Skip to content

Krishna's Tech Blog

All Posts Learning Certifications Notices

Krishna's Tech Blog

Practical engineering knowledge from years of building real systems.

232 articles · 1,340 flashcards · 67 decks

Content

All Articles
Salesforce
AWS
Search

Learning

Flashcards
Quizzes
Certifications
Reading List

More

Notices
Glossary
Site Stats
RSS Feed

© 2026 Krishna's Tech Blog. Built with Next.js.Site Stats·RSS

←All articles

Banner for OAuth 2.1 and PKCE: The Modern Authorization Stack

Security13 min read

OAuth 2.1 and PKCE: The Modern Authorization Stack

OAuth 2.0 has been the de facto standard for authorization for over a decade, with a sprawl of optional flows, extensions, and patterns. OAuth 2.1 cleans it up into one canonical playbook -- with PKCE for all clients, no implicit flow, and tightened token handling. Here's what changed and how to actually implement it correctly.

KP

Krishna Patil

January 9, 2026

Share

#oauth#security#pkce#authorization#authentication#openid

SeriesPart 81 of 172

Engineering Craft

TypeScript, CI/CD, databases, observability -- the skills that make code production-ready.

Previous

Postgres Vacuum and Bloat: The Maintenance Job You Need to Understand

Next

Build vs Buy: When to Use SaaS and When to Roll Your Own

More in Security

TOCTOU Race Conditions: When Checking Isn't the Same as Doing

12 min read

TLS Handshake Explained: What Every Engineer Should Actually Know

13 min read

Threat Modeling for Engineers: STRIDE in Practice

12 min read

Study This Topic

AWS Cognito & Authentication

20 cards · intermediate

AWS IAM & Security

20 cards · intermediate

Salesforce Security Model

20 cards · intermediate

Older

Bringing Up a New Service: The Day-One Production Checklist

Newer

Observability Cost Control: Stop Your Telemetry Bill from Eating You Alive