Session 7: OAuth for Mobile Applications

When using OAuth in mobile applications it's important to follow the best practices. The applications is considered to be a public client that cannot hold a secret, so how do we secure the requests? We will also discuss how to turn a public client into a confidential client using Dynamic Client Registration.

  • OAuth for Mobile Apps - PKCE - Proof Key Code Exchange
  • OAuth for Mobile Apps - Public Clients
  • Dynamic Client Registration (DCR) for Mobile Clients
  • Creating Confidential Clients for Mobile Applications

Related resources

Back to course

Course Outline

1

Session 1: Introduction to OAuth

2

Session 2: OAuth vs OpenID Connect

3

Session 3: Tokens and APIs

4

Session 4: Server to Server Communication with OAuth

5

Session 5: Design tokens for your APIs

6

Session 6: Dynamic Clients and Metadata

7

Session 7: OAuth for Mobile Applications

8

Session 8: OAuth for Single Page Applications

Next steps

Start Today

Ready to modernize IAM? Build security and improve ease of use to stay ahead of the competition.

Start a Free Trial

Schedule a demo

Speak to an Identity Specialist

Explore learning resources