Please log in to watch this conference skillscast.
We live in a world of rich client side applications, web and mobile, and we need a secure way to authenticate our users. Session IDs have been the traditional solution, but how well do they work for single page applications? And what about authenticating to 3rd party services? You can't leave your credentials in the client, there's always someone malicious just waiting to steal them.
Enter the JWT, or JSON Web Token. These fancy little tokens can authenticate our users and our transactions because they know what they're allowed to do.
Join Phil and discover what JWTs can be used for, why to choose JWTs, how to generate them, and most importantly how to keep them secure. Finally, you'll find out if putting abbreviations inside other abbreviations really is the secret to web security.
YOU MAY ALSO LIKE:
- Dawn of a New Error (SkillsCast recorded in October 2019)
- React & Redux: Web Application Workshop with Damjan Vujnovic (Online Workshop on 12th - 16th September 2022)
- Advanced JavaScript Workshop with Damjan Vujnovic (Online Workshop on 26th - 28th September 2022)
- FullStack eXchange: In-Person Conference (in London on 27th - 28th July 2022)
- FullStack eXchange: Online Conference (Online Conference on 27th - 28th July 2022)
- Security as Code: A DevSecOps Approach (SkillsCast recorded in February 2022)
- DevSecOps and the Fight Against Friction (SkillsCast recorded in February 2022)
JWT, WTF? - Intermediate
Phil Nash
Phil is a developer evangelist for Twilio and a Google Developer Expert based in London. He loves building with APIs and can be found programming in a variety of languages including JavaScript, Ruby and Swift. Sometimes he makes his own beer, but he's more likely to be found discovering new ones around the world.