Home
Resources
Documents

Session 7: OAuth for Mobile Applications

When using OAuth in mobile applications it's important to follow the best practices. The applications is considered to be a public client that cannot hold a secret, so how do we secure the requests? We will also discuss how to turn a public client into a confidential client using Dynamic Client Registration.

OAuth for Mobile Apps
- PKCE - Proof Key Code Exchange
- Public Clients
Dynamic Client Registration (DCR) for Mobile Clients
- Creating Confidential Clients for Mobile Applications

Related resources

SSO for mobile apps with OpenID Connect
Proof Key for Code Exchange
Using Dynamic Client Registration

Back to course

Course Outline

Session 7: OAuth for Mobile Applications

Related resources

Course Outline

Session 1: Introduction to OAuth

Session 2: OAuth vs OpenID Connect

Session 3: Tokens and APIs

Session 4: Server to Server Communication with OAuth

Session 5: Design tokens for your APIs

Session 6: Dynamic Clients and Metadata

Session 7: OAuth for Mobile Applications

Session 8: OAuth for Single Page Applications

Be up and running in minutes

Evaluate the Fit for Your Use Case

Speak to an Identity Specialist

Found results for ""

API Security

Open Banking, PSD2 & GDPR

Claims & Scopes

Code Examples

Concepts

Getting Started

Hypermedia Authentication API

How-tos

Multi-Factor Authentication

Neo Security Architecture

OAuth 2.0

OpenID Connect

Single Sign-On

Supported standards

Session 7: OAuth for Mobile Applications

Related resources

Course Outline

Session 1: Introduction to OAuth

Session 2: OAuth vs OpenID Connect

Session 3: Tokens and APIs

Session 4: Server to Server Communication with OAuth

Session 5: Design tokens for your APIs

Session 6: Dynamic Clients and Metadata

Session 7: OAuth for Mobile Applications

Session 8: OAuth for Single Page Applications