Using Authy for my 2-step authentication now
For the longest while I have been using 2-step authentication wherever I can and used the Google Authenticator app. Due to Humble Bundle requiring the use of Authy is when I discovered this neat...
View ArticleCreating a secret key for simple obfuscation
When I was doing my OAuth 2.0 JASPIC implementation, one of the things I wanted to do was track where the user was and redirect back after authentication if needed. However, I don’t really want to...
View ArticleUsing JAX-RS 2.0 to handle OpenID Provider Configuration
In Java EE 7, JAX-RS 2.0 was introduced to provide a standard REST client API to work with RESTful services. One of the more recent standards in the world of OAuth 2.0 is the use of OpenID Connect to...
View ArticleParsing the JSON Web Token in Java
The JSON Web Token (JWT for short) is an encoded string meant to transfer signed payloads containing claims which is simply a JSON structure with well defined keys. The JWT parsing is part of my OAuth...
View ArticleParsing JSON Web Key (JWK) in Java
When doing something as critical as authentication especially something that would get standardized like OAuth 2.0, security is something that shouldn’t be taken likely. This is true when dealing with...
View ArticleOAuth 2.0 JASPIC implementation
I’ve worked on several projects now and practically every one of enough scale of them had the login use case. In in almost all those cases, I tend to be the one working on it. Even with other tools I...
View Article