SlideShare a Scribd company logo

Open id & OAuth

Download as PPTX, PDF
P
Paul Fryer

Open ID & OAuth allows users to verify their identity across multiple websites without needing separate logins for each site. OpenID handles user authentication by allowing users to log in with an OpenID username and password. OAuth authorizes third party applications to access user data without sharing the user's actual credentials. Many major websites use these standards, including Google, Facebook, and Twitter. The document provides code examples for implementing OpenID and OAuth authentication.

Technology
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
Open ID & OAuthPaul FryerJune 2011
What we’ll coverWhat is OpenID and OAuth?Where and why are these used?“In the wild” examples.Source code examples.
What is OpenID?OpenID is about verifying identity (authenticating).
Prevents users from having to maintain multiple identities with websites/electronic systems.Who uses OpenID?You probably already have an OpenID.Most of the major web players have an implementation.You can provide your own implementation.
How does OpenID Work?What’s your OpenID?User enters OpenID.Request the OpenID Provider page.Provider returns page with openid.server and, optionally, openid.delegate. Build URL and make request to OpenID server.OpenID server presents login screen.User provides credentials.OpenID server asks user to authorize use.User responds to authorization request.User redirected to success or failure URL.Appropriate page is rendered depending on success or failure.
What is OAuth?OAuth is about authorizing 3rd party sites to access user information.
Allows sharing of user data with other systems without providing credentials to the other systems.Who uses OAuth?Most major web players.
Facebook, Twitter, Google, Flickr, more..
You can too! Just download an open source library for your programming language of choice (Dot Net, Cold Fusion, Lisp, Java, JavaScript, Objective C, Perl, Ocaml, PHP, Ruby, Python, Erlang, more..)
Live ExampleStackoverflow.comBuilt on

More Related Content

ODP
3rd-Party Authn/Authz
philipsharp
 
PDF
open id & o-auth
Paul Fryer
 
PPT
Open ID
diwanshu.joshi
 
PPTX
OAuth Linking-Social Networks
G Jayendra Kartheek
 
PDF
User Management with LastUser
Kiran Jonnalagadda
 
PPT
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Manish Pandit
 
PPT
Implementing OpenID for Your Social Networking Site
David Keener
 
PPT
Linkedin & OAuth
Umang Goyal
 
3rd-Party Authn/Authz
philipsharp
 
open id & o-auth
Paul Fryer
 
Open ID
diwanshu.joshi
 
OAuth Linking-Social Networks
G Jayendra Kartheek
 
User Management with LastUser
Kiran Jonnalagadda
 
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Manish Pandit
 
Implementing OpenID for Your Social Networking Site
David Keener
 
Linkedin & OAuth
Umang Goyal
 

Viewers also liked (8)

PPTX
Understanding cil & dynamic assemblies
Paul Fryer
 
PPTX
Running .Net on Raspberry Pi
Paul Fryer
 
PPT
How alerts work
Paul Fryer
 
PPT
Aspect oriented programming in .Net
Paul Fryer
 
PPTX
.Net Distributed Caching
Paul Fryer
 
PPT
Gartner application architecture summit 2011
Paul Fryer
 
PPTX
Web Sockets
Paul Fryer
 
PDF
How to Become a Thought Leader in Your Niche
Leslie Samuel
 
Understanding cil & dynamic assemblies
Paul Fryer
 
Running .Net on Raspberry Pi
Paul Fryer
 
How alerts work
Paul Fryer
 
Aspect oriented programming in .Net
Paul Fryer
 
.Net Distributed Caching
Paul Fryer
 
Gartner application architecture summit 2011
Paul Fryer
 
Web Sockets
Paul Fryer
 
How to Become a Thought Leader in Your Niche
Leslie Samuel
 
Ad

Similar to Open id & OAuth (20)

