Enterprise OAuth 2.0 and OpenID Connect for Developers - Udemy

OAuth 2.0 is the industry-standard protocol for authorization. Almost all enterprises today are now using an Authorization Server to protect their REST APIs or have plans to use them in the near future. This course is designed to help Software developers and Application Architects fully understand the concepts behind OAuth and become an expert in integrating their code with any OAuth 2.0 Authorization Server.

You will be able to design your applications using Microservices architecture and fully understand how security can be implemented using OAuth 2.0. The course will especially focus on enterprise applications deployed in the cloud environments right from the start. There are lectures devoted to Java and Angular implementations for OAuth Client and Resource Server but the course is designed for a broader audience with knowledge of HTTP and Web Development.

You will learn about OAuth by understanding it from many different perspectives.

• User's perspective by demonstrating a real world application using Shutterfly

• Architect's perspective by explaining the OAuth flows using a diagram

• Developer's perspective by using Postman to create and send messages to Okta and Google Authorization Servers

• Java Developer's perspective by writing our own Shutterfly application using a Java and Spring Boot Application

• Angular Developer's perspective by writing our own Shutterfly application using Angular Front End

• Desktop Developer's  perspective by understanding how to protect such applications using OAuth

• Mobile Developer's perspective by understanding how to protect Mobile applications using OAuth

• Tester's perspective by understanding how to test OAuth HTTP messages using Chrome and Postman

You will learn about the various OAuth 2.0 Grant Types, Access tokens, JWT tokens, Scopes and PKCE Extension. We will use the Google Authorization Server for explaining Social applications, Okta Authorization Server to explain Enterprise applications and in the process also understand subtle differences between Authorization Servers.

One of the big goals of this course is to understand how OAuth is used in an Enterprise and Cloud today. It's used along with SAML and LDAP together and so it's the goal of this course to explain these integrations end to end. For that reason, this course deliberately attempts to examine LDAP and SAML before exploring OAuth 2.0

You will be able to get a 360 degree view of OAuth and OpenID Connect by exploring all possible Application integration points for different Architectures.