[B! OAuth] braitomã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

braitom id:braitom

OAuthã«é–¢ã™ã‚‹braitomã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (33)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

ä¸–ç•Œä¸€ã‚ã‹ã‚Šã¿ã®æ·±ã„OAuthå…¥é–€
ä¸–ç•Œä¸€ã‚ã‹ã‚Šã¿ã®æ·±ã„OAuthå…¥é–€
braitom 2021/05/15
å¤§ä½œã ã€‚

OAuth
ãƒªãƒ³ã‚¯
OAuth 2.0 èªå¯ã‚³ãƒ¼ãƒ‰ãƒ•ãƒãƒ¼+PKCE ã‚’ã‚·ãƒ¼ã‚±ãƒ³ã‚¹å›³ã§ç†è§£ã™ã‚‹
ã¯ã˜ã‚ã« OAuth 2.0 ã®ãƒ•ãƒãƒ¼ã‚’ã‚·ãƒ¼ã‚±ãƒ³ã‚¹å›³ã§èª¬æ˜Žã—ãŸWebä¸Šã®è¨˜äº‹ã‚„æ›¸ç±ã‚’ä½•åº¦ã‹è¦‹ã‹ã‘ãŸã“ã¨ãŒã‚ã‚Šã¾ã™ãŒã€ ãƒ•ãƒãƒ¼ã®æ¦‚è¦ã«åŠ ãˆã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚„èªå¯ã‚µãƒ¼ãƒãƒ¼å´ã§ã©ã†ã„ã£ãŸãƒ‘ãƒ©ãƒ¡ãƒ¼ã‚¿ã‚’å…ƒã«ä½•ã‚’æ¤œè¨¼ã—ã¦ã„ã‚‹ã®ã‹ã‚‚ä¸€é€£ã®ãƒ•ãƒãƒ¼ã¨ã—ã¦ç†è§£ã—ãŸã‹ã£ãŸ RFC 7636 Proof Key for Code Exchange (PKCE) ã‚‚å«ã‚ãŸæµã‚Œã‚’æ•´ç†ã—ãŸã‹ã£ãŸ ã¨ã„ã†ãƒ¢ãƒãƒ™ãƒ¼ã‚·ãƒ§ãƒ³ãŒã‚ã‚Šã€è‡ªåˆ†ã§ã‚·ãƒ¼ã‚±ãƒ³ã‚¹å›³ã‚’æ›¸ããªãŒã‚‰æµã‚Œã‚’æ•´ç†ã—ã¦ã¿ãŸã€ã¨ã„ã†è¶£æ—¨ã§ã™ã€‚ è¨˜äº‹ã®å‰æã‚„æ³¨æ„äº‹é … OAuth 2.0 ã®å„ç¨®ãƒ•ãƒãƒ¼ã®ã†ã¡ã€èªå¯ã‚³ãƒ¼ãƒ‰ãƒ•ãƒãƒ¼ã®ã¿å–ã‚Šä¸Šã’ã¦ã„ã¾ã™ èªå¯ã‚³ãƒ¼ãƒ‰ãƒ•ãƒãƒ¼ã¨ã¯ãªã«ã‹ã€PKCE ã¨ã¯ãªã«ã‹ã¨ã„ã†èª¬æ˜Žã¯å‰²æ„›ã—ã¦ã„ã¾ã™ æ¦‚è¦ã«ã¤ã„ã¦ã€å€‹äººçš„ã«ã¯ã“ã¡ã‚‰ã®å‹•ç”»ãŒéžå¸¸ã«ã‚ã‹ã‚Šã‚„ã™ã‹ã£ãŸã§ã™: OAuth & OIDC å…¥é–€ç·¨ by #authlete - YouTube èªå¯ã‚³ãƒ¼ãƒ‰ãƒ•
braitom 2020/12/30
OAuth
ãƒªãƒ³ã‚¯
NextAuth.js for client-side authentication in Next.js | LogRocket Blog
Ejiro Asiuwhu Software engineer with a drive for building highly scala ble and performant web applications. Heavily interested in module federation, micro frontends, state machines, TDD, and system designs. Big on web performance and optimization, advanced component design patterns, a11y, SSR, SSG, ISR, and state management. Expert at crafting highly reusa ble TypeScript-heavy component libraries. E
braitom 2020/12/25
Next.jsç”¨ã®èªè¨¼ãƒ©ã‚¤ãƒ–ãƒ©ãƒªNextAuth.jsã«ã¤ã„ã¦ã€‚GitHub OAuthã€Google OAuthã€Facebook OAuthã‚¢ãƒ—ãƒªã®ä½œã‚Šæ–¹ãŒèª¬æ˜Žã•ã‚Œã¦ã„ã‚‹ã€‚

