Linkedin oauth8/11/2023 ![]() Resource Server: - Authority responsible for storing resources and controlling access. OAuth Server: - Authorization & Authentication serverĤ. I want Seek (Job search portal) to access my LinkedIn profileģ. Third-Party App: - Which needs to access the resources on the resource owner’s behalf. I have a Linked In account thereby I will be the owner of all the posts, articles and personal information.Ģ. Resource Owner: - To whom resources belong to. OAuth Actors: - Below are the actors which plays a main role in the process of OAuthġ. OAuth2.0 provides a solution to all these problems by delegating the role-based authorization to each third-party app post co-ordination with the resource owner. Granular authorization controls were not present in legacy system. Resource owner could not constrict the scope of access for 3rd party application. Resource owner cannot track the access that the resources and individual third party has. Resource owner must maintain a database consist of discrete and separate set of credentials for each 3rd party application which leads to a lot of admin overheadĤ. Resource owner could not revoke a third-party’s access without affecting all third parties, changing the password and redistribute the password again. ![]() Compromise of the 3rd party app could result in its credentials also being compromised.ģ. This led to the resource owner running the risk of a third-party app performing an un-authorized operationĢ. But following risk were present in this approach: -ġ. Initially, Third-party apps used credentials provided by the resource owner to access resources on the behalf of application owner. Resource owner, Web Application, Resources and Third-party apps are the OAuth actors which perform in a well-coordinated manner to achieve the result. OAuth is a coordinating process to which all the OAuth actors trust and follows. OAuth is a framework used for facilitating resources to a third-party after completing the authentication and authorization. Introduction: - OAuth stands for Open Authorization. ![]()
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |