Secure your SPA using OAuth 2 & OpenID Connect

When securing APIs, OAuth 2 and OpenID Connect are the primary standards being used today. Implementing and using these standards can be challenging. In this session, Travis Spencer, CEO of Twobo Technologies, will provide an in-depth overview these standards and explain how they can be integrated with different types of clients, backends and APIs – including single-page applications (SPAs).

The overview will include information on:

  • The actors involved in OAuth and OpenID Connect
  • The flows used in the standards
  • What grant types are, which are defined, and the message exchanges of each
  • What scopes are and examples of their use
  • Different classes of tokens and how they are used
  • Code walkthrough for an SPA integration

Attendees will leave with:

  • An overview of OAuth 2 and OpenID Connect
  • Knowledge of the basics necessary to implement API security using these standards
  • Resources and information sources where more information can be found

Location: Room 3 Date: 20/05/2017 Time: 13:45 - 14:15 Travis Spencer