OpenID TechNight #6 - OpenID OAuth Hybrid

•

2 likes•1,360 views

x

by @nov

2010 5 28

OpenID OAuth Hybrid

• OpenID (OpenID Authentication 2.0)

• Identiﬁer

• OAuth

• Consumer

• Service Provider Consumer

2010 5 28

OpenID OAuth Hybrid

• OpenID (OpenID Authentication 2.0)

• Identiﬁer

• OAuth

• Consumer

• Service Provider Consumer

2
2 UX

2010 5 28

OpenID

Yahoo! US

Yahoo! ID

OP (Discovery)

(Association)
(Authentication Request)

(Authentication Response)

2010 5 28

OpenID OAuth Hybrid

Yahoo! US
Consumer
Yahoo! ID

OP (Discovery)

(Association)
(Authentication Request)

Consumer Key (& Scope)
Request Token (& Scope)

Access Token
(Authentication Response)

2010 5 28

•
• UX

• OpenID API

•
• OAuth / OpenID

• ( Ruby )
http://j.mp/rails_oauth_hybrid

2010 5 28

OpenID OAuth
2005 2006 2007 2008 2009 2010

OAuth1.0 Rev.A
Artifact Binding
Technology

OpenID 1.0 SREG 1.0 OpenID2.0 PAPE 1.0 OpenID Oauth Extension
Oauth WRAP
Attribute Contract Exchange
Exchange 1.0 Xauth.org
UX Extension
xAuth(twitter)
General trends

2010 5 28

OpenID OAuth
2005 2006 2007 2008 2009 2010

OAuth1.0 Rev.A
Artifact Binding
Technology

OpenID 1.0 SREG 1.0 OpenID2.0 PAPE 1.0 OpenID Oauth Extension
Oauth WRAP
Attribute Contract Exchange
Exchange 1.0 Xauth.org
UX Extension
xAuth(twitter)
General trends

OpenID v.Next
coming soon!! =>
OAuth 2.0

2010 5 28

More Related Content

More from Nov Matake

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Sign in with Apple

Sign in with Apple

Sign in with Apple

FIDO @ LINE - #idcon vol.24

FIDO @ LINE - #idcon vol.24

FIDO @ LINE - #idcon vol.24

W3C Web Authentication - #idcon vol.24

W3C Web Authentication - #idcon vol.24

W3C Web Authentication - #idcon vol.24

NIST SP 800-63C - Federation and Assertions (FINAL)

NIST SP 800-63C - Federation and Assertions (FINAL)

NIST SP 800-63C - Federation and Assertions (FINAL)

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

NIST SP 800-63C #idcon vol.22

NIST SP 800-63C #idcon vol.22

NIST SP 800-63C #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

ID連携入門 (実習編) - Security Camp 2016

ID連携入門 (実習編) - Security Camp 2016

ID連携入門 (実習編) - Security Camp 2016

ID連携概要 - OpenID TechNight vol.13

ID連携概要 - OpenID TechNight vol.13

ID連携概要 - OpenID TechNight vol.13

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

OpenID Connect 101 @ OpenID TechNight vol.11

OpenID Connect 101 @ OpenID TechNight vol.11

OpenID Connect 101 @ OpenID TechNight vol.11

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

OAuth認証再考からのOpenID Connect #devlove

OAuth認証再考からのOpenID Connect #devlove

OAuth認証再考からのOpenID Connect #devlove

ID & IT 2013 - OpenID Connect Hands-on

ID & IT 2013 - OpenID Connect Hands-on

ID & IT 2013 - OpenID Connect Hands-on

JWT Translation #technight

JWT Translation #technight

JWT Translation #technight

MIT-KIT Intro at #idcon sattelite

MIT-KIT Intro at #idcon sattelite

MIT-KIT Intro at #idcon sattelite

Self isssued-idp

Self isssued-idp

Self isssued-idp

IIW 16th Report at #idcon

IIW 16th Report at #idcon

IIW 16th Report at #idcon

More from Nov Matake (20)

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID ...

