When it comes to authentication (AuthN) and authorization (AuthZ), there is no way round OAuth2, OpenID Connect (OIDC) and JWT (JSON web token) today. Many different “flows”, “grants” and other new words included. But how does this actually work, what does it all mean and how can I integrate it into my architecture? Many developers and architects still have questions about this.

In my session, I would like to shed more light on the terms and working methods and use a simple example to explain how everything is connected and how it works.