Building an OAuth2 Server in Go - Part 1
Vložit
- čas přidán 19. 06. 2024
- One of a few streams, we set out to try and build and OAuth2 server from scratch to better our understanding. We will make mistakes along the way, but every step is a step forward.
00:00 Docker and dependencies
08:49 main.go
09:51 godotenv
12:07 Coding our Client model
22:28 Running basic API
24:30 Building AuthRequest model
26:43 Building /auth endpoint
36:07 Setting up a cookie
37:07 Setting up views
49:06 Adding /confirm_auth endpoint - Zábava
Hey cool content!!, i was just following through why did u stored temp code in cookie on initial request, that blog from aaronparecki says to create it only when the user allows the app request, umm not sure which is right now.
Hey there! I can’t remember, but that might change in the 2nd and 3rd videos. There are many ways to store a code temporarily and this was a quick way to do so at the time. However, it’s worth noting that the cookie can be set to secure https only with a timeout and so their shouldn’t be much security concern if implemented correctly