Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

OAuth 2.0: Securely Authorizing Third-Party App Access to Your Data

2025-08-25
OAuth 2.0: Securely Authorizing Third-Party App Access to Your Data

OAuth 2.0 is an authorization protocol allowing users to grant third-party apps access to their account data without sharing passwords. This article details the OAuth 2.0 workflow, including user authorization, authorization code retrieval, access token exchange, and emphasizes security measures like avoiding direct access token transmission in URLs. Key OAuth 2.0 terminology is explained, such as resource owner, OAuth client, authorization server, and resource server, along with front-channel and back-channel concepts. The article also covers PKCE for backend-less applications.

Read more
(www.ducktyped.org)
Development

AWS VPC: Solving IP Conflicts and Security Issues

2025-06-04
AWS VPC: Solving IP Conflicts and Security Issues

This article tells the story of the birth of Amazon's Virtual Private Cloud (VPC). Early AWS instances shared a single network, leading to IP address conflicts and security vulnerabilities, hindering enterprise migration. To solve this, AWS engineers invented VPC, which uses a mapping service to provide each customer with an isolated private network, addressing IP conflicts and security risks, enabling companies to safely migrate to the AWS cloud platform.

Read more
(www.ducktyped.org)
Development