OAuth

next.js
ãƒªãƒ³ã‚¯
OAuth 2.0 Security Best Current Practice
OAuth 2.0 Security Best Current Practice Abstract This document describes best current security practice for OAuth 2.0. It updates and extends the OAuth 2.0 Security Threat Model to incorporate practical experiences gathered since OAuth 2.0 was published and covers new threats relevant due to the broader application of OAuth 2.0.Â¶ Status of This Memo This Internet-Draft is submitted in full confor
braitom 2020/05/07
â€œThis document describes best current security practice for OAuth 2.0.â€

OAuth

security
ãƒªãƒ³ã‚¯
An Illustrated Guide to OAuth and OpenID Connect
In the â€œstone ageâ€ days of the Internet, sharing information between services was easy. You simply gave your username and password for one service to another so they could login to your account and grab whatever information they wanted! Yikes! You should never be required to share your username and password, your credentials, to another service. Thereâ€™s no guarantee that an organization will keep
braitom 2019/10/26
OAuthã¨OpenID Connectã‚’æ¼«ç”»ã¿ãŸã„ãªã‚¤ãƒ©ã‚¹ãƒˆã‚’ä½¿ã£ã¦åˆ†ã‹ã‚Šã‚„ã™ãè§£èª¬ã—ã¦ã„ã‚‹

OAuth

OpenIDConnect
ãƒªãƒ³ã‚¯
Home - Authlete
â€œOAuth/OIDC Component as a Serviceâ€ Authlete's APIs are carefully crafted to focus on the core of OAuth 2.0 / OpenID Connect (OIDC). You can choose to build a complete OAuth/OIDC server with Authlete, or simply integrate Authlete with existing service components such as identity and access management (IAM) and API gateways. Just Forward OAuth/OIDC Requests to Authlete You don't have to evaluate cl
braitom 2019/07/15
OAuthã¨OpenID Connectãƒ—ãƒãƒã‚¤ãƒ€ãƒ¼ã‚µãƒ¼ãƒ“ã‚¹ã€‚

