Solving Identity Management in Modern Applications

1. Front Matter

   Pages i-xxvi

   PDF

2. The Hydra of Modern Identity

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 1-7

3. The Life of an Identity

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 9-18

4. Evolution of Identity

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 19-28

5. Identity Provisioning

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 29-49

6. OAuth 2.0 and API Authorization

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 51-75

7. OpenID Connect

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 77-97

8. SAML 2.0

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 99-111

9. Authorization and Policy Enforcement

   • Yvonne Wilson, Abhishek Hingnikar

   Pages 113-122

10. Sample Application with Custom API

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 123-141

11. Sessions

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 143-150

12. Single Sign-On

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 151-157

13. Stronger Authentication

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 159-166

14. Logout

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 167-179

15. Account Management

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 181-186

16. Deprovisioning

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 187-194

17. Troubleshooting

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 195-206

18. Exceptions

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 207-217

19. Less Common Requirements

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 219-228

20. Failures

    • Yvonne Wilson, Abhishek Hingnikar

    Pages 229-240

Know how to design and use identity management to protect your application and the data it manages.

At a time when security breaches result in increasingly onerous penalties, it is paramount that application developers and owners understand identity management and the value it provides when building applications. This book takes you from account provisioning to authentication to authorization, and covers troubleshooting and common problems to avoid. The authors include predictions about why this will be even more important in the future. Application best practices with coding samples are provided.

Solving Identity and Access Management in Modern Applications gives you what you need to design identity and access management for your applications and to describe it to stakeholders with confidence. You will be able to explain account creation, session and access management, account termination, and more.

What You’ll Learn

• Understand key identity management concepts
  
• Incorporate essential design principles
  
• Design authentication and access control for a modern application
  
• Know the identity management frameworks and protocols used today (OIDC/ OAuth 2.0, SAML 2.0)
  
• Review historical failures and know how to avoid them
  

Who This Book Is For

Developers, enterprise or application architects, business application or product owners, and anyone involved in an application's identity management solution

• Identity Management
• Identity Management Lifecycle
• Identity Lifecycle
• Authentication
• Authorization
• Access control
• Account provisioning
• OIDC/OAuth2.0
• SAML 2.0
• Single Sign-On (SSO)
• SSO session management

• San Francisco, USA

  Yvonne Wilson

• London, UK

  Abhishek Hingnikar

Yvonne Wilson has had many roles in the software industry related to security and identity management as a developer, security architect, customer success engineer working with customers, founder of cloud identity services, and director of a security governance, risk, and compliance function. She was responsible for IT security strategy and architecture at Sun Microsystems, founded and designed the identity management services offered through Oracle Managed Cloud Services, and works as Senior Director of GRC at Auth0 with customers and vendors to ensure end-to-end security of the application technology supply chain.

In working with business teams at Sun and while founding the initial support team at Auth0, Yvonne worked with many customers, from small startups to large enterprises, and through the implementation of SSO, federated SSO, adaptive knowledge-based authentication, and identity provisioning. From this depth of experience, she realized the need for a basic understanding of identity management concepts by business application owners as well as architects and developers. 

Abhishek Hingnikar has enjoyed writing software from an early age and has worked on multiple startups during his career. He currently works as a pre-sales engineer at Auth0 where he helps customers architect federated identity management solutions using OIDC, SAML, WSFed, and OAuth.

Policies and ethics