How OAuth 2.0 Influenced Architecture, Design, and Policy

Open Data
Location: F150
Tags: design, api, oauth
Average rating: ****.
(4.00, 5 ratings)

Sled is a new experimental productivity tool for small groups of close friends and family members. From the very beginning, OAuth 2.0 played an important role in the product architecture. However, it also influence the product design and policy (particularly open source policy).

The session will take a look at Sled, how it was architected and built with OAuth 2.0 as the core of the API architecture and security. It will example how the different parts of the application (the API server, the web server, and JS client) all talk to one another using OAuth 2.0 via different grant types and credentials.

It will also take a look at layering multiple levels of authentication, combining Facebook and Twitter authentication (using their own OAuth 2.0 infrastructure) with Sled’s API.

Sled is built entirely in JavaScript using Node.js and MongoDB.

Eran Hammer-Lahav


Eran Hammer-Lahav is an active standards developer and advocate, working for Yahoo! as project lead. Most recently was the editor of the OAuth specifications. Previously the founder of Nouncer, an internet startup building social content distribution technologies, focused on scalability and performance. Prior to Nouncer, Eran headed software development teams for financial institutions and managed IT for political and governmental organizations with focus on social networks. In 1994 Eran founded ‘A Different Stage’, the first online publishing house for Israeli literature, and published a short stories magazine. Eran attended the Tel Aviv University Film School.