OAuth

OpenID Connect
ãƒªãƒ³ã‚¯
OAuth 2.0 ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆèªè¨¼ - Qiita
ã‚µãƒ¼ãƒãƒ¼ã¯ã€å—ã‘å–ã£ãŸã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆè¨¼æ˜Žæ›¸ã®ä¸»ä½“è˜åˆ¥æƒ…å ±ãŒäº‹å‰ç™»éŒ²ã•ã‚Œã¦ã„ã‚‹ã‚‚ã®ã¨ä¸€è‡´ã™ã‚‹ã“ã¨ã‚’ç¢ºèªã—ã€ã‚‚ã£ã¦ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆèªè¨¼ã¨ã—ã¾ã™ã€‚ ã“ã®ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆèªè¨¼æ–¹å¼ã«ã¯ tls_client_auth ã¨ã„ã†åå‰ãŒä¸Žãˆã‚‰ã‚Œã¦ã„ã¾ã™ï¼ˆMTLS, 2.1.1. PKI Method Metadata Valueï¼‰ã€‚ ãªãŠã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆè¨¼æ˜Žæ›¸ã«ã¯ OAuth 2.0 ã®æ–‡è„ˆã«ãŠã‘ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆ ID ã¯å…¥ã£ã¦ã„ãªã„ã®ã§ã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆè¨¼æ˜Žæ›¸ã ã‘ã§ã¯ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚’ç‰¹å®šã™ã‚‹ã“ã¨ã¯ã§ãã¾ã›ã‚“ã€‚ãã®ãŸã‚ã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆè¨¼æ˜Žæ›¸ã‚’ç”¨ã„ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆèªè¨¼ã‚’ãŠã“ãªã†éš›ã¯ã€åˆ¥é€”ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆ ID ã‚’ãƒªã‚¯ã‚¨ã‚¹ãƒˆã«å«ã‚ã‚‹å¿…è¦ãŒã‚ã‚Šã¾ã™ã€‚é€šå¸¸ã¯ client_id ãƒªã‚¯ã‚¨ã‚¹ãƒˆãƒ‘ãƒ©ãƒ¡ãƒ¼ã‚¿ãƒ¼ãŒä½¿ç”¨ã•ã‚Œã¾ã™ã€‚ 1.8. self_signed_tls_client_auth ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆè¨¼æ˜Žæ›¸ã‚’ç”¨ã„ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆèªè¨¼ã«ãŠã„ã¦ã€PKI
braitom 2019/07/15
OAuth
ãƒªãƒ³ã‚¯
ãƒã‚¤ãƒ†ã‚£ãƒ–ã‚¢ãƒ—ãƒªã§ OAuth 2.0 ã‚’å®‰å…¨ã«ä½¿ã†ãŸã‚ã® OAuth æ‹¡å¼µ
ï¼ˆæ–°å…ƒå·ãŒç™ºè¡¨ã•ã‚Œã¾ã—ãŸãã€‚ã„ã‚‰ã™ã¨ã‚„ ã•ã‚“ä»•äº‹æ—©ã„.....!ï¼‰ æ–°ç¤¾ä¼šäººãƒ»å¦ç”Ÿã®çš†ã•ã¾ã€å¾¡å…¥ç¤¾ãƒ»å¾¡å…¥å¦ãŠã‚ã§ã¨ã†ã”ã–ã„ã¾ã™ï¼ ã¯ã˜ã‚ã¾ã—ã¦ã€‚ãƒ—ãƒ©ãƒƒãƒˆãƒ•ã‚©ãƒ¼ãƒ äº‹æ¥æœ¬éƒ¨ã® Kikuchi ã§ã™ã€‚ æ™®æ®µã¯ Cloud IoT OS ã®ã‚¢ã‚«ã‚¦ãƒ³ãƒˆç®¡ç†ãƒ»èªè¨¼ãƒ»æ¨©é™ç®¡ç†å‘¨ã‚Šã®æ©Ÿèƒ½æ¤œè¨Žã‚„è¨è¨ˆãƒ»é–‹ç™ºã‚’ã‚„ã£ã¦ã„ã¾ã™ã€‚ ä¸»ãªé–‹ç™ºè¨€èªž ã¯ Rust ã§ã¯ãªã Ruby ã§ã™ã€‚ Object#tap ã¨ã‹å¯æ„›ã„ã§ã™ã‚ˆãã€‚ ã•ã¦ã€å°‘ã—å‰ã®ã“ã¨ã§ã™ãŒã€OpenID TechNight #16 ~ OpenID Connect 5å‘¨å¹´è¨˜å¿µ ã¨ã„ã†ã‚¤ãƒ™ãƒ³ãƒˆã§ã€ã€ŒOPTiM ã‚µãƒ¼ãƒ“ã‚¹ã§ã® OAuth 2.0/OpenID Connect ã¨å‘¨è¾ºæŠ€è¡“ã®æ´»ç”¨äº‹ä¾‹ã€ã¨ã„ã†ãƒ†ãƒ¼ãƒžã§ Lightning Talks ã‚’ã•ã›ã¦ã„ãŸã ãã¾ã—ãŸã€‚ LT ã¨ã„ã†ã“ã¨ã‚‚ã‚ã‚Šæ™‚é–“ãŒé™ã‚‰ã‚Œã¦ã„ãŸãŸã‚ã€ä»Šå›žã¯ãƒã‚¿è½ã¡ã—ãŸå†…å®¹ã‚’ã”ç´¹ä»‹ã—ã¦ã„ã“ã†ã‹
braitom 2019/04/03
ãƒã‚¤ãƒ†ã‚£ãƒ–ã‚¢ãƒ—ãƒªã«ãŠã‘ã‚‹OAuth 2.0ã®èªå¯ã‚³ãƒ¼ãƒ‰æ¨ªå–ã‚Šæ”»æ’ƒã«ã¤ã„ã¦ã€‚Custom URL Schemeã‚’Redirect URIã«ç”¨ã„ã‚‹å ´åˆã®æ¬ é™¥ã€ã“ã‚Œã‚’é˜²ããŸã‚ã®OAuth PKCEã«ã¤ã„ã¦ã€‚

