Wrap Up!

Let's summarize the concepts covered in this course.

We'll cover the following

Congratulations on completing all the lessons! 🎉 Let’s quickly go over what we covered.

Summary

  • Oauth2 is an industry-standard protocol for authorization, which basically means that it checks if you, the user, have access to a resource with your user level.

  • Password grant verifies the identity through a username and password. The server returns the JavaScript Web Token (JWT), if the data provided is correct.

  • The Authorization Code grant type is used by confidential and public clients to exchange an authorization code for an access token. The authorization server responds with a JSON object that contains the following properties:

    • token_type
    • expires_in
    • access_token
    • refresh_token
  • A Refresh token can be used to request a new access token without the user being redirected.

  • Cross-origin Resource Sharing (CORS) policies can be used for JavaScript and XML HTTP Request (XHR) requests for the client-side. A filter needs to be created on the authorization server that sets the CORS policies for every request.

We hope that this course has met your expectations and has been a positive learning experience for you.

Thank you so much for taking this course. Keep practicing, and have fun!

Get hands-on with 1200+ tech skills courses.