Elevator Pitch
Regardless of your tech stack, most web applications need an authentication process. Yo might already be using OAuth, OpenID Connect, and JSON Web Tokens to make this easier for you, but do you know how it works under the hood? From single-page apps to the APIs that drive them, and everything in between, you’ll also learn about the most common authentication flows, and how to pick the right one for the job.
Description
It’s unusual to develop applications that have no identity requirements nowadays. Whether it’s securing access to resources, synchronising data between devices, or providing a customised experience, any new project will soon need that login form.
While you might start out with a simple login form and a backend user directory, these soon grow into their own beasts, when requirements call for multi-factor authentication, or machine-to-machine authorisation functionality.
These requirements and associated maintenance costs are often at odds with the desire to focus on building new features that actually bring your users value, or fixing bugs that currently bring them pain.
In this talk, you will learn about OAuth, OpenID Connect, and JSON Web Tokens; where they came from, how they work, and how they can simplify your projects. From single-page apps to the APIs that drive them, and everything in between, you’ll also learn about the most common authentication flows, and how to pick the right one for the job.