Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Cloud Identity Patterns and Strategies
  • Table Of Contents Toc
Cloud Identity Patterns and Strategies

Cloud Identity Patterns and Strategies

By : Giuseppe Di Federico, Fabrizio Barcaroli
5 (1)
Buy this Book
close
close
Cloud Identity Patterns and Strategies

Cloud Identity Patterns and Strategies

5 (1)
By: Giuseppe Di Federico, Fabrizio Barcaroli
Buy this Book

Overview of this book

Identity is paramount for every architecture design, making it crucial for enterprise and solutions architects to understand the benefits and pitfalls of implementing identity patterns. However, information on cloud identity patterns is generally scattered across different sources and rarely approached from an architect’s perspective, and this is what Cloud Identity Patterns and Strategies aims to solve, empowering solutions architects to take an active part in implementing identity solutions. Throughout this book, you’ll cover various theoretical topics along with practical examples that follow the implementation of a standard de facto identity provider (IdP) in an enterprise, such as Azure Active Directory. As you progress through the chapters, you’ll explore the different factors that contribute to an enterprise's current status quo around identities and harness modern authentication approaches to meet specific requirements of an enterprise. You’ll also be able to make sense of how modern application designs are impacted by the company’s choices and move on to recognize how a healthy organization tackles identity and critical tasks that the development teams pivot on. By the end of this book, you’ll be able to breeze through creating portable, robust, and reliable applications that can interact with each other.
Table of Contents (15 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
1
Part 1: Impact of Digital Transformation
Icon
Part 1: Impact of Digital Transformation
Lock Free Chapter
2
Walkthrough of Digital Identity in the Enterprise
Icon
Walkthrough of Digital Identity in the Enterprise
Icon
Digital transformation – the impact on the market
Icon
Why an enterprise identity strategy?
Icon
The impact of identities on the UX
Icon
Digital identities – the duties of an enterprise
Icon
The challenges when defining an identity strategy
Icon
Single sign-on (SSO)
Icon
LDAP and Kerberos
Icon
Federation of identities
Icon
WS-Federation
Icon
Security Assertion Markup Language (SAML)
Icon
Summary
3
The Cloud Era and Identity
Icon
The Cloud Era and Identity
Icon
The cloud era
Icon
Identity in the cloud era
Icon
The challenges of identity
Icon
The cloud identity
Icon
A hybrid identity
Icon
The future of identity
Icon
Summary
4
Part 2: OAuth Implementation and Patterns
Icon
Part 2: OAuth Implementation and Patterns
5
OAuth 2.0 and OIDC
chevron up
Icon
OAuth 2.0 and OIDC
Icon
OAuth and OIDC basic concepts
Icon
How OAuth and OIDC work together
Icon
How the protocols are implemented in the real world
Icon
Technical background
Icon
Summary
6
Authentication Flows
Icon
Authentication Flows
Icon
The authorization code grant flow
Icon
The authorization code grant flow with PKCE
Icon
The implicit grant flow
Icon
The client credentials grant flow
Icon
The ROPC grant flow
Icon
The OBO flow
Icon
Hybrid flows
Icon
Summary
7
Exploring Identity Patterns
Icon
Exploring Identity Patterns
Icon
Understanding the basic terminology
Icon
Web applications
Icon
Native applications
Icon
SPAs
Icon
Summary
8
Part 3: Real-World Scenarios
Icon
Part 3: Real-World Scenarios
9
Trends in API Authentication
Icon
Trends in API Authentication
Icon
The complexity of defining standard guidance
Icon
The vertical API approach
Icon
API landscape complexity
Icon
The application frontend API flow
Icon
The application automation API
Icon
The multiple IdP dilemma
Icon
Defining enterprise standards for identity
Icon
The service mesh and identity management
Icon
Authentication implications in a service mesh
Icon
Common antipatterns
Icon
Summary
10
Identity Providers in the Real World
Icon
Identity Providers in the Real World
Icon
The technical aspects
Icon
The non-technical aspects
Icon
Azure Active Directory (AAD)
Icon
Azure Active Directory Domain Services (AD DS)
Icon
Azure Active Directory B2C (AD B2C)
Icon
Active Directory Federation Services (AD FS)
Icon
Customer Identity from SAP Customer Data Cloud
Icon
Okta (Auth0)
Icon
Summary
11
Real-World Identity Provider – A Zoom-In on Azure Active Directory
Icon
Real-World Identity Provider – A Zoom-In on Azure Active Directory
Icon
An overview of AAD
Icon
AAD basics
Icon
Supported authentication protocols
Icon
Registering and configuring applications
Icon
Additional features
Icon
Summary
12
Exploring Real-World Scenarios
Icon
Exploring Real-World Scenarios
Icon
The identity features within an enterprise in the real world
Icon
The implications of the company’s structure
Icon
Frontend authentication challenges in the real world
Icon
Backend authentication challenges in the real world
Icon
Authentication challenges for microservices integration
Icon
Summary
13
Index
Icon
Index
Icon
Why subscribe?
14
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share your thoughts
Icon
Download a free PDF copy of this book

OAuth 2.0 and OIDC

This chapter is going to get you started on the technical journey to understand the advanced concepts that will be covered in the following chapters.

In this chapter, we are going to learn about the basics of the most used authentication protocol for cloud applications, which is OAuth 2.0, and we are going to appreciate why OAuth 2.0 has become the de facto standard in web authentication.

This chapter will also introduce you to OpenID Connect (OIDC).

OIDC extends the OAuth 2.0 protocol by introducing new flows, reusing some existing ones, and making the user, not the application, the center of these flows.

In this chapter, we will go through and learn all about the basics of OAuth 2.0 and OIDC, their similarities and differences, where they can be used and why, and what the actors that participate in authentication and/or authorization flows are.

This chapter will not analyze the flows of these protocols in depth; those will be covered in the next...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Cloud Identity Patterns and Strategies
End of Section 5
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon