Ad

More from Binary Studio (20)

PPTX
Academy PRO: D3, part 3
Binary Studio
 
PPTX
Academy PRO: D3, part 1
Binary Studio
 
PPTX
Academy PRO: Cryptography 3
Binary Studio
 
PPTX
Academy PRO: Cryptography 1
Binary Studio
 
PPTX
Academy PRO: Advanced React Ecosystem. MobX
Binary Studio
 
PPTX
Academy PRO: Docker. Part 4
Binary Studio
 
PPTX
Academy PRO: Docker. Part 2
Binary Studio
 
PPTX
Academy PRO: Docker. Part 1
Binary Studio
 
PPTX
Binary Studio Academy 2017: JS team project - Orderly
Binary Studio
 
PPTX
Binary Studio Academy 2017: .NET team project - Unicorn
Binary Studio
 
PPTX
Academy PRO: React native - miscellaneous
Binary Studio
 
PPTX
Academy PRO: React native - publish
Binary Studio
 
PPTX
Academy PRO: React native - navigation
Binary Studio
 
PPTX
Academy PRO: React native - building first scenes
Binary Studio
 
PPTX
Academy PRO: React Native - introduction
Binary Studio
 
PPTX
Academy PRO: Push notifications. Denis Beketsky
Binary Studio
 
PPTX
Academy PRO: Docker. Lecture 4
Binary Studio
 
PPTX
Academy PRO: Docker. Lecture 3
Binary Studio
 
PPTX
Academy PRO: Docker. Lecture 2
Binary Studio
 
PPTX
Academy PRO: Docker. Lecture 1
Binary Studio
 
Academy PRO: D3, part 3
Binary Studio
 
Academy PRO: D3, part 1
Binary Studio
 
Academy PRO: Cryptography 3
Binary Studio
 
Academy PRO: Cryptography 1
Binary Studio
 
Academy PRO: Advanced React Ecosystem. MobX
Binary Studio
 
Academy PRO: Docker. Part 4
Binary Studio
 
Academy PRO: Docker. Part 2
Binary Studio
 
Academy PRO: Docker. Part 1
Binary Studio
 
Binary Studio Academy 2017: JS team project - Orderly
Binary Studio
 
Binary Studio Academy 2017: .NET team project - Unicorn
Binary Studio
 
Academy PRO: React native - miscellaneous
Binary Studio
 
Academy PRO: React native - publish
Binary Studio
 
Academy PRO: React native - navigation
Binary Studio
 
Academy PRO: React native - building first scenes
Binary Studio
 
Academy PRO: React Native - introduction
Binary Studio
 
Academy PRO: Push notifications. Denis Beketsky
Binary Studio
 
Academy PRO: Docker. Lecture 4
Binary Studio
 
Academy PRO: Docker. Lecture 3
Binary Studio
 
Academy PRO: Docker. Lecture 2
Binary Studio
 
Academy PRO: Docker. Lecture 1
Binary Studio
 
Ad

Recently uploaded (20)

PDF
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
WOOl fibre morphology and structure.pdf for textiles
Rajendrakumar868651
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PDF
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PDF
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
PDF
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
A Presentation on Touch Screen Technology
memembruh336
 
PPTX
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
WOOl fibre morphology and structure.pdf for textiles
Rajendrakumar868651
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
Encapsulation theory and applications.pdf
gurumoop
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
A Presentation on Touch Screen Technology
memembruh336
 
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 

Binary studio academy 2013 c++ group (andrey and max)

  • 1. Binary Studio Academy 2013 Academy report. Implement OAuth library. C++ group Toder S. Raev A.
  • 2. Long time ago, in a galaxy far, far away... Our task was to create OAuth library. It was supposed to implement client side functionality of 1.0 and 2.0 specifications. OAuth is an open standard for authorization that provides a method for clients to access server resources on behalf of a resource owner.
  • 3. How to share access with third party? 2. Credentials (e.g. username/password) 3. Credentials 4. Protected data Simplest way: Though it isn't a safe way! User (resource owner) Third party server (client) Resource server 1. Request credentials
  • 4. Why isn't it safe? ● No simple way to control, how credentials can be used. ● No way to revoke credentials for specific server without affecting other clients. Primary issues:
  • 5. A better way! 1. Get client-specific credentials Client Resource server 2.1. Ask to confirm access 2.2 Confirm access User 3. Access protected resources This way user can see, what kind of access will client get, and this access can be revoked any time without side effects.
  • 6. Tools used: ● C++ with C++11 features as programming language ● GIT and GitHub to work on project together ● SCons and GCC to build the library on both Windows and Linux. ● cURL and cURLpp to make requests over network ● OpenSSL for cryptography algorithms ● Doxygen to generate documentation ● GTest for unit testing
  • 7. Demo: Facebook Notifier Let's count facebook private messages! But we need a permission first...
  • 8. Demo: Facebook Notifier Embed Facebook dialog in application:
  • 9. Demo: Facebook Notifier Receive a notification every time we get a new message in Facebook!
  • 10. Results We have created OAuth library, that supports both OAuth 1.0 and 2.0. We also have working samples for both versions. Library is available on GitHub under WTFPL license: https://github.com/4d6178/academy-oauth