Free Downloads
OAuth 2.0: Getting Started In Web-API Security (API University Series) (Volume 1)

This book offers an introduction to API security with OAuth 2.0 and OpenID Connect. In less than 80 pages you will gain an overview of the capabilities of OAuth. You will learn the core concepts of OAuth. You will get to know all four OAuth flows that are used in cloud solutions and mobile apps. If you have tried to read the official OAuth specification, you may get the impression that OAuth is complex. This book explains OAuth in simple terms. The different OAuth flows are visualized graphically using sequence diagrams. The diagrams allow you to see the big picture of the various OAuth interactions. This high-level overview is complemented with rich set of example requests and responses and an explanation of the technical details. In the book the challenges and benefits of OAuth are presented, followed by an explanation of the technical concepts of OAuth. The technical concepts include the actors, endpoints, tokens and the four OAuth flows. Each flow is described in detail, including the use cases for each flow. Extensions of OAuth are presented, such as OpenID Connect and the SAML2 Bearer Profile. Who should read this book? You do not have the time to read long books? This book provides an overview, the core concepts, without getting lost in the small-small details. This book provides all the necessary information to get started with OAuth in less than 80 pages. You believe OAuth is complicated? OAuth may seem complex with flows and redirects going back and forth. This book will give you clarity by introducing the seemingly complicated material by many illustrations. These illustrations clearly show all the involved interaction parties and the messages they exchange. You want to learn the OAuth concepts efficiently? This book uses many illustrations and sequence diagrams. A good diagram says more than 1000 words. You want to learn the difference between OAuth and OpenID Connect? You wonder when the two concepts are used, what they have in common and what is different between them. This book will help you answer this question. You want to use OAuth in your mobile app? If you want to access resources that are protected by OAuth, you need to get a token first, before you can access the resource. For this, you need to understand the OAuth flows and the dependencies between the steps of the flows. You want to use OAuth to protect your APIs? OAuth is perfectly suited to protect your APIs. You can learn which OAuth endpoints need to be provided and which checks need to be made within the protected APIs.

Series: API University Series

Paperback: 86 pages

Publisher: CreateSpace Independent Publishing Platform; 1 edition (January 31, 2015)

Language: English

ISBN-10: 1507800916

ISBN-13: 978-1507800911

Product Dimensions: 6 x 0.2 x 9 inches

Shipping Weight: 6.1 ounces (View shipping rates and policies)

Average Customer Review: 4.2 out of 5 stars  See all reviews (13 customer reviews)

Best Sellers Rank: #929,434 in Books (See Top 100 in Books) #198 in Books > Computers & Technology > Web Development & Design > Web Services

I bought this book from directly and never saw it "live" in a bookstore. My warning - it is a very small book. It's 70 pages long, but the font is huge and most of the pages are half empty. They really tried to make it look bigger at least at the first glance - didn't help, though.The content is OK, but you can read a Wikipedia article on OAuth instead of this book. It should have been a chapter in a book on security; by itself it looked like a joke when I got it in the mail.I am giving it 3 stars, not less, because, once again, the content is OK and it does give you OAuth overview. No code examples, just diagrams and HTTP requests, but that was enough for me. However, I still feel a bit stupid for actually paying money on something I could read up on the Internet for free.

Excellent review of the underlying components of OAuth, and the methods of deploying and using it. Love the sequence diagrams. The explanations of the differences between the pattern use cases is most helpful.

A clear explanation of OAuth and its authentication flows. It provided great descriptions of the OpenId Connect and SAML2 extensions.

Great little book. I'm tired of slogging through 500+ pages on a subject that I can learn in less than 100.

Brief explanation of OAuth but clear and straightforward.

Nothing you wont find with an online search.

The author makes no attempt to breathe any life into the subject matter. There are free articles on the internet which provide better value. It felt like I got burned on this purchase.

OAuth 2.0: Getting Started in Web-API Security (API University Series) (Volume 1) OAuth 2.0: Getting Started in API Security (API-University Series Book 1) OAuth 2.0: Introduction to API Security with OAuth 2.0 RESTful API Design: Best Practices in API Design with REST (API-University Series Book 3) Pro ASP.NET Web API Security: Securing ASP.NET Web API (Expert's Voice in .NET) Getting Started Making Metal Jewelry (Getting Started series) API Architecture: The Big Picture for Building APIs (API-University Series Book 2) Getting Started with Geese (Getting Started with... Book 4) Home Security: Top 10 Home Security Strategies to Protect Your House and Family Against Criminals and Break-ins (home security monitor, home security system diy, secure home network) Adobe ColdFusion 9 Web Application Construction Kit, Volume 1: Getting Started Twitter API: Up and Running: Learn How to Build Applications with the Twitter API Med School Rx: Getting In, Getting Through, and Getting On with Doctoring Social Security: Time for a Life of Leisure - The Guide of Secrets to Maximising Social Security Retirement Benefits and Planning Your Retirement (social ... disability, social security made simple) Python: Learn Web Scraping with Python In A DAY! - The Ultimate Crash Course to Learning the Basics of Web Scraping with Python In No Time (Web Scraping ... Python Books, Python for Beginners) Web Audio API ASP.NET Web API 2: Building a REST Service from Start to Finish The 201 on Building Web API with ASP.NET Core MVC: Book 1: Application Core Node JS: Learn Node In The Most Simple and Effective Way Possible. Learn to use Node in several ways.: With Events, Async Functions, API calls, Push Notifications, Command Line Input, Web Server Getting Started with Geographic Information Systems (5th Edition) (Pearson Prentice Hall Series in Geographic Information Scien) Echo: The Ultimate Guide to Echo and Hacking for Dummies (by echo, Alexa Kit, Prime, users guide, web services, digital media, ... (Web services, internet, hacking) (Volume 2)