These days you see this everywhere
i.e. different ways to login to your website. In this post I plan to have a closer look at this.
What is OAuth ?
It stands for Open Authorization.
Its a framework for two websites to talk to one another. It is a security protocol that enables users to grant third-party access to their web resources without sharing their passwords.
It helps one to deal with
What are tokens ?
They are kind of alpha numeric strings
Why Not Use Username and passwords instead of tokens ?
Answer : To give specific access instead of full acess
After some time or on some other conditions the access to these tokens can be revoked.
There are like
But Passport (Node.js) has strategy to deal with all this
https://hueniverse.com/introducing-oauth-2-0-b5681da60ce2
i.e. different ways to login to your website. In this post I plan to have a closer look at this.
What is OAuth ?
It stands for Open Authorization.
Its a framework for two websites to talk to one another. It is a security protocol that enables users to grant third-party access to their web resources without sharing their passwords.
It helps one to deal with
- Authentication : User Sign In
- Authorization : Secured Data : granting access to my data for this website
What are tokens ?
They are kind of alpha numeric strings
Why Not Use Username and passwords instead of tokens ?
Answer : To give specific access instead of full acess
After some time or on some other conditions the access to these tokens can be revoked.
There are like
- Access Tokens
- Refresh Tokens
But Passport (Node.js) has strategy to deal with all this
- Passport-Google
- Passport-Twitter
- etc
https://hueniverse.com/introducing-oauth-2-0-b5681da60ce2