PDF
Introduction To Open Web Protocols
Mohan Krishnan
 
PPT
Student Authentication
WCET Conference 2008
 
PPT
Open Id
Scott Leslie
 
PDF
Building the Social Web with OpenID
Simon Willison
 
PPT
Facebook_Oauth
Akshay Kale
 
PPT
Facebook_Oauth
Akashy Kale
 
PPT
Building and using web services with OAuth
Bruce Boughton
 
PDF
OpenID and decentralised social networks
Simon Willison
 
PDF
Secure Webservices
Matthias Käppler
 
PDF
The Implications of OpenID
Simon Willison
 
KEY
Authentication Using Twitter, Google, Facebook, And More
Billy Cravens
 
PDF
OpenID Connect "101" Introduction -- October 23, 2018
OpenIDFoundation
 
PDF
JDD2015: Security in the era of modern applications and services - Bolesław D...
PROIDEA
 
PPT
FOSSwire3 + OpenID
cvanp
 
PDF
OpenID and OAuth
Andrea Chiodoni
 
PPT
openid-pres
xlight
 
ODP
Mohanraj - Securing Your Web Api With OAuth
fossmy
 
ODP
Securing your Web API with OAuth
Mohan Krishnan
 
PPTX
OAuth2 Presentaion
Bhargav Surimenu
 
PPTX
Open authentication (oauth)
Michael Maurice
 
Introduction To Open Web Protocols
Mohan Krishnan
 
Student Authentication
WCET Conference 2008
 
Open Id
Scott Leslie
 
Building the Social Web with OpenID
Simon Willison
 
Facebook_Oauth
Akshay Kale
 
Facebook_Oauth
Akashy Kale
 
Building and using web services with OAuth
Bruce Boughton
 
OpenID and decentralised social networks
Simon Willison
 
Secure Webservices
Matthias Käppler
 
The Implications of OpenID
Simon Willison
 
Authentication Using Twitter, Google, Facebook, And More
Billy Cravens
 
OpenID Connect "101" Introduction -- October 23, 2018
OpenIDFoundation
 
JDD2015: Security in the era of modern applications and services - Bolesław D...
PROIDEA
 
FOSSwire3 + OpenID
cvanp
 
OpenID and OAuth
Andrea Chiodoni
 
openid-pres
xlight
 
Mohanraj - Securing Your Web Api With OAuth
fossmy
 
Securing your Web API with OAuth
Mohan Krishnan
 
OAuth2 Presentaion
Bhargav Surimenu
 
Open authentication (oauth)
Michael Maurice
 
Ad

Recently uploaded (20)

PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
A Presentation on Artificial Intelligence
memembruh336
 
Teaching material agriculture food technology
LiaRayya
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 

Open id & OAuth

  • 1. Open ID & OAuthPaul FryerJune 2011
  • 2. What we’ll coverWhat is OpenID and OAuth?Where and why are these used?“In the wild” examples.Source code examples.
  • 3. What is OpenID?OpenID is about verifying identity (authenticating).
  • 4. Prevents users from having to maintain multiple identities with websites/electronic systems.Who uses OpenID?You probably already have an OpenID.Most of the major web players have an implementation.You can provide your own implementation.
  • 5. How does OpenID Work?What’s your OpenID?User enters OpenID.Request the OpenID Provider page.Provider returns page with openid.server and, optionally, openid.delegate. Build URL and make request to OpenID server.OpenID server presents login screen.User provides credentials.OpenID server asks user to authorize use.User responds to authorization request.User redirected to success or failure URL.Appropriate page is rendered depending on success or failure.
  • 6. What is OAuth?OAuth is about authorizing 3rd party sites to access user information.
  • 7. Allows sharing of user data with other systems without providing credentials to the other systems.Who uses OAuth?Most major web players.
  • 9. You can too! Just download an open source library for your programming language of choice (Dot Net, Cold Fusion, Lisp, Java, JavaScript, Objective C, Perl, Ocaml, PHP, Ruby, Python, Erlang, more..)
  • 11. Source Code ExamplesExamples using the Dot Net Open Auth library.ASP.Net MVC example using OpenID.ASP.Net Web Forms example using OAuth.