Introducci贸n a Auth0
驴Ya tomaste el Curso de Introducci贸n a OAuth 2.0 y OIDC?
驴Qu茅 es Auth0?
驴Qu茅 es Universal Login?
Autenticaci贸n r谩pida con el SDK de Next.js
Conexiones sociales
驴C贸mo hacer un login con GitHub?
驴C贸mo hacer un login con Twitch?
驴C贸mo hacer un login custom con Discord?
Conexiones sin password
驴C贸mo implementar el login con SMS?
驴C贸mo implementar el login con Email?
Protegiendo una API
驴C贸mo usar la Auth0 Management API?
驴C贸mo configurar una API en Auth0?
驴C贸mo proteger un endpoint?
Auth0 SDKs
Single Page Apps: React SDK
Regular Web Apps: Express SDK
Machine to Machine: Express.js
Administraci贸n de usuarios
驴C贸mo administrar usuarios?
驴C贸mo administrar roles?
Reglas y Acciones en Auth0
驴Qu茅 son las reglas y acciones en Auth0?
驴C贸mo implementar una regla?
驴C贸mo implementar una acci贸n?
Multifactor Authentication
驴Qu茅 es multifactor authentication?
WebAuthn con FIDO Security Keys
One-time Password
Casos en producci贸n
Actividad y Monitoreo en Auth0
驴C贸mo integrar Firebase Auth?
Implementaci贸n Firebase Auth: Admin
Implementaci贸n Firebase Auth: Rules
驴Quieres m谩s cursos de autenticaci贸n?
You don't have access to this class
Keep learning! Join and start boosting your career
Web Authentication, or Web Authentication, represents a revolution in the way we authenticate users online, replacing traditional passwords with physical security devices. This standard is compatible with most web browsers and uses devices approved by the FIDO Alliance, which can be security keys or biometric devices.
The registration process is fundamental when we talk about web authentication. It involves three main entities:
The process flow is as follows:
The trusted source will hold the public key to verify that the challenge was signed by the rightful owner and will store an authenticator identifier. Thus, a credential is created in the trusted application.
The login process is also simple:
This method ensures that only you, who has the private key, can verify the login, eliminating the dependency on passwords.
Auth0 facilitates the implementation of the Web Auth standard:
Remember that not all keys support the PIN or sensor option, but if your key supports it, you can configure it for added security.
By saving these settings, Auth0 will require users to enable this multi-factor authentication method, significantly increasing the security of your infrastructure.
Authentication under this standard requires physical devices approved by the FIDO Alliance:
To explore options, I recommend you visit the UBICODE site, which offers a variety of security keys. Choosing the right device depends on your needs and the environment where you will be using it; whether for personal access or in a corporate environment.
Take the plunge and integrate these technological advances that, in addition to increasing your security, simplify your life by leaving behind the complications associated with passwords. And stay tuned, because we will continue to explore how to improve security in the next classes.
Contributions 1
Questions 0
Want to see more contributions, questions and answers from the community?