From the course: Microservices: Security
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
OAuth 2 primer
- [Instructor] OAuth is an authorization standard that supports token based security approaches like those used for securing microservices. OAuth can be a little complicated but it's really important to understand. So we'll spend some time mastering the fundamentals before covering the details. Let's start by diving into some OAuth two terminology that defines the four roles or actors that participate in token based access strategies. First is the resource owner. Think of this as the end-user who owns the information found in a microservice and can access it. Next is the resource server which is the server hosting the API in front of the microservices. The resource server makes a resource owner's information accessible if an access token is provided. The authorization server is responsible for issuing that access token to a client and verifying the integrity of access tokens pass to the resource server. Finally…