Archives: authorization

OAuth2 Tutorial

Intro OAuth2 is a widely used authorization framework enables third-party applications to obtain limited access to a web service and it has been around for some time now. Though it is popular and there are a handful of really helpful introductions and descriptions on the subject, it can be a challenge for someone unfamiliar with […]

ZeroKit and Firebase Demo App First Look

If there is sensitive data to be stored when developing a mobile app, security is of utmost importance. Developers can make hackers’ work harder, but it’s almost impossible to totally prevent a data breach if they are at it. Key and encryption handling can be a real pain-in-the-ass. Storing encrypted data is one thing, but […]

Subject, Role, Privilege – DeadBolt in Play! Framework

If you have a website on which users can register and login, then you also want to protect your application from attackers. We recommend you to protect your application’s actions not only from attackers, but from users, too. For example, if you want to make a user who can upload Excel files on a specific UI, then that user should neither see other UIs, nor should s/he be allowed to take any other actions.