oauth tutorial - oauth2 | History of OAuth - oauth2 tutorial - oauth authentication
APIs: Application Programming Interfaces
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - oauth implicit requests and responses - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/api.png)
- Modules within a program
- Programs on a server
- Programs over local networks
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - api gateway - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/api-gateway.png)
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - oath web api - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-web-api.png)
How Web APIs Evolved
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - oath web apps - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-web-apps.png)
Then came Web Services - SOA / SOAP services
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web sevice - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/web-sevice.png)
Security for Web Services
- – Private key / public certificate pairs
- – Have certificates signed by recognized CA / RA
- – Exchange that certificate with similarly-assured certificate from partners
- – SSL/TLS Mutual Authentication
- – XML-DSIG/XML-ENC applied to SOAP documents
- TRUST partner / corporate customer to treat crypto material with care and caution
Need for more security - Evolution of OAUTH
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web sevice - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/api-client.png)
The new security model for Web APIs
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web sevice - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-2.0-webapi.png)
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web sevice - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/web-apps-api.png)
we had better require more regular and active scrutiny of the Apps’ access privileges
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web service - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/auth0.png)
…we had better require more regular and active scrutiny of the Apps’ access privileges…
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web service - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-authentication.png)
Introducing OAuth The new security model for Web APIs
- The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain “ access on its own behalf.
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web service - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-token.png)
![oauth 2.0 - oauth - oauth2 - oauth authentication , oauth token , oauth2 flow , oauth server , oauth flow , oauth2 authentication , oauth2 server , oauth refresh token , oauth authorization code - web service - what is oauth , saml vs oauth , oauth tutorial](https://wikitechy.com/tutorials/oauth/img/oauth-images/oauth-facebook.png)