OAuth

security
ãƒªãƒ³ã‚¯
ãƒžã‚¤ã‚¯ãƒã‚µãƒ¼ãƒ“ã‚¹æ™‚ä»£ã®èªè¨¼ã¨èªå¯ - AWS Dev Day Tokyo 2018 #AWSDevDay
ãƒžã‚¤ã‚¯ãƒã‚µãƒ¼ãƒ“ã‚¹ãŒè©±é¡Œã‚’é›†ã‚ã€ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã®æ€¥é€Ÿãª API åŒ–ãŒé€²ã‚“ã§ã„ã¾ã™ã€‚ èªè¨¼ã‚„èªå¯ã¯ã€ä¸»ã«ã‚¨ãƒ³ãƒ‰ãƒ¦ãƒ¼ã‚¶ã¨ã‚·ã‚¹ãƒ†ãƒ ã®é–“ã®å•é¡Œã ã¨èªè˜ã•ã‚Œã¾ã™ãŒã€ä»Šã‚„ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆé–“ã®ã‚µãƒ¼ãƒ“ã‚¹å‘¼ã³å‡ºã—ã«ãŠã„ã¦ã‚‚é‡è¦ãªå½¹å‰²ã‚’æ‹…ã£ã¦ã„ã¾ã™ã€‚ è¤‡é›‘ã«å…¥ã‚Šçµ„ã‚“ã ãƒžã‚¤ã‚¯ãƒã‚µãƒ¼ãƒ“ã‚¹é–“ã®èªè¨¼ã¨èªå¯ã«ã¤ã„ã¦ã€å®Ÿéš›ã«é–‹ç™ºã—ã¦ã„ã‚‹ API ãƒ—ãƒ©ãƒƒãƒˆãƒ•ã‚©ãƒ¼ãƒ ã®å®Ÿä¾‹ã‚’å…ƒã«ã€å®Ÿè·µçš„ãªçŸ¥è¦‹ã‚’ãŠä¼ãˆã—ã¾ã™ã€‚Read less
braitom 2018/11/05
èªè¨¼

SSO

OAuth
ãƒªãƒ³ã‚¯
GitHub - MrSwitch/hello.js: A Javascript RESTFUL API library for connecting with OAuth2 services, such as Google+ API, Facebook Graph and Windows Live Connect
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
braitom 2018/05/22
â€œA Javascript RESTFUL API library for connecting with OAuth2 services, such as Google+ API, Facebook Graph and Windows Live Connect â€

