Short name | Title | Year | Type | Category | Duration |
---|---|---|---|---|---|
AppAuth SDK | AppAuth – Native App SDK for OAuth 2.0 and OpenID Connect implementing modern best practices | 2018 | SDK | Application development - Integration - AppAuth | |
AuthO On Flows | 2018 | Article | OAuth - Grants | 5min | |
Barbettini Plain English | OAuth 2.0 and OpenID Connect (in plain English) – Nate Barbettini | 2018 | Video | General | 62min |
Casey's Course | Web Security: OAuth and OpenID Connect – Keith Casey | 2018 | Course | General | 86min |
Intro to JWT | Introduction to JSON Web Tokens – JWT.io | 2018 | Article | JWT - General | 6min |
OAuth on Twitter | OAuth 2.0 – @oauth_2 | 2018 | Feed | OAuth - General | |
OAuth Status Pages | OAuth Status Pages – IETF OAuth working group | 2018 | Specs | OAuth - Specification - Status | |
OIDC Federation | 2018 | Spec | OIDC - Specifiaiton - Federation | 29min | |
Parecki OAuth 2.0 Servers | OAuth 2.0 Servers – Aaron Parecki (sponsored by Okta) | 2018 | Article | OAuth - General | 3hr |
Parecki The Things | OAuth all the Things! What is OAuth 2.0? – Aaron Parecki | 2018 | Video | OAuth - General | 53min |
Spencer Deep Dive | API Security: Deep Dive into OAuth and OpenID Connect – Travis Spencer | 2018 | Article | General | 16min |
Auth with OAuth | User Authentication with OAuth 2.0 – oauth.net | 2018 | Article | OAuth - General | 18min |
Silverman's Primer | Identity, Claims, & Tokens - An OpenID Connect Primer – Micah Silverman | 2017 | Article | OIDC - General | 26min |
Broeckelmann I | When To Use Which (OAuth2) Grants and (OIDC) Flows – Robert Broeckelmann | 2017 | Article | OAuth - Grants | 10min |
Broeckelmann II | SAML2 vs JWT: Understanding OAuth2 – Robert Broeckelmann | 2017 | Article | OAuth - General | 16min |
Grassi iGov Vid | The iGov Profile of OpenID Connect – CIS 2017 – Paul Grassi | 2017 | Video | OIDC - Profile | 22min |
iGov OAuth Profile | International Government Assurance Profile for OAuth 2.0 | 2017 | Spec | OAuth - Profile | 33min |
iGov OIDC Profile | International Government Assurance Profile for OpenID Connect 1.0 | 2017 | Spec | OIDC - Profile | 24min |
Kawasaki Guide | The Simplest Guide to OAuth 2.0 – Takahiko Kawasaki | 2017 | Article | OAuth - General - Intro | 6min |
Kawasaki Flows | Diagrams And Movies Of All The OAuth 2.0 Flows – Takahiko Kawasaki | 2017 | Mix | OAuth - General | 8min |
OJOU OIDC Fed Pics | OIDC Federation in Pictures – Roland Hedberg | 2017 | Article | OIDC - Federation | 5min |
OJOU Materials | "OJOU" (OAuth2/JW*/OIDC/UMA) Course Materials – Roland Hedberg | 2017 | Repo | ||
OJOU Vids | "OJOU" (OAuth2/JW*/OIDC/UMA) Course Videos – Roland Hedberg | 2017 | Video | 308min | |
Oracle Vids | Oracle Cloud Primer Series – 9 videos covering OAuth, OIDC, and more | 2017 | Video | General | 48min |
Parecki OAuth Simplified | OAuth 2 Simplified – Aaron Parecki | 2017? | Article | OAuth - General | 24min |
Parecki 2017 | OAuth 2 Simplified (Book) – Aaron Parecki | 2017 | Book | OAuth - General | .7 lbs |
OAuth Confusion | OAuth Authorization vs Authentication | 2017 | Article | OAuth - General | 6min |
