|
You are here |
stack-auth.com | ||
| | | | |
blog.doyensec.com
|
|
| | | | | Common OAuth Vulnerabilities | |
| | | | |
aaronparecki.com
|
|
| | | | | This post describes OAuth 2.0 in a simplified format to help developers and service providers implement the protocol. | |
| | | | |
www.arneswinnen.net
|
|
| | | | | [AI summary] A security researcher details how Airbnb was vulnerable to an authentication bypass attack that combined login CSRF with an open redirect flaw to steal OAuth tokens via Facebook and Google, earning a $5,000 bounty after the issues were fixed in 2016. | |
| | | | |
code.sgo.to
|
|
| | | [AI summary] A post simplifying the OpenID Connect Protocol using a simulated instant messaging conversation between a user, a relying party, and an identity provider. | ||