OAuth 2 for native application - what is difference between public and confidential client types? -

-

i trying implement oauth 2 provider web service , built native application on top of it. want give access api third-party developers.

i read oauth 2 specification , can't choose right flow. want authenticate both cli , gui apps well.

first of have 2 client types - public , confidential. of course both gui , cli apps public. difference between 2 types? in case need client_secret if can access token without changing client type?

i tried @ api implementations of popular services github. use http basic auth. not sure idea.

what brink choose between usability (good old login , password in cli more comfortable opening web browser) , security?

thanks!

as difference between public , confidential clients, see http://tutorials.jenkov.com/oauth2/client-types.html says:

a confidential client application capable of keeping client password confidential world. client password assigned client app authorization server. password used identify client authorization server, avoid fraud. example of confidential client web app, no 1 administrator can access server, , see client password.

a public client application not capable of keeping client password confidential. instance, mobile phone application or desktop application has client password embedded inside it. such application cracked, , reveal password. same true javascript application running in users browser. user use javascript debugger application, , see client password.

confidential clients more secure public clients, may not able use confidential clients because of constraints on environment run in (c.q. native apps, in-browser clients).


Comments

Post a Comment

Popular posts from this blog

python - TypeError: start must be a integer -

-
i trying draw 5 turtles, getting typeerror on line 25. here code: import turtle wn = turtle.screen() redrose = turtle.turtle() color = input("what background color be?") fillcolor_f = input("what color of rose be?") redrose.hideturtle() redrose.speed(30) redrose.penup() redrose.left(180) redrose.forward(175) redrose.right(90) redrose.forward(30) redrose.right(90) redrose.pendown() def drawrose(red): redrose.color("pink") redrose.fillcolor(fillcolor_f) redrose.fill(true) in range(red): redrose.forward(i) redrose.right(49) in range(5): drawrose(redrose) redrose.penup() redrose.forward(350) redrose.right(144) redrose.pendown() redrose.fill(false) drawrose(50) wn.bgcolor(color) i trying draw 5 roses, produces errors. doing in interactivepython.org. you recursively calling drawrose wrong parameter. on line 23 ( for in range(red): ) expect red integer...
Read more

c# - DevExpress RepositoryItemComboBox BackColor property ignored -

-
i have following code almost works properly; private void cbstatus_drawitem(object sender, listboxdrawitemeventargs e) { string item = e.item string; if (item != null) { switch (item) { case "1": e.appearance.forecolor = color.green; e.appearance.backcolor = color.green; break; case "2": e.appearance.forecolor = color.orange; e.appearance.backcolor = color.orange; break; case "3": e.appearance.forecolor = color.red; e.appearance.backcolor = color.red; break; } } } when dropdown shown, items forecolor correct, backcolor remains whatever backcolor of theme is; i.e. if i've got set dark theme, backcolor dark, cells in gridview, rather being green/orange/red. i've tried setting e.appearance.options.usebackcolor trying set e....
Read more

django - Creating multiple model instances in DRF3 -

-
1) create multiple model instances 1 api call, asked here: how create multiple model instances django rest framework? tried solution named in link, no success. i trying upload multiple files in 1 api call. result: files uploaded (only once overwrote perform_create) 1 instance created (if send 2 files, latter created instance). my code: class fileuploadserializer(serializers.modelserializer): def __init__(self, *args, **kwargs): many = kwargs.pop('many', true) super(fileuploadserializer, self).__init__(many=many, *args, **kwargs) class meta: model = fileupload read_only_fields = ('created', 'datafile', 'owner') class fileuploadviewset(viewsets.modelviewset): queryset = fileupload.objects.all() serializer_class = fileuploadserializer parser_classes = (multipartparser, formparser, ) def perform_create(self, serializer): file_list = self.request.data.getlist('file') ...
Read more