In my last post, I covered the marvelous world of Firebase database spelunking: when app developers misconfigure their Firestore security rules, the resulting ability to perform unauthorized data accesses can lead to terrifying data breaches for those apps. Thanks to tools like Baserunner, testing apps for such misconfigurations is easier than ever. By saving authorization state when logging into Firebase databases using email/password or phone/OTP sign-in methods, Baserunner lets you focus o...| saligrama.io
Developers don't care about OAuth or OpenID Connect. Learn why.| Okta Developer
A practical intro into OAuth and OpenID Connect. How to authorize and authenticate.| TMSVR - Dev Blog