OpenID Connect & JWT: User identity for your apps & APIs ...

Recent Updates

2023-01-07 NEW Added 4 new videos on Proof Key for Code Exchange (PKCE)
2023-01-06 More than 2400 satisfied students

Learn OpenID Connect to get higher signups & conversions for your apps!

Login with Google, Facebook, and LinkedIn - all successful apps do it, so should you

Do you want to know how OpenID Connect works?

Exploring how OpenID Connect works in detail is the subject of this course. We take a bottom-up approach and first study all the elements (actors, endpoints, and tokens) of OpenID Connect. This puts us in an excellent position for the second step: to understand the various OpenID Connect Flows - how the actors, endpoints, and tokens are put together to transmit identity claims securely.

Do you wonder why there are several OpenID Connect Flows?

Whether we use OpenID Connect from a mobile app, a script in a browser or from a secure backend server, there is an appropriate OpenID Connect Flow with the right tradeoffs in security, functionality, and convenience for each of these scenarios. This course helps you to choose the right one.

Do you think that these OpenID Connect Flows are confusing?

You are not alone; the OpenID Connect Flows tend to get confusing. However, with this course, we make it clear and easy to understand: We visualize these flows and show how to choose the flow that is appropriate for a given scenario. A picture says more than a 1000 words - that is why we explain the OpenID Connect Flows using easy to understand sequence diagrams.

Do you want to understand how JWT works?

This course explains what a JSON Web Token (JWT) is, how it is used in OpenID Connect, how it is constructed, what data it contains, how to read it, and how to protect its contents.

Do you wonder why there are so many tokens in OpenID Connect and how to use them?

There are JWT, JWS, JWE, access tokens, refresh tokens, identity tokens, and authorization codes. This book helps you to make sense of them all. Using examples, we explore how the tokens are used, constructed, signed, and encrypted.

Why is OpenID Connect so popular?

If used in the right way, OpenID Connect is powerful, and everyone loves it:

• End-users don't need to signup and remember a new password

• Business owners enjoy high conversion rates

• Developers don't get any grey hair over securely storing credentials.

Do you want to increase the conversion rate of your app?

Signup and login to a new app become so smooth and convenient that end-users are much more likely to try a new app. It is supported, e.g. by Google, Yahoo, or Microsoft.

This course is for you...

...if you want to improve your market value as a Software Engineer and Security Expert. Imagine what could happen to your professional career if you could add OpenID Connect, API Security and OAuth skills to your CV!

API Security experts and engineers who understand OpenID Connect are in HIGH DEMAND, as companies expand their digital business. Plenty of opportunities are waiting for anyone who has the right skills.

Do you want to write best-selling iPhone and Android apps?

The most popular mobile apps integrate with popular social APIs of Google, LinkedIn, Facebook, Paypal and many more. If this is a well-known fact, why do app developers not just do it?

Many app developers are afraid of complicated OpenID Connect integrations. Identity, Login, and Signup are in fact the biggest hurdle for most mobile app developers.

With the knowledge gained in this course, you can use the secret of best app developers out there and finally integrate your app with social APIs.

Do you want to start out on your own, as an entrepreneur, consultant or freelancer?

Knowing API Security, OAuth, and OpenID Connect allows you to realize the big vision of your company in the field of mobile apps, cloud apps and web APIs, such as Google, Paypal, and LinkedIn.

Do you want to build exciting solutions with next-generation technology?

Whether you are a web developer, mobile developer or API developer, an architect or embedded developer for the Internet of Things, today you need to know OpenID Connect to build state of the art solutions.

What does this course offer?

This course offers an introduction to API Security with OpenID Connect. In 7 hours you will gain an overview of the capabilities of OpenID Connect and OAuth. You will learn the core concepts of OpenID Connect. You will get to know all 3 OpenID Connect flows that are used in cloud solutions and mobile apps.

This course explains OpenID Connect in simple terms. The three OpenID Connect flows are visualized graphically using sequence diagrams. The diagrams are then animated so you get to know the interactions step by step and see the big picture of the various OpenID Connect interactions. This high-level overview is complemented with a rich set of example requests and responses and an explanation of the technical details.

Who should take this course?

Do you believe OpenID Connect is complicated? OpenID Connect may seem complex with flows and redirects going back and forth. This course will give you clarity by introducing the seemingly complicated material by many illustrations. These illustrations clearly show all the involved interaction parties and the messages they exchange.

Do you want to learn the OpenID Connect concepts efficiently? This course uses many animated diagrams and sequence diagrams. A good diagram says more than 1000 words.

Do you want to use OpenID Connect in your mobile app? If you want to access resources that are protected by OAuth, you need to get a token first, before you can access the resource. For this, you need to understand the OAuth flows and the dependencies between the steps of the flows.