When clients like mobile, desktop, single page applications allow the user to sign-in using a third party application (google, facebook, twitter etc), one of the first choice is to use OAuth 2.0 standard with authorization code flow. In Authorization code flow, authorization request is made via browser and an authorization code is returned to the … Continue reading Secure way of doing OAuth for SPA & Native Apps
Everyone of us have heard that data transferred over HTTPS is secured. As a result we provide our highly confidential information like bank details, credit card details to a website which runs overHTTPS . Have you ever thought what makes your data secure when transferred over HTTPS ? How HTTPS makes sure that the data cannot be read by any intruder ? … Continue reading How is data secure over https?