×

Session 7: OAuth for Mobile Applications

When using OAuth in mobile applications it's important to follow the best practices. The applications is considered to be a public client that cannot hold a secret, so how do we secure the requests? We will also discuss how to turn a public client into a confidential client using Dynamic Client Registration.

  • OAuth for Mobile Apps
    • PKCE - Proof Key Code Exchange
    • Public Clients
  • Dynamic Client Registration (DCR) for Mobile Clients
    • Creating Confidential Clients for Mobile Applications

Related resources

Related sessions

Back to course
1

Introduction to OAuth

2

OAuth vs OpenID Connect

3

Tokens and APIs

4

Server to Server Communication with OAuth

5

Design tokens for your APIs

6

Dynamic Clients and Metadata

8

OAuth for Single Page Applications