OAuth 1.0
oauth signature
building signature
business API invocation
PLAINTEXT method
temporary-credential request phase
token credential request phase
three-leggesvs.
two-legged oauth
token dance
business API, invoking
resource-owner authorization phase
temporary-credential request endpoint
token-credential request phase
OAuth 2.0
access delegation problem
actors role
client types
confidential clients
public clients
MAC Token Profile
access token
audience parameter
vs
. Bearer token
cURL command
grant types
HMAC-SHA1
HMAC-SHA256
parameter
protected API invocation
HTTP Request-Line
resource server, validation
response_type value
refresh token
WRAP
SeeWeb resource authorization profiles (WRAP)
OAuth 2.0 device authorization grant
authorization request
authorization server
draft proposal
expires_in parameter
grant_type parameter
login flow
OAuth 2.0 Grant Typesvs.
OAuth WRAP Profiles
OAuth 2.0 MAC Token Profilevs.
OAuth 2.0
OAuth 2.0, native mobile app
access token
authorization
Client Registration profile
identity provider
inter-app
SeeInter-app communication
login flow
PKCE
URL scheme
OAuth 2.0 token validation
OpenID connect
Amazon
API security
directed identity
dynamic client registration
flow chart representation
identity provider metadata
ID token
attributes
JWE
JWS
JWT
overview
protocol flow
relying party
request attributes
user attributes
WebFinger protocol
identity provider
rel parameter
resource parameter
Optimal asymmetric encryption padding (OAEP) method