Protect Your APIs with OAuth

August 25, 2021 • 4pm PDT

August 25, 2021

4:00 - 5:30pm PDT (local time?)

Add to Calendar

📺   Watch the Recording

This lab focuses on configuring an OAuth server to protect an API using OAuth access tokens. Throughout the course of the lab, you'll adjust the token lifetime of your access tokens, create a custom scope in your OAuth server, add a custom claim to the JWT access token, and learn the implications of the decisions of how to validate these tokens.


Workshop Links


Aaron Parecki is a Senior Security Architect at Okta with over 20 years of experience in the industry. He is the author of OAuth 2.0 Simplified, maintains, and has taught the fundamentals of OAuth and online security to thousands of developers worldwide. He has been invited to speak at events around the world about OAuth, online security, privacy and data ownership. He is a regular contributor to several globally-recognized specifications at the IETF including OAuth 2.1 and GNAP.



Developer Day Labs are fully digital and can be accessed from anywhere. A good internet connection is all you need to join our sessions, take part in the discussions, and engage with the community.

How to Join

Bookmark this page and come back on August 25th, the sessions will be broadcast right here!

Do I Need to Register?

You do not need to register to participate in the Developer Day Labs! If you want to join the main event sessions on the previous day, you need to register here. The platform will be open until September 17th to watch videos on-demand.

What do I Need for the Labs?

Each lab has its own prerequisites for joining, so please refer to the session descriptions above. (TBD)