Skip to end of metadata
Go to start of metadata


  1. An overview of OAuth 2 and the flows was given, referring briefly to the OAuth 2 specifications
  2. A use case was described using OAuth 2.0 implicit flow, intended for browser scenarios
  3. The demo was to retrieve an OpenID Connect token and access_token
  4. Discussion ensued about the use cases for OpenID Connect tokens, which are not clear from the specs. Use cases in the room included improving performance by using an introspectable JWT token instead of having to call a token verification endpoint, providing identity to a resource server that will make further access decisions based on the user identity or attributes, and using teh ID token as a reference to an underlying session.
  5. The demo used Angular 2 as an OAuth client talking to OpenAM as the authorization server.
  6. The angular cli was used to generate typescript template files, and a basic implementation of an angular client in the browser was written live.

Source code for Zoltan Tarcsay's demo:

Code on GitHub:



  • No labels


  1. Anonymous

    Hi all, here every person is sharing such experience, thus it's fastidious to read this blog, and I used to pay a quick visit this weblog every day.
  2. Anonymous

    Hello! Do you know if they make any plugins to assist with SEO? I'm trying to get my blog to rank for some targeted keywords but I'm not seeing very good gains. If you know of any please share. Many thanks!
  3. Anonymous

    Hey just wanted to give you a quick heads up. The words in your post seem to be running off the screen in Ie. I'm not sure if this is a formatting issue or something to do with web browser compatibility but I thought I'd post to let you know. The style and design look great though! Hope you get the problem solved soon. Kudos
Write a comment…