News
Three More Chapters Released for “Cloud Native Data Security with OAuth: A Scalable Zero Trust Architecture”
Three additional chapters of the upcoming O’Reilly book, Cloud Native Data Security with OAuth: A Scalable Zero Trust Architecture, are now available for early access. Thus, there are now a total of six chapters available in the early release.
The book, authored by Curity team members Gary Archer, Judith Kahrer, and Michal Trojanowski, delves into OAuth’s architectural benefits and its role in building zero trust security frameworks. The added content expands on foundational topics, providing technical guidance and practical examples for developers and architects.
The new chapters delve into the design and implementation of OAuth data structures and secure API development:
- OAuth Data Design chapter examines how to configure authorization server data, design user accounts, and handle multi-region and multi-tenancy setups, providing examples of user migration code.
- Secure API Development offers practical guidance on implementing unified API security using JWT access tokens, including best practices for token validation, API authorization logic, handling token expiry, and testing zero trust APIs.
- Access Token Design - focuses on understanding and managing token scopes and claims, obtaining the user's consent, managing tokens at scale, and designing tokens for both synchronous and asynchronous communications across multiple APIs.