Sign in with Apple

Sign in with Apple

Sign in with Apple

FIDO @ LINE - #idcon vol.24

FIDO @ LINE - #idcon vol.24

FIDO @ LINE - #idcon vol.24

W3C Web Authentication - #idcon vol.24

W3C Web Authentication - #idcon vol.24

W3C Web Authentication - #idcon vol.24

NIST SP 800-63C - Federation and Assertions (FINAL)

NIST SP 800-63C - Federation and Assertions (FINAL)

NIST SP 800-63C - Federation and Assertions (FINAL)

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

OPTiM StoreにおけるSCIM & OIDC活用事例 - ID&IT 2016

NIST SP 800-63C #idcon vol.22

NIST SP 800-63C #idcon vol.22

NIST SP 800-63C #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

NIST SP 800-63-3 #idcon vol.22

ID連携入門 (実習編) - Security Camp 2016

ID連携入門 (実習編) - Security Camp 2016

ID連携入門 (実習編) - Security Camp 2016

ID連携概要 - OpenID TechNight vol.13

ID連携概要 - OpenID TechNight vol.13

ID連携概要 - OpenID TechNight vol.13

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

ミスコンとプライバシー ~ IdentityDuck誕生秘話 ~ #idcon

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014

OpenID Connect 101 @ OpenID TechNight vol.11

OpenID Connect 101 @ OpenID TechNight vol.11

OpenID Connect 101 @ OpenID TechNight vol.11

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

池澤あやかと学ぼう！: はじめてのOAuthとOpenID Connect - JICS 2014

OAuth認証再考からのOpenID Connect #devlove

OAuth認証再考からのOpenID Connect #devlove

OAuth認証再考からのOpenID Connect #devlove

ID & IT 2013 - OpenID Connect Hands-on

ID & IT 2013 - OpenID Connect Hands-on

ID & IT 2013 - OpenID Connect Hands-on

JWT Translation #technight

JWT Translation #technight

JWT Translation #technight

MIT-KIT Intro at #idcon sattelite

MIT-KIT Intro at #idcon sattelite

MIT-KIT Intro at #idcon sattelite

Self isssued-idp

Self isssued-idp

Self isssued-idp

IIW 16th Report at #idcon

IIW 16th Report at #idcon

IIW 16th Report at #idcon

Recently uploaded

Heather Hedden, Senior Consultant at Enterprise Knowledge, presented “Enterprise Knowledge Graphs: The Importance of Semantics” on May 9, 2024, at the annual Data Summit in Boston. In her presentation, Hedden describes the components of an enterprise knowledge graph and provides further insight into the semantic layer – or knowledge model – component, which includes an ontology and controlled vocabularies, such as taxonomies, for controlled metadata. While data experts tend to focus on the graph database components (RDF triple store or a label property graph), Hedden emphasizes they should not overlook the importance of the semantic layer.

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge

Intro in Product Management - Коротко про професію продакт менеджера

Intro in Product Management - Коротко про професію продакт менеджера

Intro in Product Management - Коротко про професію продакт менеджера

Join me in this session where I'll share our journey of building a fully serverless application that flawlessly managed check-ins for an event with a staggering 80 thousand registrations. We'll dive into three key strategies that made this possible. Firstly, by harnessing DynamoDB global tables, we ensured global service availability and data replication across regions, boosting performance and disaster recovery. Next, we'll explore how we seamlessly integrated real-time updates into the app using Appsync subscriptions, making the experience dynamic and engaging for users. Finally, I'll discuss how provisioned concurrency not only improved performance but also kept costs in check, highlighting the cost-effectiveness of serverless architectures. Through these strategies and the inherent scalability of serverless technology, our application effortlessly handled massive user loads without manual intervention. This session is a real world example to the power and efficiency of modern cloud-based solutions in enabling seamless scalability and robust performance with Serverless

How we scaled to 80K users by doing nothing!.pdf

How we scaled to 80K users by doing nothing!.pdf

How we scaled to 80K users by doing nothing!.pdf

Srushith Repakula

Overview of Hyperledger Foundation

Overview of Hyperledger Foundation

Overview of Hyperledger Foundation

Hyperleger Tokyo Meetup

Portal Kombat : extension du réseau de propagande russe

Portal Kombat : extension du réseau de propagande russe

Portal Kombat : extension du réseau de propagande russe

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Marcus Vechiato

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

In today’s fast-paced digital world, harnessing the power of artificial intelligence (AI) can significantly enhance productivity and creativity across various domains. With the advent of advanced language models like ChatGPT, developers, marketers, data analysts, and professionals in numerous other fields can now leverage AI-generated prompts to spark innovative ideas and streamline their workflows.

