In this article we will talk about

  • PKCE extension to the Authorization Code grant type- specifically how it mitigates the code interception attack
  • Managing Refresh Tokens for native apps — verifying client Identity

This article assumes some level of familiarity with…

This series of posts and associated code is aimed at removing the mystery of SAML implementation and highlight what is happening in the common SAML workflows.

What is SAML?

  • Security Assertion Markup Language (better known as its acronym, SAML) is a protocol for authenticating to web applications.

But why do we need such a protocol?

  • Imagine you build a web application…

Google Protobuf development guide notes the following —

Protocol Buffers are not designed to handle large messages. As a general rule of thumb, if you are dealing in messages larger than a megabyte each, it may be time to consider an alternate strategy.

This blog walks through implementation of one…

This tutorial provides a basic Go introduction to working with protocol buffer Oneof field type. This can come in handy, when dealing with messages carrying values, which can be one of many given types. Another use case is message values representing a collection of heterogenous types.

Pre-requisite : This post…

There is tonne of information available on Go Concurrency and context usage like the context package, this blog and this but it can be a bit overwhelming. This article attempts to explain Context via a simple but perhaps the most common use case you would find in Microservices architecture.




Software Factotum

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store