javascript

OAuth
ãƒªãƒ³ã‚¯
ã‚¢ãƒ—ãƒªé–‹ç™ºã§çŸ¥ã£ã¦ãŠããŸã„èªè¨¼æŠ€è¡“ - OAuth 1.0 + OAuth 2.0 + OpenID Connect -
ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³é–‹ç™ºã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ãŒã€OAuth 1.0 ã‚„ OAuth 2.0ã€ãŠã‚ˆã³ OpenID Connect ã‚’æ´»ç”¨ã—ãŸãƒ¦ãƒ¼ã‚¶èªå¯ã¨èªè¨¼æ©Ÿèƒ½ã‚’å®Ÿè£…ã™ã‚‹ã«ã‚ãŸã£ã¦ã€ã„ã‚ã„ã‚èª¿ã¹ãŸæƒ…å ±ã‚’ãƒ™ãƒ¼ã‚¹ã«ä½œæˆã—ãŸã‚‚ã®ã§ã™ã€‚ ã“ã‚Œã‹ã‚‰èªå¯ãƒ»èªè¨¼æŠ€è¡“ã‚’å¦ã³ãŸã„ã¨ã„ã†ã€ç‰¹ã«ã‚¢ãƒ—ãƒªé–‹ç™ºã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã®åŠ©ã‘ã«ãªã‚Œã°å¹¸ã„ã§ã™ã€‚Read less
braitom 2018/03/29
OAuth

OpenID

èªè¨¼
ãƒªãƒ³ã‚¯
OpenID Connectãƒ¦ãƒ¼ã‚¹ã‚±ãƒ¼ã‚¹ã€OAuth 2.0ã®é•ã„ãƒ»å…±é€šç‚¹ã¾ã¨ã‚
OpenID Connectæ¦‚è¦ OpenID Connectã‚’ã²ã¨è¨€ã§èª¬æ˜Žã™ã‚‹ã¨ã€ OAuth 2.0 ï¼‹ Identity Layer ï¼ OpenID Connect ã¨ã„ã†è¡¨ç¾ãŒæœ€ã‚‚ãµã•ã‚ã—ã„ã€‚ OpenID Connectã¯ã€ã€ŒOAuth 2.0ã‚’ä½¿ã£ã¦IDé€£æºã‚’ã™ã‚‹éš›ã«ã€OAuth 2.0ã§ã¯æ¨™æº–åŒ–ã•ã‚Œã¦ã„ãªã„æ©Ÿèƒ½ã§ã€ã‹ã¤IDé€£æºã«ã¯å…±é€šã—ã¦å¿…è¦ã¨ãªã‚‹æ©Ÿèƒ½ã‚’æ¨™æº–åŒ–ã—ãŸã€OAuth 2.0ã®æ‹¡å¼µä»•æ§˜ã®ä¸€ã¤ã§ã‚ã‚‹ã€‚ OpenID Connectç™»å ´ä»¥å‰ã¯ã€OAuth 1.0ï¼2.0ãƒ™ãƒ¼ã‚¹ã®IDé€£æºã®ä»•çµ„ã¿ãŒTwitterã‚„Facebookãªã©ã®å·¨å¤§SNSã‹ã‚‰æä¾›ã•ã‚Œã€äººæ°—ã‚’åšã—ãŸã€‚ã“ã‚Œã‚‰ã®ä»•çµ„ã¿ã¯ä»Šã§ã‚‚åºƒãåˆ©ç”¨ã•ã‚Œã¦ã„ã‚‹ã€‚ ä¸€æ–¹ã§ã€OpenID Connectã®1ã¤å‰ã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã®OpenID 2.0ã§ã¯ã€IDæƒ…å ±ã®é€£æºã¯ã§ãã‚‹ã‚‚ã®ã®APIé€£æºã«ã¯åˆ©ç”¨ã§ããªã„ãªã©ã€ãƒ‡ãƒ™ãƒãƒƒãƒ‘ãƒ¼ã«å¼·
braitom 2018/03/11
OpenID Connectã¨OAuth 2.0ã®é•ã„ã€OpenID Connectã®ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚¿ã‚¤ãƒ—åˆ¥ã®ãƒ¦ãƒ¼ã‚¹ã‚±ãƒ¼ã‚¹ãŒãƒ•ãƒãƒ¼å›³ã§è§£èª¬ã•ã‚Œã¦ã„ã‚‹ã€‚

OAuth

OpenID Connect
ãƒªãƒ³ã‚¯
OAuth that just works.
Integrate 100+ OAuth providers in minutes. Setup your keys, install oauth.js, and you are ready to play !
braitom 2018/01/09
OAuthãƒ—ãƒãƒã‚¤ãƒ€ãƒ¼ã€‚100ä»¥ä¸Šã®ãƒ—ãƒãƒã‚¤ãƒ€ãƒ¼ã«å¯¾å¿œã€‚JavaScriptã€iOSãªã©ã®SDKã®æä¾›ã‚‚ã‚ã‚Šã€‚$19/monthã‹ã‚‰ã€‚

