Jacob Ideskog Curity
Daniel Lindau Curity
Register for this session
– OAuth flows and Actors – OpenID Connect – Token Formats – Token handling – Securing an API
This workshop will introduce you to the concepts and ideas behind OAuth 2.0 and OpenID Connect (OIDC), and how they can help to secure your apps and websites.
We will also discuss why things are designed the way they are, how they should be deployed in a scalable fashion, and what it means to build an entire API platform that uses these standards.In the practical part of the workshop we’ll try out the different flows and attendees will gain the information needed to implement their OAuth and OpenID Connect based solutions.
Throughout the session we encourage discussions and questions. For example: why should we, or should we not use the standards in certain ways. What can go wrong, and how does your organization gain the highest degree of reusability when deploying these mechanisms?
Attend this workshop to:
If you are a developer or an architect working with API development, or front-end development such as Apps or Websites, then this workshop is for you. The workshop is relevant to anyone involved in making digital services secure and privacy-oriented.
You don’t need any previous experience with the OAuth and OpenID Connect standards in order to attend.
Don’t forget to bring your laptop. You will need to be able to run Docker.
May 4, 2020 1:00
JW Marriott Austin
4 hours including break
High impact blog posts and eBooks on API business models, and tech advice
Connect with market leading platform creators at our events
Join a helpful community of API practitioners
Can't make it to the event? Signup to the Nordic APIs newsletter for quality content. High
impact blog posts on API business models and tech advice.
Become a part of the world’s largest community of API practitioners and enthusiasts. Share your insights on the blog, speak at an event or exhibit at our conferences and create new business relationships with decision makers and top influencers responsible for API solutions.