Sessions

OAuth and OpenID Connect in Practice

In short, we will talk about:

curity-oauth.openid

– OAuth flows and Actors
– OpenID Connect
– Token Formats
– Token handling
– Securing an API

Workshop description

This workshop will introduce you to the concepts and ideas behind OAuth 2.0 and OpenID Connect (OIDC), and how they can help to secure your apps and websites.

We will also discuss why things are designed the way they are, how they should be deployed in a scalable fashion, and what it means to build an entire API platform that uses these standards.In the practical part of the workshop we’ll try out the different flows and attendees will gain the information needed to implement their OAuth and OpenID Connect based solutions.

Throughout the session we encourage discussions and questions. For example: why should we, or should we not use the standards in certain ways. What can go wrong, and how does your organization gain the highest degree of reusability when deploying these mechanisms?

Why attend?

Attend this workshop to:

  • Learn how to use OAuth and OIDC to secure your APIs
  • Understand how the different OAuth flows work
  • Explore what flow to use for different scenarios
  • Learn how to shape tokens for authorization decisions
  • Discover how OAuth enables a microservices and DevOps oriented environment

Who should attend?

If you are a developer or an architect working with API development, or front-end development such as Apps or Websites, then this workshop is for you. The workshop is relevant to anyone involved in making digital services secure and privacy-oriented.

You don’t need any previous experience with the OAuth and OpenID Connect standards in order to attend.

Don’t forget to bring your laptop. You will need to be able to run Docker.

Event

The 2019 Platform Summit

Time:

October 21, 2019 13:00

Location:

Clarion Hotel Stockholm

Duration:

4 hours including break