Securing Angular Apps with OpenID Connect and OAuth 2

Focused View

Brian Noyes

3:10:50

7 View

01. Course Overview

01. Course Overview.mp4

01:26

02. Angular App Security Big Picture

02. Introduction.mp4

04:06

03. Security Design Considerations.mp4

06:20

04. Client vs. Server Security.mp4

01:42

05. Angular App Security Architecture.mp4

01:53

06. Authentication and Authorization.mp4

03:32

07. Terminology.mp4

03:15

08. OpenID Connect and OAuth 2 Protocols.mp4

02:12

09. Identity Provider Options.mp4

05:12

10. Client Library Options.mp4

02:05

11. A Tour through the Demo Application.mp4

03:44

03. Authenticating with OpenID Connect

12. Introduction.mp4

02:21

13. Choosing OpenID Connect.mp4

02:08

14. Understanding OpenID Connect JWT Tokens.mp4

01:37

15. Choosing Your OpenID Connect Protocol Flow.mp4

06:09

16. Using Authorization Code Flow with PKCE.mp4

02:44

17. A Word About oidc-client Library.mp4

02:47

18. A Quick Review of the Client Functionality.mp4

01:33

19. Getting the Client Code Running on Your Machine.mp4

02:02

20. Getting the Server-side Code Running on Your Machine.mp4

03:39

21. Adding oidc-client and an Auth Service Component.mp4

02:22

22. Configuring oidc-client to Connect to Your STS.mp4

07:15

23. Adding Login to the App.mp4

04:34

24. Logging into the STS.mp4

05:35

25. Adding the Post-login Callback Page.mp4

04:25

26. Handling Login Status and Logging Out.mp4

03:40

27. Debugging Client Configuration Errors.mp4

03:01

28. Inspecting the JWT Tokens.mp4

02:54

29. A Word About User Registration.mp4

01:17

30. Summary.mp4

01:33

04. Connecting to a Different OpenID Connect Provider

31. Introduction.mp4

01:17

32. Integrating with Other OIDC Providers.mp4

01:13

33. Configuring Client Apps APIs and Users in Auth0.mp4

04:26

34. Changing the Client Configuration to Connect with Auth0.mp4

02:43

35. Resolving Differences in STS Configuration.mp4

05:55

36. Summary.mp4

01:56

05. Authorizing Calls to Your Backend APIs with OAuth 2

37. Introduction.mp4

01:42

38. OAuth 2 Terminology Roles.mp4

01:26

39. OAuth 2 Grant Types.mp4

01:53

40. Understanding OAuth 2 Tokens.mp4

03:12

41. Requiring Consent.mp4

02:00

42. Requiring Authentication at the API Server.mp4

06:46

43. Passing Access Tokens in API Calls Manually.mp4

03:28

44. Using an Authentication Interceptor to Pass Tokens.mp4

06:58

45. Filtering Data Based on Claims.mp4

03:52

46. Enforcing Access Control Based on Claims.mp4

03:46

47. Handling Authorization Errors in the Client App.mp4

03:15

48. Using Role or Custom Claims for Filtering and Access Control.mp4

03:37

49. Summary.mp4

01:22

06. Enhancing the Security User Experience

50. Introduction.mp4

02:24

51. Revisiting Token Management.mp4

07:05

52. Token Expiration Review.mp4

02:59

53. Enabling Silent Renew of Access Tokens.mp4

07:45

54. Providing a Security Context to the Client.mp4

03:33

55. Managing User Experience Based on the Security Context.mp4

02:53

56. Preventing Unauthorized Access to Views with Route Guards.mp4

02:19

57. Single Sign-on from Another Client App.mp4

02:14

58. Summary.mp4

01:48

Description

OpenID Connect and OAuth 2 allow your apps to use modern security protocols and to participate in a Single Sign-on (SSO) experience across multiple apps. This course will show you how to authenticate users and authorize access in your Angular apps.

What You'll Learn?

Securing your Angular apps with modern, interoperable security protocols helps you ensure your apps are secure, and that they can participate in a Single Sign-on (SSO) experience across multiple apps that use the same identity provider. In this course, Securing Angular Apps with OpenID and OAuth 2, you will learn how to apply the OpenID Connect and OAuth 2 protocols to authenticate users and authorize their access to functionality and data in your apps. First, you will explore the security fundamentals and concepts you need to be aware of for Angular apps. Next, you will discover how to connect to your OpenID Connect identity provider for authentication. Lastly, you will successfully use and manage your OAuth 2 access tokens for authorization. When you are finished with this course, you will have a solid foundation for building your Angular apps with robust security and done in a way that lets you integrate with any OpenID Connect and OAuth 2 identity provider.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Angular

Brian Noyes

Instructor's Courses

Brian Noyes is CTO and Architect at Solliance (www.solliance.net), an expert technology solutions development company. Brian is a Microsoft MVP and specializes in client application architecture, full stack web development, cloud and microservice architecture. Brian has authored several books and dozens of technology publication articles, including Developer's Guide to Microsoft Prism 4, Data Binding with Windows Forms 2.0, and Smart Client Deployment with ClickOnce. Brian got started programming as a hobby while flying F-14 Tomcats in the U.S. Navy, later turning his passion for software into his current career.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.