关于此课程

As a Python programmer, leveraging Flask allows you to quickly and easily build your own web applications. But before you share your apps on the Internet you should protect your users' data, ensuring information stored on your site is safe from unwanted manipulation. You could implement web security and permissions on your own, but relying on trusted providers is a faster, safer, and easier way to allow users to login to your application - without having to create and maintain another account, profile, and password.

In this course, you will learn to implement the OAuth 2.0 framework to allow users to securely login to your web applications. You'll be provided a restaurant menu application created in Flask. By the end of this course, you will write the necessary code to implement Google+ Sign-In and Facebook Login in options so users can create restaurant menus that are viewable by everyone but only modifiable by the original creator.

喜欢这门课程?加入“全栈网站开发工程师”纳米学位,点此免费体验

学费
免费
学习时间
大约 2 WEEKS
难度
中级
你将获得

Rich Learning Content

Interactive Quizzes

Taught by Industry Pros

Self-Paced Learning

Student Support Community

开始你的旅程

学习这门免费课程,迈出通往全栈网站开发工程师(英文)职业道路的第一步。

免费课程

Authentication & Authorization: OAuth

合作企业

通过创新性的自主学习方式,掌握新技能,提升竞争力。

Icon steps 54aa753742d05d598baf005f2bb1b5bb6339a7d544b84089a1eee6acd5a8543d
 
 

课程讲师

Gundega Dekena
Gundega Dekena

讲师

Lorenzo Brown
Lorenzo Brown

讲师

你将学到什么

Lesson 1

Authentication vs. Authorization

  • Learn the difference between authentication and authorization.
  • Learn how OAuth 2.0 makes implementing security easier for developers and users.
  • See OAuth 2.0 in action as you make API requests using Google's OAuth 2.0 Playground.
Lesson 2

Creating a Google+ Sign-In

  • Learn about the different types of security flows your application can implement.
  • See how security can be handled by your server and your user's browser.
  • Add a Google+ Sign-In to an existing web application and implement a hybridized client/server flow.
Lesson 3

Local Permission Systems

  • Add python code to create server-side rules that will constitute a permission system.
  • Limit access of the database for each logged in user based on how the developer designs this code.
  • Add a User model model to your database to store the credentials collected from the OAuth provider's API.
Lesson 4

Adding Facebook & Other Providers

  • Learn to implement multiple OAuth providers on your web application.
  • Add Facebook Login as an alternative sign in option for your users.
  • Understand how to use OAuth provider documentation to add as many providers as you see fit.

先修知识及要求

This course was built to expand upon the concepts introduced in Full Stack Foundations, specifically:

  • performing CRUD operations
  • making use of templates
  • developing with the Flask framework

Additionally, HTML, JavaScript, AJAX are heavily used in this course. A basic understanding of these technologies is needed to get the most out of these lectures.

If you'd like to refresh your HTML knowledge start with our Intro to HTML and CSS course. You can check out the JavaScript Basics and Intro to AJAX courses to brush up on these topics as well.

查看使用优达学城的技术要求

为什么学习这门课程?

OAuth 2.0 is a popular framework that allows users to login to your web application by using third party sign ins, from providers they've already created and trust, with the click of a button. And because passwords and sensitive data are never sent, your web application does not have to deal with the complexities of secure password storage and security breaches. Your users can then control the level of access your application has to their data, and change or revoke this access at any point in time.

我将获得什么?
Instructor videos Learn by doing exercises Taught by industry professionals