Richer Patterns | Deployment and Hosting Patterns in OAuth – Justin Richer | 2017 | Article | OAuth - Use | 9min |
Richer & Sanso 2017 | OAuth 2 in Action – Richer & Sanso | 2017 | Book | OAuth - General | 1.2 lbs |
What the Heck Okta | What the Heck is OAuth? – Okta (2017) | 2017 | Article | OAuth - General | 23min |
Bertocci 2016 | Modern Authentication with Azure Active Directory for Web Applications – Vittorio Bertocci | 2016 | Book | Application development - Integration - AAD | 1.3 lbs |
Bilbie Guide | A Guide to OAuth 2.0 Grants – Alex Bilbie | 2016 | Article | OAuth - Grants | 7min |
Kawasaki Findings | Full-Scratch Implementor of OAuth and OpenID Connect Talks About Findings – Takahiko Kawasaki | 2016 | Article | OAuth - OIDC - Implementation | 36min |
Le Deng Explains | OAuth 2 Explained – Le Deng | 2016 | Video | OAuth - General | 11min |
Schwartz's Verses | OAuth vs. SAML vs. OpenID Connect – Mike Schwartz | 2016 | Article | General | 4min |
OIDC Implementer's | 2015 | Spec | Application development - OIDC | 61min | |
Sanso Top 10 | Top 10 OAuth 2 Implementation Vulnerabilities – Antonio Sanso | 2015 | Article | OAuth - Security | 6min |
Jenkov Tutorial | OAuth 2.0 Tutorial – by Jakob Jenkov | 2014 | Article | OAuth - General | 19min |
OIDC Core | 2014 | Spec | OIDC - Specification - Core | 170min | |
RFC 6819 | OAuth 2.0 Threat Model and Security Considerations – RFC 6819 | 2013 | Spec | OAuth - Security | 175min |
Sakimura Vid | Identity, Authentication + OAuth = OpenID Connect – Nat Sakimura | 2013 | Video | General | 6min |
Boyd 2012 | Getting Started with OAuth 2.0 – Ryan Boyd | 2012 | Book | OAuth - General | .25 lbs |
Hammer Movin On | OAuth 2.0 - Looking Back and Moving On – Eran Hammer | 2012 | Video | History - OAuth | 30min |
Hammer Time | OAuth 2.0 and the Road to Hell – Eran Hammer | 2012 | Article | History - OAuth | 8min |
RFC 6749 | The OAuth 2.0 Authorization Framework – RFC 6749 | 2012 | Spec | OAuth - Specification | 195min |
Messina Reflects | Where should the OpenID Foundation go in 2011? – Chris Messina | 2011 | Article | History - OIDC | 6min |
Hammer History | OAuth History – Eran Hammer | 2009 | Article | History - OAuth | 6min |
IETF 1st OAuth BOF | IETF 73 OAuth BOF Minutes | 2008 | Article | History - OAuth | 5min |
Globus Dev Guide | ?? | Article | OAuth - Use | 13min | |
Google Playground | OAuth 2.0 Playground – Google | Live | Site | OAuth - Playground | |
Okta Playground | OAuth 2.0 Playground – sponsored by Okta | Live | Site | OAuth - Playground | |
OIDC FAQ | OpenID Connect FAQ and Q&As | ?? | Article | OIDC - General | 9min |
OneLogin on OIDC | Dev Overview of OpenID Connect – OneLogin | ?? | Article | OIDC | 6min |
ORCID Playground | Explore the ORCID API with Google OAuth Playground | Live | Tutorial | OAuth | |
Gluu | Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software | 2019 | Book | IAM topics with Gluu as example, including LDAP, Shib, OAuth 2 |
Notes:
- Estimated durations (duration column) are drawn from the materials themselves or using read-o-meter. Book weights are from Amazon.
- Some publish dates (year column) are best guesses or estimates based on activity in related repositories.