Session 4: Server to Server Communication with OAuth

Applications that don't have users directly involved in the transaction are special in OAuth. In this session we discuss how to use OAuth for server applications and what tools there are to secure the usages of these tokens.

Server to Server communication
Client Credentials Flow
Client Authentication Methods: Mutual TLS (MTLS)
Client Authentication Methods: JWT Client Assertion
Client Authentication Methods: Secret
MTLS Sender Constrained Tokens

Related resources

Back to course

Course Outline

Session 1: Introduction to OAuth

Session 2: OAuth vs OpenID Connect

Session 3: Tokens and APIs

Session 4: Server to Server Communication with OAuth

Session 5: Design tokens for your APIs

Session 6: Dynamic Clients and Metadata

Session 7: OAuth for Mobile Applications

Session 8: OAuth for Single Page Applications

Next steps

Ready to modernize IAM?

Start Today - Build security and improve ease of use to stay ahead of the competition.

Start a Free Trial

Schedule a demo

Speak to an Identity Specialist

Explore learning resources

Products

Features and Capabilities

Deployment and Management

Security Solutions

Industry

Identity & Access Management Resources

Developers

Learn More

What is Access Control?

Curity's Judith Kahrer speaking at Apidays Helsinki & North 2025

Session 4: Server to Server Communication with OAuth

Related resources

Course Outline

Session 1: Introduction to OAuth

Session 2: OAuth vs OpenID Connect

Session 3: Tokens and APIs

Session 4: Server to Server Communication with OAuth

Session 5: Design tokens for your APIs

Session 6: Dynamic Clients and Metadata

Session 7: OAuth for Mobile Applications

Session 8: OAuth for Single Page Applications

Ready to modernize IAM?