OAuth

oauth.io
ãƒªãƒ³ã‚¯
GitHub - bitly/oauth2_proxy: A reverse proxy that provides authentication with Google, Github or other provider
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
braitom 2017/12/16
â€œA reverse proxy that provides authentication with Google, Github or other providerâ€

OAuth

google

github
ãƒªãƒ³ã‚¯
æ‰‹ã£å–ã‚Šæ—©ãã‚¦ã‚§ãƒ–ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã«OAuth2èªè¨¼ã‚’å°Žå…¥ã™ã‚‹ - ãã®æ‰‹ã®å¹³ã¯å°»ã‚‚ã¤ã‹ã‚ã‚‹ã•
bitly/oauth2_proxyã‚’ç”¨ã„ã¦ï¼Œã‚¦ã‚§ãƒ–ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã«æ‰‹ã£å–ã‚Šæ—©ãOAuth2èªè¨¼ã‚’å°Žå…¥ã™ã‚‹ã¨ã„ã†è©±ã§ã™ï¼Ž oauth2_proxyã¯è‰¯ã„æ„Ÿã˜ã§OAuth2ã«ã‚ˆã‚‹èªè¨¼ã‚’è‚©ä»£ã‚ã‚Šã—ã¦ãã‚Œã‚‹å›ã§ï¼Œä½•ã‚‰ã‹ã®ãƒªãƒãƒ¼ã‚¹ãƒ—ãƒã‚ã‚·ã®èªè¨¼æ©Ÿæ§‹ã¨çµ„ã¿åˆã‚ã›ã¦åˆ©ç”¨ã™ã‚‹ã¨ç°¡å˜ã«OAuth2ãƒã‚°ã‚¤ãƒ³ã‚’å®Ÿç¾ã™ã‚‹ã“ã¨ãŒã§ãã¾ã™ï¼Ž ä»Šå›žã¯ä¾‹ã¨ã—ã¦Kibanaã«Googleã®OAuth2ãƒã‚°ã‚¤ãƒ³ã‚’å°Žå…¥ã—ã¦ã¿ãŸã„ã¨æ€ã„ã¾ã™ï¼Ž æ§‹æˆ Kibana bitly/oauth2_proxy nginx +------+ +-------+ +--------------+ +--------+ | | | | ----auth----> | | | | | user | --request--> | nginx | | oauth2_proxy | <--auth--> | Google | | | | | <--
braitom 2017/12/16
oauth2_proxyã®ä½¿ã„æ–¹ã€‚ãƒªãƒãƒ¼ã‚¹ãƒ—ãƒã‚ã‚·ã®èªè¨¼æ©Ÿæ§‹ã¨çµ„ã¿åˆã‚ã›ã‚‹ã“ã¨ã§ç°¡å˜ã«OAuth2ãƒã‚°ã‚¤ãƒ³ãŒå®Ÿç¾ã§ãã‚‹ã€‚ã“ã‚Œã¯ã‚ã¡ã‚ƒãã¡ã‚ƒä¾¿åˆ©ãªã®ã§ã¯ã€‚

OAuth

proxy
ãƒªãƒ³ã‚¯
iOS 11, Privacy and Single Sign On
A quick note â€” all of my future posts will be published on my dedicated website and this publication is no longer being updated. Thanks for reading! As much as I love open source software, I think an angel gets its wings whenever Cupertino & Friendsâ„¢ obsoletes a library in any of my projects. The thrill of deleting something in a pod file generally exceeds the initial glee one might experience whe
braitom 2017/07/19
iOS11ã§è¿½åŠ ã•ã‚ŒãŸSFAuthenticationSessionã«ã¤ã„ã¦

