2min chapter

Software Engineering Radio - the podcast for professional software developers cover image

Episode 376: Justin Richer On API Security with OAuth 2

Software Engineering Radio - the podcast for professional software developers

CHAPTER

Do You Really Need to Change Your Passwords?

The OAuth token based model allows you to basically create a new credential that represents just that piece of delegate software working for that user instead of that user. So when you come to audit logs and figuring out what went wrong, exactly, it's just this user logged in and we only know it's that user because we saw their password,. But it might not have been them because it might have been a piece of software that they had typed their password into 12 months ago. We really have no way to tell the difference. Okay. And I also just wanted to touch on something you mentioned real quick, if I may take a quick aside. Yeah, sure. You mentioned changing passwords like we

00:00

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode