Introducción a OAuth 2.0: Los conceptos que necesitas entender

This video is the introduction I always wanted for learning OAuth 2.0, a protocol that was incredibly difficult for me to master due to the scattered information. We explain the complete OAuth workflow clearly, covering all the concepts you need to understand so you won't miss a single one and can confidently tackle any related problem. Chapters 00:00 What are we going to do today? 00:27 Introduction to OAuth 2.0 02:06 OAuth clients 02:51 ClientId and ClientSecret 03:19 Confidential clients and Public clients 04:12 Scopes (or permissions) 04:30 Grant Types 04:57 Authorization Code Grant Type 05:19 Proof Key of Code Exchange (PKCE) 06:15 Explaining the Authorization Code flow 07:49 OpenID Connect 08:00 Step #1: Redirect to the external login window 08:40 Step #2: Perform external authentication 08:55 Step #3: Issuance of the Authorization Code by the external provider and redirect to the Redirect URI 09:40 Step #4: Exchange the Authorization Code for a Bearer Token (via POST request) 11:12 Step #5: Use the token to retrieve data or perform actions on behalf of the user in the External app 12:01 Reviewing the complete flow 13:22 Ending the video (code examples in the next one) Resources for further learning: https://datatracker.ietf.org/doc/html... https://oauth.net/2/ https://www.digitalocean.com/communit... https://auth0.com/es/intro-to-iam/wha...