iOS 11

OAuth
ãƒªãƒ³ã‚¯
GitHub - lipp/login-with: Stateless login-with microservice for OAuth
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
braitom 2017/07/08
â€œStateless login-with microservice for OAuth â€

microservice

OAuth
ãƒªãƒ³ã‚¯
OAuth 2.0 ã‚’ã‹ã¿ãã ã
æ—¥çµŒé›»åç‰ˆã«ãŠã‘ã‚‹ãƒªã‚¢ãƒ«ã‚¿ã‚¤ãƒ ãƒ¬ã‚³ãƒ¡ãƒ³ãƒ‰ã‚·ã‚¹ãƒ†ãƒ é–‹ç™ºã®äº‹ä¾‹ç´¹ä»‹/nikkei-realtime-recommender-system
braitom 2017/06/06
OAuth2.0ã®ä»•æ§˜ã¨ä»•çµ„ã¿ã«ã¤ã„ã¦ã¾ã¨ã‚ã‚‰ã‚Œã¦ã„ã‚‹ã€‚å›³ã§ãƒ•ãƒãƒ¼ãŒæ›¸ã‹ã‚Œã¦ã„ã¦åˆ†ã‹ã‚Šã‚„ã™ã„ã€‚

OAuth
ãƒªãƒ³ã‚¯
OAuth 2.0 å…¨ãƒ•ãƒãƒ¼ã®å›³è§£ã¨å‹•ç”» - Qiita
RFC 6749 (The OAuth 2.0 Authorization Framework) ã§å®šç¾©ã•ã‚Œã¦ã„ã‚‹ 4 ã¤ã®èªå¯ãƒ•ãƒãƒ¼ã€ãŠã‚ˆã³ã€ãƒªãƒ•ãƒ¬ãƒƒã‚·ãƒ¥ãƒˆãƒ¼ã‚¯ãƒ³ã‚’ç”¨ã„ã¦ã‚¢ã‚¯ã‚»ã‚¹ãƒˆãƒ¼ã‚¯ãƒ³ã®å†ç™ºè¡Œã‚’å—ã‘ã‚‹ãƒ•ãƒãƒ¼ã®å›³è§£åŠã³å‹•ç”»ã§ã™ã€‚å‹•ç”»ã¯ YouTube ã¸ã®ãƒªãƒ³ã‚¯ã¨ãªã£ã¦ã„ã¾ã™ã€‚ English version: Diagrams And Movies Of All The OAuth 2.0 Flows è¿½è¨˜ (2019-07-02) èªå¯æ±ºå®šã‚¨ãƒ³ãƒ‰ãƒã‚¤ãƒ³ãƒˆã‹ã‚‰ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã«èªå¯ã‚³ãƒ¼ãƒ‰ã‚„ã‚¢ã‚¯ã‚»ã‚¹ãƒˆãƒ¼ã‚¯ãƒ³ã‚’æ¸¡ã™æ–¹æ³•ã«ã¤ã„ã¦ã¯ã€åˆ¥è¨˜äº‹ã€ŽOAuth 2.0 ã®èªå¯ãƒ¬ã‚¹ãƒãƒ³ã‚¹ã¨ãƒªãƒ€ã‚¤ãƒ¬ã‚¯ãƒˆã«é–¢ã™ã‚‹èª¬æ˜Žã€ã§è§£èª¬ã—ã¦ã„ã¾ã™ã®ã§ã€ã”å‚ç…§ãã ã•ã„ã€‚ è¿½è¨˜ï¼ˆ2020-03-20ï¼‰ ã“ã®è¨˜äº‹ã®å†…å®¹ã‚’å«ã‚€ã€ç†è€…æœ¬äººã«ã‚ˆã‚‹ã€ŽOAuth & OIDC å…¥é–€ç·¨ã€è§£èª¬å‹•ç”»ã‚’å…¬é–‹ã—ã¾ã—ãŸï¼ 1. èªå¯ã‚³ãƒ¼ãƒ‰ãƒ•ãƒãƒ¼ RF
