I’m excited to announce that I am now offering a new Introduction to OpenID Connect and OAuth course, you can find it here.
OpenID Connect and token-based authentication have become a standard for securing applications, and this course will introduce learners to these topics, give them an understanding of how they work, and thus allow them to get the best out of these technologies.
Why did I create this course?
I have been training developers for over ten years, and when talking to developers, I feel there is a need for a better understanding of how OpenID-Connect works.
The problem with token-based authentication is that it is a very complex area with many moving parts working together to secure your application. For a beginner, this can feel like an impossible task to grasp. It can feel like a labyrinth! You can see what I mean below:
To fill this void around OpenID-Connect, I created this course to teach developers the fundamentals of how these techniques and concepts work, allowing them to better understand how it fits in with their own architecture.
I love helping developers – besides training devs in this concept, I’m also committed to helping others on Stack Overflow with these topics. So far, I have received bronze badges for these contributions, with more on their way!
What does the course cover?
In this course, I will cover everything from why we need these concepts, to how these protocols work under the hood. We do not just focus on the theoretical parts, but it also teaches you how it works in practice. In the many included hands-on exercises, you will learn and observe how the various parts interact with each other over HTTP. You will be making your own request against our authorization server and exploring the different flows we use to get the various tokens. In doing so, you will increasingly master how to implement this yourself in your own software architecture.
Who is the target audience?
This course will benefit developers and architects who want to learn the fundamentals of how token-based authentication using OAuth2 and OpenID Connect works, and how these concepts can be applied in their own organizations.
What should I look at after taking this class?
OpenID-Connect is one piece in a jigsaw of topics for holistically creating secure and reliable web applications. After this course, we recommend you look at the following related courses:
- Securing ASP.NET using OpenID Connect and IdentityServer
- IdentityServer in Production
- Web security fundamentals
Besides these courses, I am also available for mentoring, consulting, and coaching sessions. My main expertise is in .NET using the well-established Duende IdentityServer solution