Authentication and Authorization Models

Intermediate GitHub Concepts

Stan Konkin

ML Enthusiast, DataCamp

Authentication Methods

 

  • 🔒 Two-factor authentication (2FA): Adds extra security
  • 🔑 Secured Socket Shell (SSH) Keys: Secure, key-based access
  • 📝 Personal access tokens (PAT): Controlled API access
  • 💼 Identity Providers (IdP): Centralized user management

Authentication

Intermediate GitHub Concepts

Two-Factor Authentication

 

2FA Methods:

  • 🔑 Security Keys: The most secure option
  • 💻 TOTP: Get codes via a trusted app
  • SMS Codes: Receive codes through text
  • 📱 GitHub Mobile: A convenient option

Two-Factor Authentication

Intermediate GitHub Concepts

Setting Up 2FA

Setting Up 2FA

Intermediate GitHub Concepts

Enabling 2FA for Organization

2FA for Organization

Intermediate GitHub Concepts

Understanding SAML SSO

 

  • 🔒 SAML Single Sign-On (SSO): One secure login for multiple apps
  • 💼 Requirements: Set up a SAML IdP
  • 🔑 Common IdPs: Microsoft Entra ID, Okta, OneLogin
  • 💯 Benefits: Centralized, secure access

Single Sign-On

Intermediate GitHub Concepts

Personal Access Tokens

 

  • 💻 PATs: Codes replacing passwords for API access
  • 💼 Use Cases: Automating tasks, integrating Jupyter notebooks
  • 🔑 Classic PATs: Broad access, less control
  • 🔒 Fine-grained PATs: Precise control, tighter security

Personal Access Token

Intermediate GitHub Concepts

Setting Up PATs

Setting Up PAT

Intermediate GitHub Concepts

OAuth Authorization Model

 

  • 🔒 OAuth: Secure, limited access for apps
  • 💻 Why: Safeguards our credentials
  • 💼 Use Case: Connecting data tools like Apache Airflow to GitHub

Connecting Airflow to GitHub

Intermediate GitHub Concepts

Let's practice!

Intermediate GitHub Concepts

Preparing Video For Download...