Other authentication/authorization methods
1. Other authentication/authorization methods
Now we discuss some other authentication and authorization methods for applications. Your applications might need to access resources on behalf of a user. Examples of use cases where you might want to access resources on behalf of a user include: Your application needs access to BigQuery datasets that belong to your application users, or Your application needs to authenticate as a user to create projects or resources on their behalf. You can use the OAuth 2.0 protocol to access resources on behalf of a user. When your application requests access to the resources, the user is prompted for consent. If consent is provided, the application can then request credentials from an authorization server. The application can use those credentials to access resources on behalf of the user. Another way to provide access to users is to use Identity-Aware Proxy, or IAP. IAP controls access to your cloud applications running in your Google Cloud project. IAP verifies a user's identity and determines whether that user should be given access to the application based on configuration. The developer does not need to write code to control access. IAP lets you establish a central authorization layer for applications accessed by HTTPS. IAP helps you adopt an application-level access control model instead of relying on VPNs, network level firewalls, or complex authorization code in your applications. Firebase is an app development platform that helps you build mobile applications. Firebase Authentication provides features to help you add authentication and identity management to your mobile apps. Firebase Auth supports authentication using passwords, phone numbers, and popular federated identity providers like Google, Apple, and GitHub. Firebase Auth provides drop-in auth components that handle UI flows for sign-up and signing in and edge cases like account recovery. SDKs and ready-made UI libraries make development easy. After a successful login, you can access the user's profile and use the provided token in OAuth 2.0 and OpenID Connect flows for backend services. Identity Platform and Firebase Authentication offer similar functionality. Both let you easily sign users in to your apps by providing backend services, SDKs, and UI libraries. However, Identity Platform offers additional capabilities designed for enterprise customers. Identity Platform supports signing in with OpenID Connect and SAML authentication. Other enterprise features such as multi-factor authentication and integration with Identity-Aware Proxy are also supported.2. Let's practice!
Create Your Free Account
or
By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.