• A5_171677
  • 9MB
  • action
  • 0
  • VIP专享
  • 0
  • 2022-05-08 09:42
This book is intended to be a comprehensive and thorough treatment of the OAuth 2.0 protocol and many of its surrounding technologies, including OpenID Connect and JOSE/JWT. We want you to come away from this book with a deep understanding of what OAuth can do, why it works the way that it does, and how to deploy it properly and securely in an unsafe internet. The target reader for this book is someone who’s probably used OAuth 2.0, or at least heard of it, but doesn’t really know how it works or why it works that way. Maybe you’ve even developed one or more OAuth 2.0 components, such as a client to talk to a specific API, but you’re curious about other kinds of clients, or other parts of the OAuth 2.0 ecosystem. Perhaps you wonder, “What’s the authorization server doing when you go ask for that authorization code, anyway?” Or perhaps you’re tasked with protecting an API and you want to know if OAuth 2.0 is really going to do the job, and if so, how are you supposed to manage that? Maybe in your day job you’re building a client, but you want to know what the protected resource does with that token you sent it. Or maybe you’re building and protecting an API, but you want to know what the authorization server you’re talking to does to get those tokens into the right place. We want you to understand what the tool, OAuth 2.0, is really good at and how you can wield it effectively. We’re going to assume you know the basics of how HTTP works, and at least understand the utility of encrypting connections using TLS, if not the intimate details of how it works. Our code is all in JavaScript, but this isn’t a book about JavaScript, and so we’ve done our best to explain the abstractions and functional- ity that the code itself represents so that you can apply it to your own platform and
  • Oauth 2 in Action.pdf
  • ._Oauth 2 in Action.pdf
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta charset="utf-8"> <meta name="generator" content="pdf2htmlEX"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <link rel="stylesheet" href="https://static.pudn.com/base/css/base.min.css"> <link rel="stylesheet" href="https://static.pudn.com/base/css/fancy.min.css"> <link rel="stylesheet" href="https://static.pudn.com/prod/directory_preview_static/62cab7a2b742fa794da3aa41/raw.css"> <script src="https://static.pudn.com/base/js/compatibility.min.js"></script> <script src="https://static.pudn.com/base/js/pdf2htmlEX.min.js"></script> <script> try{ pdf2htmlEX.defaultViewer = new pdf2htmlEX.Viewer({}); }catch(e){} </script> <title></title> </head> <body> <div id="sidebar" style="display: none"> <div id="outline"> </div> </div> <div id="pf1" class="pf w0 h0" data-page-no="1"><div class="pc pc1 w0 h0"><img class="bi x0 y0 w1 h1" alt="" src="https://static.pudn.com/prod/directory_preview_static/62cab7a2b742fa794da3aa41/bg1.jpg"><div class="t m0 x1 h2 y1 ff1 fs0 fc0 sc0 ls0 ws0">MANNING</div><div class="t m1 x2 h3 y2 ff2 fs1 fc0 sc0 ls1 ws0">Justin Richer</div><div class="t m1 x3 h3 y3 ff2 fs1 fc0 sc0 ls1 ws0">Antonio Sanso</div><div class="t m1 x4 h4 y4 ff2 fs2 fc1 sc0 ls2 ws0">F</div><div class="t m2 x5 h5 y4 ff2 fs3 fc1 sc0 ls3 ws0">OREWORD</div><div class="t m1 x6 h4 y4 ff2 fs2 fc1 sc0 ls2 ws0"> </div><div class="t m2 x7 h5 y4 ff2 fs3 fc1 sc0 ls3 ws0">BY</div><div class="t m1 x8 h4 y4 ff2 fs2 fc0 sc0 ls4 ws0"> Ian Glazer</div></div><div class="pi" data-data='{"ctm":[1.807910,0.000000,0.000000,1.807910,0.000000,0.000000]}'></div></div> </body> </html>
    • Javascript
      NULL 博文链接:https://yanguz123.iteye.com/blog/2149014
    • Javascript
      NULL 博文链接:https://gzuimis.iteye.com/blog/1521027
    • JavaScript
      NULL 博文链接:https://reddevil44.iteye.com/blog/655697
    • javascript
      NULL 博文链接:https://zxfeng19871213-163-com.iteye.com/blog/1240843
    • JavaScript
      屏幕截图的源代码 用JAVASCRIPT写的 比较原始,有更多功能都可以在上面进行开发,如果有用的着的地方,大家可以拿去看看,我公司现在用的基本来来说就是这个,感觉还可以 更多技术礼品? http://jsyo.taobao.com
    • javascript
      http://www.tisin.com java java java好的javascript学习资料
    • javascript
    • JavaScript
    • javascript
    • Javascript
      JavaScript代码 所有的POC和垃圾代码都在这里。 参数污染- routes/prototypepollution污染 普通分配-请求http://localhost:3000/proto?attr=__proto__&value={"admin":"true"} Object.assign-请求...