How To's

January 17, 2020 Konstantin Lapine

An important security consideration in building a server-side OAuth 2.0 client is leakage of access tokens at the resource server. In this writing, we will discuss a mitigation technique related to this threat based on the use of resource-specific access tokens, and introduce a JavaScript library for implementing this approach in the Node.js environment. Basic knowledge of the OAuth 2.0 framework will be helpful to and is expected of the reader.

January 04, 2020 Konstantin Lapine

Easy and secure implementation of the authorization code grant in a Node.js application with resource-specific access tokens support.

September 24, 2019 Konstantin Lapine

Additional steps for providing SSO experience when building OAuth 2.0 clients with the AppAuth SDK for iOS.

August 13, 2019 Laetitia Ellison

Instructions for using AM to implement CIBA

June 26, 2019 Jake Feasel

Using Service Workers to build an identity proxy for your JS apps