Overview
This course focuses on configuring an OAuth server to protect an API using OAuth access tokens. By the end of the lab, you will be able to adjust token lifetimes, create custom scopes, add custom claims to JWT access tokens, and understand token validation. The teaching method involves hands-on labs. The course is intended for developers interested in securing APIs using OAuth.
Syllabus
Intro
OAuth Concepts
Access Tokens
Reference Tokens
Octaves Access Tokens
Session Overview
Register a Confidential Client
Configure the Token Lifetime
Changing the Token Lifetime by Default
Token Lifetime Limits
Token Validation
Token Lifetime
Risk Assessment
Create a Rule
Create a New Scope
Add the Scope to the Request
Make a Policy
Run in Order
Require Consent
Custom Claims
Group Claims
Verifying Group Claims
Managing Group Claims
Adding Custom Claims
Taught by
Okta