Adopt these best practices for securing single-page apps with OAuth 2
The need for API access and the use of web technologies make OAuth 2 an excellent standards-based approach for securing single-page applications. In this white paper, Ping Identity’s CTO Office presents recommended practices for implementing OAuth 2 and OpenID Connect to meet the authorization and authentication needs for single-page apps. These recommendations are aligned with OAuth 2 best practices for native applications published by the Internet Engineering Task Force (IEFT), and cover aspects such as redirect URIs, implicit grants and cross-origin support.
Read the paper to learn practices that can help you promote a simpler security model, better technology sharing, and a shared evolution toward the future.