What is OAuth with PKCE and How Does it Work? | Way of the Future

OAuth With PKCE: OAuth and OIDC are perhaps the most important authentication and authorization technologies on the modern web today. You're probably interacting with OAuth and OIDC on a regular basis every day. However, OAuth and OIDC can be particularly vulnerable to replay attacks. This led to the creation of the Proof Key for Code Exchange (PKCE), a protocol that helps add an additional layer of security on OAuth and OIDC workflows. In this video, Abhay Bhargav will be taking you through implementing an OAuth with PKCE flow using hands-on labs from an upcoming AppSecEngineer course on OAuth and OIDC. #OAuth #PKCE --------- AppSecEngineer is a powerful training platform that delivers amazing hands-on training on #AppSec, AWS Security, Cloud Security, Kubernetes, Container Security and Advanced Application Security. #AppSecEngineer​ is ideal for jobseekers, knowledge seekers and companies that want to get their workforce equipped to handle real-world security issues with their newly minted and highly educated AppSec Engineers Chapters: 0:00 Intro 0:50 Importance of OAuth and OIDC 1:33 OAuth and OIDC security challenges 2:00 What is PKCE? 7:35 OAuth hand on lab 8:40 Setup PKCE code challenge method Learn more about AppSecEngineer at https://appsecengineer.com/ Twitter: https://twitter.com/AppSecEngineer​ Linkedin: https://www.linkedin.com/company/appsecengineer