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

This our Twelfth semiannual report on the global Cryptocurrency mining industry. Bitcoin is the world’s largest special purpose supercomputer. And it is globally decentralized. Millions of nodes all run the same open-source code to secure the Bitcoin network, create value, and put new transactions onto the distributed ledger. The latest Top500 list has just been announced at the ISC 2024 conference in Hamburg, and once again the Frontier supercomputer with 1.2 Exaflops peak performance is number one on the list. If assigned to SHA-256 hashing, Frontier would provide only the equivalent hash rate of about three cabinets of the latest high-end Bitcoin mining systems, costing less than 0.1% of Frontier’s cost. Michael Saylor, Chairman of MicroStrategy, has pointed out that GPUs are two orders of magnitude slower than the 5-nanometer technology of custom ASICs used for Bitcoin mining today. He makes the point that the Bitcoin network is unassailable by all of the hyperscale computing resources combined in AWS, Google, and Microsoft Azure cloud data centers today.

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

Stephen Perrenod

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

marcuskenyatta275

What's New in Teams Calling, Meetings and Devices April 2024

What's New in Teams Calling, Meetings and Devices April 2024

What's New in Teams Calling, Meetings and Devices April 2024

Stephanie Beckett

Using IESVE for Room Loads Analysis - UK & Ireland

Using IESVE for Room Loads Analysis - UK & Ireland

Using IESVE for Room Loads Analysis - UK & Ireland

New customer? New industry? New cloud? New team? A lot to handle! How to ensure the success of the project? Start it well! I've created the 3 areas of focus at the beginning of the project that helped me in multiple roles (BA, PO, and Consultant). Learn from real-world experiences and discover how these insights can empower you to deliver unparalleled value to your customers right from the project's start.

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

AI presentation and introduction - Retrieval Augmented Generation RAG 101

AI presentation and introduction - Retrieval Augmented Generation RAG 101

AI presentation and introduction - Retrieval Augmented Generation RAG 101

Delivered by Michael Down at Gartner Data & Analytics Summit London 2024 - Your enemies use GenAI too: Staying ahead of fraud with Neo4j. Fraudsters exploit the latest technologies like generative AI to stay undetected. Static applications can’t adapt quickly enough. Learn why you should build flexible fraud detection apps on Neo4j’s native graph database combined with advanced data science algorithms. Uncover complex fraud patterns in real-time and shut down schemes before they cause damage.

Your enemies use GenAI too - staying ahead of fraud with Neo4j

Your enemies use GenAI too - staying ahead of fraud with Neo4j

Your enemies use GenAI too - staying ahead of fraud with Neo4j

The presentation underscores the strategic advantage of treating design systems not just as technical assets but as vital business components that require thoughtful management, robust planning, and strategic alignment with organizational goals. Key Points Covered: - Understanding Design Systems as Business Entities: Conceptualizing design systems as internal business entities can streamline their integration and evolution within a company. - Adoption and Expansion: Elaborating on the importance of tactical adoption across organizational structures, enhancing product suites to cater to user needs and broadening scope to mobile and content authoring solutions. - Data-Driven Development: Utilizing data insights for component development ensures that resources are allocated to create valuable, widely used features. - Financial Modeling for Design Systems: Developing sustainable funding models is crucial for long-term support and success of design systems. - Promoting Internal Buy-In: Stressing on strategies for promoting design systems within the organization to increase engagement and investment from internal stakeholders.

A Business-Centric Approach to Design System Strategy

A Business-Centric Approach to Design System Strategy

A Business-Centric Approach to Design System Strategy

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Leah Henrickson

Webinar Recording: https://www.panagenda.com/webinars/alles-neu-macht-der-mai-wir-durchleuchten-den-verbesserten-notes-eigenschaftendialog/ Haben Sie sich schon einmal über den zu kleinen Eigenschaftendialog in Notes geärgert? Mussten Sie einen Agenten oder eine Aktion erstellen, um schnell mal ein Feld zu ändern? Haben Sie jedes mal endlos nach dem zu vergleichenden Feld gesucht, nachdem Sie ein neues Dokument ausgewählt haben? Wollten Sie das verdammte Ding einfach nur größer machen? Zum Glück gibt es dafür eine Lösung – und sie ist wahrscheinlich bereits installiert! Mit dem kostenlosen panagenda Document Properties (Pro) erhalten Sie den Eigenschaftendialog, den Sie schon immer haben wollten. Größer, anpassbar, und im Volltext durchsuchbar. Sehen Sie mehrere Dokumente gleichzeitig oder vergleichen Sie mit einem Diff-Viewer. Ändern Sie beliebige Felder und haben Sie endlich eine einfache Möglichkeit, Profildokumente für alle Benutzer zu verwalten. Entdecken Sie mit HCL Ambassador Marc Thomas, wie Document Properties Ihre Arbeit vereinfachen und Sie bei der täglichen Verwendung von Domino-Anwendungen unterstützen kann – im Client oder im Designer. Sie werden es nicht bereuen! Für Sie in diesem Webinar - Was Document Properties ist, welche Editionen es gibt und wo es in Notes und Domino Designer zu finden ist - Wie Sie nach einem beliebigen Feld suchen und es bearbeiten, Dokumente vergleichen oder alle Daten per CSV exportieren können - Suchen, Bearbeiten und auch Löschen von Profildokumenten - Welche Konfigurationseinstellungen verfügbar sind, um Funktionen anzupassen - Wie Ihre Endbenutzer davon profitieren - Sehen Sie alles in einer Live-Demo

