Access and Authentication

By Leo Farrell on May 15, 2018

OAuth: Client Authentication using JWT

OAuth: Client Authentication using JWT Client authentication with a JWT is a requirement of the UK OpenBanking standard, as per Section 5.2.2 of the Open Banking Security Profile V1.1.2 it is considered a stonger and safer method of authentication than client_id and client_secret. This method does not require the client_secret to be sent in the request […]

Continue reading

By Leo Farrell on May 8, 2018

OAuth: Customizing the login page

OAuth: Customizing the login page with Authentication Macros When providing an immersive authentication experience during an OAuth or OpenID Connect flow, knowing what information was present in the authorization request is often essential in customizing the authentication experience. When a user is directed to make a request to /authorize, they are redirected through the Advanced […]

Continue reading

By Anthony Ferguson on May 15, 2018

OAuth: Client Authentication using JWT

OAuth: Client Authentication using JWT Client authentication with a JWT is a requirement of the UK OpenBanking standard, as per Section 5.2.2 of the Open Banking Security Profile V1.1.2 it is considered a stonger and safer method of authentication than client_id and client_secret. This method does not require the client_secret to be sent in the request […]

Continue reading