Thread: Google Oauth 2.0 for user login
View Single Post
Old 05-03-2024, 04:45 PM   #9
Quoth
the rook, bossing Never.
Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.Quoth ought to be getting tired of karma fortunes by now.
 
Quoth's Avatar
 
Posts: 11,648
Karma: 87590587
Join Date: Jun 2017
Location: Ireland
Device: All 4 Kinds: epub eink, Kindle, android eink, NxtPaper11
Quote:
Originally Posted by netchild View Post
Wrong in every aspect.

OAuth is a authorization protocol which can be and is implemented by more parties than just those two. There are even multiple OSS solutions which you can host yourself if you want to.

And it is real security on the protocol level (authorization against a 3rd party, in the sense of "not build-in authentication"). And it adds to authentication (which is not the same as authorization) when a multi-factor authentication is used (which is up to the config of the backend and doesn't need support at all in the client).
It's not actually extra security and a big corporation is using it in most cases to track and control.

It's not needed.
Quoth is offline   Reply With Quote