A Deep Dive Into OAuth 2.0: Part 1 (sambaXP 2025)

Talk from William Brown (SUSE) at sambaXP 2025. Abstract: OAuth2 has become the de facto standard for web-based single sign-on, gradually replacing technologies like SAML. Its influence has extended beyond websites to platform logins, including its adoption in Azure AD. In the first part of this talk, we will compare OAuth2 with existing authentication technologies such as LDAP, Kerberos, and on-premises Active Directory. We will explore how OAuth2 works, its strengths and weaknesses, and key extensions like OpenID Connect (OIDC) and their role in the authentication ecosystem. By the end of this session, you will understand key concepts such as claims, the impact of scopes on authorization, and why OAuth2 has become a powerful choice for identity management services. Visit the conference website at: https://sambaxp.org​ sambaXP is organised by SerNet: https://sernet.com