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Recently uploaded (20)

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Intro in Product Management - Коротко про професію продакт менеджера

Intro in Product Management - Коротко про професію продакт менеджера

Intro in Product Management - Коротко про професію продакт менеджера

How we scaled to 80K users by doing nothing!.pdf

How we scaled to 80K users by doing nothing!.pdf

How we scaled to 80K users by doing nothing!.pdf

Overview of Hyperledger Foundation

Overview of Hyperledger Foundation

Overview of Hyperledger Foundation

Portal Kombat : extension du réseau de propagande russe

Portal Kombat : extension du réseau de propagande russe

Portal Kombat : extension du réseau de propagande russe

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...

What's New in Teams Calling, Meetings and Devices April 2024

What's New in Teams Calling, Meetings and Devices April 2024

What's New in Teams Calling, Meetings and Devices April 2024

Using IESVE for Room Loads Analysis - UK & Ireland

Using IESVE for Room Loads Analysis - UK & Ireland

Using IESVE for Room Loads Analysis - UK & Ireland

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

AI presentation and introduction - Retrieval Augmented Generation RAG 101

AI presentation and introduction - Retrieval Augmented Generation RAG 101

AI presentation and introduction - Retrieval Augmented Generation RAG 101

Your enemies use GenAI too - staying ahead of fraud with Neo4j

Your enemies use GenAI too - staying ahead of fraud with Neo4j

Your enemies use GenAI too - staying ahead of fraud with Neo4j

A Business-Centric Approach to Design System Strategy

A Business-Centric Approach to Design System Strategy

A Business-Centric Approach to Design System Strategy

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

OpenID TechNight #6 - OpenID OAuth Hybrid

1. x by @nov 2010 5 28

2. OpenID OAuth Hybrid • OpenID (OpenID Authentication 2.0) • Identiﬁer • OAuth • Consumer • Service Provider Consumer 2010 5 28

3. OpenID OAuth Hybrid • OpenID (OpenID Authentication 2.0) • Identiﬁer • OAuth • Consumer • Service Provider Consumer 2 2 UX 2010 5 28

4. OpenID Yahoo! US Yahoo! ID OP (Discovery) (Association) (Authentication Request) (Authentication Response) 2010 5 28

5. OpenID OAuth Hybrid Yahoo! US Consumer Yahoo! ID OP (Discovery) (Association) (Authentication Request) Consumer Key (& Scope) Request Token (& Scope) Access Token (Authentication Response) 2010 5 28

6. • • UX • OpenID API • • OAuth / OpenID • ( Ruby ) http://j.mp/rails_oauth_hybrid 2010 5 28

7. OpenID OAuth 2005 2006 2007 2008 2009 2010 OAuth1.0 Rev.A Artifact Binding Technology OpenID 1.0 SREG 1.0 OpenID2.0 PAPE 1.0 OpenID Oauth Extension Oauth WRAP Attribute Contract Exchange Exchange 1.0 Xauth.org UX Extension xAuth(twitter) General trends 2010 5 28

8. OpenID OAuth 2005 2006 2007 2008 2009 2010 OAuth1.0 Rev.A Artifact Binding Technology OpenID 1.0 SREG 1.0 OpenID2.0 PAPE 1.0 OpenID Oauth Extension Oauth WRAP Attribute Contract Exchange Exchange 1.0 Xauth.org UX Extension xAuth(twitter) General trends OpenID v.Next coming soon!! => OAuth 2.0 2010 5 28