Mastering OAuth 2.0 and OpenID Connect

Your shortcut towards understanding OAuth 2.0 and OpenID Connect

OAuth 2.0 and OpenID Connect are crucial for securing web applications, mobile applications, APIs, and microservices. Unfortunately, getting a good grip on the purpose and use cases for these technologies is insanely difficult. As a result, many implementations use incorrect configurations or contain security vulnerabilities.

Let me tell you how I felt when I started digging into OAuth 2.0 and OpenID Connect a few years ago. I had a hard time understanding what OAuth 2.0 and OpenID Connect were supposed to solve. The terminology made it difficult to understand what the spec was even talking about. And the flows! Each use case had a different flow, and the differences between the flows are often tiny details.

Do you recognize your struggle here? If you are feeling frustrated and overwhelmed with OAuth 2.0 and OpenID Connect, this course is going to help you. This course takes you on a step-by-step journey into the world of OAuth 2.0 and OpenID Connect. It explains the purpose of each technology, along with its use cases. In the course, we also dig deep into concrete scenarios, enabling you to design and implement secure applications with OAuth 2.0 and OpenID Connect.

In a matter of hours, you gain the knowledge that usually takes months of researching dozens of specifications. Throughout the course, we build up a set of best practices that allow you to secure modern applications.

I have worked with thousands of developers to help them understand the ins and outs of OAuth 2.0 and OpenID Connect. I have seen them struggle, but I have also seen them succeed. That's why I can promise you that by the end of this course, you will be confident in using OAuth 2.0 and OpenID Connect.

Stop struggling today!

Register now to access a crystal-clear explanation of OAuth 2.0 and OpenID Connect

Students love this course ...

Jochen Hammann

Technical lead at Servicetrace

Mastering OAuth 2.0 and OpenID Connect was one of the best courses I attended. Philippe is a great instructor. He has the gift of explaining complex topics in a very understandable and structured way. The presentations were perfectly prepared. I can recommend this course to anyone who is professionally involved with this topic.

I am looking forward to the next course from Philippe. Great work. Thank you very much.

Bruno Winck

Founder at Kneaver Corp

I came across this course by chance last week and jumped on the opportunity to join. I feel very lucky I did. Philippe knows his stuff and explains it well.

It's a complex domain, and it takes time to gather the documentation, process it, validate various resources, and try different options. This intensive course offers a shortcut.

Within a few hours, we reached the master level. Even more advanced questions got answered in the Q&A. The content is also cutting edge, only a few days or weeks behind the last discussions of the working group, or the latest changes in browsers.

I now have the confidence to make design decisions, make implementations, and anticipate coming changes. Soon, I will even start using the advanced delegation scheme discussed at the end, which seemed far-fetched at the time. After hearing about it, it all just makes sense!

I would have never heard about it if it wasn't for Philippe's masterclass.

What you will get ...

This course gives you immediate access to the three course modules covering OAuth 2.0 and OpenID Connect in depth. The first module is a full online course, including lectures, assignments, assessments, and much more. The second and third module are available as recorded live sessions, but will be transformed into full online courses during the second half of 2020.

Your registration today includes access to recorded sessions and the full online courses when they are released. Until all content is released, you can benefit from a reduced registration price.

The current price of $229 is a 35% discount on the full course price of $349. Sign up now to secure your discount!

If you have further questions, don't hesitate to reach out (courses@pragmaticwebsecurity.com).

Get access to this course

Currently only $229 instead of $349 (–35%)

Hi, I'm Dr. Philippe De Ryck

I help developers protect companies through better web security.

My Ph.D. in web security gives me a unique perspective into the most complex security challenges developers face today. In my training courses, I help you understand these challenges, I teach you about potential solutions, and I help you decide which solution fits best for your applications.

I have been invited to join the Google Developer Expert program for my work on web security and the Auth0 Ambassador program for my work on identity and access management.

Fortune 500 companies rely on me as a trainer and adviser to help them improve their security practices. Through this online course, you, too, can access the highest quality security content available today.

FAQ

Does this course cover OAuth 2.1?

OAuth 2.1 is a collection of best practices and recommendations that follow from lessons learned with OAuth 2.0. This course focuses entirely on current best practices, so relevant aspects of OAuth 2.1 are also covered.

What are the prerequisites to attend this training?

The first session offers a gentle introduction into the world of OAuth 2.0 and OpenID Connect. No prerequisite knowledge is expected. The second and third session focus on the perspective from a Single Page Application client, and an API, respectively. For those sessions, some experience with designing or building SPAs and APIs will be useful. Note that the course modules focus on the concepts of OAuth 2.0 and OIDC, not on a specific implementation language or framework.

Which format is the course in?

The first module is a full online course, including lectures, assignments, assessments, and more. The second and third modules are a recorded version of live training sessions conducted in May 2020. 

In the second half of 2020, the second and third course module will be reworked into a proper online course, including topical lectures, hands-on assignments, and assessments. When the new online course becomes available, each student will automatically be upgraded.

When will the new courses become available?

The first course module is expected in June 2020. The second and third module will be gradually released in the second half of 2020. Please note that these are tentative release dates, subject to change.

Do I have to pay extra for the reworked courses?

No, access to the reworked course is included in the current course price. Note that once the reworked online courses become available, the cost of the course will increase. The cheapest option to gain access to the online courses is the current pre-sale pricing.

How long do I have access to the course?

License fees are one-time fees. You will have lifetime access to the course materials.

Will the course be updated regularly?

Yes, the course will be kept up to date as the best practices in the OAuth 2.0 and OpenID Connect world evolve. Regular updates are included in the course price.

Do I get an invoice for my registration?

Yes, after registration, you will receive an email with further information for obtaining an invoice.

Can I get a team discount?

Yes, we offer team licensing options. Depending on the number of licenses purchased, the price of the license goes down. Please reach out to courses@pragmaticwebsecurity.com to discuss your needs.

Can I purchase the course contents for hosting in our internal learning environment?

Custom licensing options are also available. Please reach out to courses@pragmaticwebsecurity.com to discuss your needs.