Okta - OAuth 2.0 and OIDC (OpenID Connect)
Theory and Demonstration of OAuth 2.0 and OIDC (OpenID Connect). OAuth, OIDC, PKCE, JWT, Implicit, Hybrid, hacking, etc.
Description
Hi! I am a Former Okta Certified Consultant and I have carefully designed this course for you to get to know the aspects of OIDC and OAuth 2.0 in a simple and pleasant manner.
Course is intended for anyone out there working with Okta's OIDC Apps or simply interested in this field of OIDC / OAuth 2.0. You frankly don't need much previous information to get started and learn what I am presenting here and definitely no prior programming knowledge is required.
I hope that this course will inspire you more into staying calm and collected when facing technical issues. With some basic best-practices you will get them resolved. This Guide is intended to mimic reality and my aim is to show you that anyone can make mistakes, but also that anyone can overcome them.
You'll get to see:
~ 4 hours of training;
~25 different links to Okta docs and not only that will furthermore detail my presentations;
Some lengthy lectures (to treat almost every aspect of a specific situation), yes, but full of explanations to set you on the right track.
You will:
Learn the aspects of OIDC;
Learn the Oauth 2.0 concept;
Study the Authorization Code Flow
See the additional layer of the Authorization Code Flow with PKCE (Proof Key for Code Exchange)
Develop strong knowledge about Implicit Flows
Learn what's up with Client Credential Flow, Resource Owner Password Flow or even the Device Authorization one
Integrate Hybrid Flows
Have a reference as to what is the SAML 2.0 Assertion Flow
Run Okta APIs - test the OAuth flows directly via APIs;
Understand JWTs (Json Web Tokens);
Understand how to troubleshoot OIDC / OAuth 2.0 and get my recommendations and best practices;
What You Will Learn!
- OIDC and OAuth 2.0 specifics
- Flows: Auth Code, Auth Code with PKCE, ROPC, Client Credentials, Device Auth and others
- JWT Token - demystified
- How was Oauth Hacked
- Clear differences between OIDC and OAuth flows
Who Should Attend!
- Anyone that wants to get more technical about OIDC / OAuth 2.0
- Those who prepare for the Okta Certified Developer Exam
- Okta Sys Admins
- Anyone that wants to get a good grasp of OIDC / OAuth in general. No matter the IDP