2min chapter

Episode 376: Justin Richer On API Security with OAuth 2

Software Engineering Radio - the podcast for professional software developers

CHAPTER

RFC - The Jot Specification

The Jot specification was designed as a way to communicate information about what's been delegated from the authorization server to the resource server. The downside of this is you're carrying all of that information inside the JSON web token. So when the token shows up, it can carry a signature. And the token itself can tell me like, yeah, this is for this set of APIs and this set of actions at these API within this time window for this specific user.

00:00

Transcript

Episode notes

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

2min chapter

Episode 376: Justin Richer On API Security with OAuth 2

Software Engineering Radio - the podcast for professional software developers

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights