|
You are here |
nat.sakimura.org | ||
| | | | |
fhirblog.com
|
|
| | | | | If you've read the previous posts talking about OAuth2, then (hopefully) it's clear how a user can authorize an application to retrieve their data from some server without needing to expose their login credentials. The Authorization Server is the only component that needs to have the persons username and password (or whatever authorization method is... | |
| | | | |
philodev.one
|
|
| | | | | oAuth is a hard to get into because of its (necessary) complexity. A basic understanding of the standard flow and the actors involved can help to make better decisions and understand the security implications of the choices. | |
| | | | |
josiahparry.com
|
|
| | | | | ||
| | | | |
simonharling.blog
|
|
| | | The opposite of competence is incompetence, and that's something we would rather avoid. Only, in avoiding incompetence, good enough might just be enough, and that's a trap we seem to fear less, than incompetence itself. | ||