{"id":5590,"date":"2017-06-02T09:36:59","date_gmt":"2017-06-02T15:36:59","guid":{"rendered":"http:\/\/allidm.com\/blog\/?p=5590"},"modified":"2017-06-02T09:36:59","modified_gmt":"2017-06-02T15:36:59","slug":"insecure-oauth-implementations-how-are-mobile-app-users-at-risk","status":"publish","type":"post","link":"https:\/\/allidm.com\/blog\/insecure-oauth-implementations-how-are-mobile-app-users-at-risk\/","title":{"rendered":"Insecure OAuth implementations: How are mobile app users at risk?"},"content":{"rendered":"<h2>Insecure OAuth implementations: How are mobile app users at risk?<\/h2>\n<p>OAuth 2.0 is an open standard for token-based authorization that allows a user&#8217;s account information to be accessed by third-party services, without sharing or exposing the user&#8217;s credentials. It&#8217;s widely used to facilitate single sign-on (SSO), so users can sign in to third-party websites and apps by using an ID provider (IdP), such as Google, Facebook, Sina Weibo or Twitter.<\/p>\n<p>Read more at &#8211; <a href=\"http:\/\/searchsecurity.techtarget.com\/answer\/Insecure-OAuth-implementations-How-are-mobile-app-users-at-risk\" target=\"_blank\">Insecure OAuth implementations: How are mobile app users at risk?<\/a><\/p>\n<p><a href=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png\"><img data-recalc-dims=\"1\" decoding=\"async\" data-attachment-id=\"4613\" data-permalink=\"https:\/\/allidm.com\/blog\/logmote-has-launched-its-unified-authentication-single-sign-on-sso-solution-into-the-global-security-market\/allidm-identityaccessmanagement\/#main\" data-orig-file=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?fit=10%2C10&amp;ssl=1\" data-orig-size=\"10,10\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"Allidm Identity Access Management Post Image\" data-image-description=\"&lt;p&gt;Identity and Access Management Post Image&lt;\/p&gt;\n\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?fit=10%2C10&amp;ssl=1\" loading=\"lazy\" src=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?resize=10%2C10\" alt=\"Allidm Identity Access Management Post Image\" width=\"10\" height=\"10\" class=\"alignnone size-full wp-image-4613\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Insecure OAuth implementations: How are mobile app users at risk? OAuth 2.0 is an open standard for token-based authorization that allows a user&#8217;s account information to be accessed by third-party services, without sharing or exposing the user&#8217;s credentials. It&#8217;s widely used to facilitate single sign-on (SSO), so users can sign in to third-party websites and [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1227,210,88,6],"tags":[666,76,601],"class_list":["post-5590","post","type-post","status-publish","format-standard","hentry","category-access-manager","category-cloud-2","category-identity-space","category-news","tag-iam-sso","tag-mobile","tag-oauth"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p25vfy-1sa","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5590","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/comments?post=5590"}],"version-history":[{"count":1,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5590\/revisions"}],"predecessor-version":[{"id":5591,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5590\/revisions\/5591"}],"wp:attachment":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/media?parent=5590"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/categories?post=5590"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/tags?post=5590"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}