Identification, Authentication and Authorization

Applied Cryptography Robust Software Quantum Safety Machine Learning Applied to Security Analysis and Exploration of Vulnerabilities Computer Systems Forensic Analysis Reverse Engineering Identification, Authentication and Authorization Secure Execution Environments Direito da Organização e da Segurança

Identification, Authentication and Authorization
Access Control Models
OAuth 2.0 Authorization Framework
Linux Security Mechanisms
Authentication Protocols
PAM (Pluggable Authentication Modules)
FIDO and FIDO2 framework
Authentication with Trusted Third Parties / KDCs
Identity Management
Anonymity and Privacy

Powered by GitBook

On this page

Authorization grant
Access token
Refresh token

OAuth tokens

PreviousApplication (client)NextOAuth flows

Last updated 6 months ago

Authorization grant

Created by an OAuth server.

Upon authenticating a resource owner and getting its consent to grant access to a protected resource.
An opaque byte blob that makes sense only to its issuer.

Short validity time.

Just enough to get an access token.

Access token

Created by an OAuth server.
- When creating an access token.
- An opaque byte blob that makes sense only to its issuer.
- It can be used to collect a new access token.
  - Still requires client authentication.
Bearer tokens.
- Clients need to protect their use with HTPPS.
- Clients can hand over tokens to others.

Refresh token

Created by an OAuth server.
- When creating an access token.
- An opaque byte blob that makes sense only to its issuer.
- It can be used to collect a new access token.
  - Still requires client authentication.
Bearer tokens.
- Clients need to protect their use with HTTPS.
- Clients can hand over tokens to others.