Not so easy: OAuth2 for first-parties, part 2
Implementing OAuth2 for first-parties isn't as easy as it appears. In this post I describe the ways I handle access control and authentication. »
OAuth2
Modern authentication and authorization for first-party clients
In our time, with stateless microservices, we need a way for first-party authentication and authorization. However, this presented interesting challenges. »