braitom 2017/04/28
OAuth
ãƒªãƒ³ã‚¯
OAuthã§ã€Œè¨˜åå¼ã€ãƒˆãƒ¼ã‚¯ãƒ³ã‚’ä½¿ã†ã‚‚ã†ä¸€ã¤ã®æ–¹æ³•
ã¿ãªã•ã¾ã”ç„¡æ²™æ±°ã—ã¦ãŠã‚Šã¾ã™ã€‚ æ¯Žå¹´ã€4æœˆ1æ—¥ã«ã¯ã€ã‚¸ãƒ§ãƒ¼ã‚¯ã ã‘ã©å®Ÿã¯ä½¿ãˆã‚‹ã‹ã‚‚ãªè¦æ ¼ã‚’æ›¸ã“ã†ã¨ã—ã¦ã„ã‚‹ã®ã§ã™ãŒã€ä»Šå¹´ã‚‚æ›¸ã‘ãšã«ã„ã¤ã®é–“ã«ã‚„ã‚‰4æœˆã‚‚3åˆ†ã®1ãŒéŽãŽã¦ã—ã¾ã„ã¾ã—ãŸã€‚çµå±€ã®ã¨ã“ã‚ã€ä»Šå¹´ã¯ä½•ã«å¿™ã—ãã—ã¦ã„ãŸã‹ã¨ã„ã†ã¨ã€OAuthã§ã€Œè¨˜åå¼ã€ãƒˆãƒ¼ã‚¯ãƒ³ã‚’ä½¿ã†æ–¹æ³•ã‚’è¦æ ¼åŒ–ã—ã‚ˆã†ã¨ã—ã¦ã„ã¦æ™‚é–“ãŒçµŒã£ã¦ã—ã¾ã„ã¾ã—ãŸã€‚ ã€Œè¨˜åå¼ã€ã£ã¦ä½•ã®ã“ã¨ã‚„ã‚‰ã¨æ€ã„ã¾ã™ã‚ˆãï¼Ÿèª¬æ˜Žã—ã¾ã—ã‚‡ã†ã€‚ é€šå¸¸ã®OAuthã®ãƒˆãƒ¼ã‚¯ãƒ³ã¯ã€Œãƒ™ã‚¢ãƒ©ï¼ˆbearerï¼‰ãƒ»ãƒˆãƒ¼ã‚¯ãƒ³ã€ã¨è¨€ã„ã¾ã™ã€‚ãƒ™ã‚¢ãƒ©(bearer)ã¨ã¯ã€ã€Œbear (æŒã£ã¦ããŸï¼‰ï¼‹ erï¼ˆäººï¼‰ã€ã§ã™ã®ã§ã€ã€ŒæŒå‚äººã€ã¨ãªã‚Šã¾ã™ã€‚ãƒˆãƒ¼ã‚¯ãƒ³ã‚‚æ—¥æœ¬ã§ã¯é¦´æŸ“ã¿ã®ãªã„å˜èªžã§ã™ãŒã€ã“ã‚Œã¯ã€Œåˆ‡ç¬¦ã€ã®ã“ã¨ã§ã™ã€‚æ˜”ã®åœ°ä¸‹é‰„ãªã©ã§ã¯ã€åˆ‡ç¬¦ã®ä»£ã‚ã‚Šã«ã€Œãƒˆãƒ¼ã‚¯ãƒ³ã€ã¨ã„ã†ã‚³ã‚¤ãƒ³ã‚’æ”¹æœæ©Ÿã«å…¥ã‚Œã¦é€šéŽã—ã¦ã„ã¾ã—ãŸã€‚ä»Šã§ã‚‚ãƒˆãƒãƒ³ãƒˆã®åœ°ä¸‹é‰„ãªã©ã¯ãã†ã§ã™ã€‚ã§ã™ã‹ã‚‰ã€ãƒ™ã‚¢ãƒ©ãƒ»ãƒˆãƒ¼ã‚¯ãƒ³ã¨è¨€ã†ã¨é›£ã—ãæ„Ÿã˜
braitom 2017/04/13
èˆˆå‘³æ·±ã„

OAuth
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