Michał Trojanowski - Securing Single Page Applications Using The Token Handler Pattern

Single Page Applications appear simple at first sight. Web developers provide a superb user experience, and it is also relatively easy to implement token-based security in the browser. Yet this is against current best practices for browser-based apps, and security concerns can become a blocking issue. It is instead recommended to implement a Backend for Frontend (BFF), to reduce browser threats. Yet this often results in the adoption of website technologies to issue secure cookies, which can work against other web architecture goals. In this talk, I will show how a separation of web and API concerns can give you the best choices. In the talk, I will present the Token Handler pattern — Curity's variation of the Backend For Frontend approach. I will show the open-source projects we created to facilitate the implementation of the pattern.

Slides: https://s3.eu-central-1.amazonaws.com...

Michał Trojanowski
  / micha%c5%82-trojanowski-58664932  


WarsawJS Meetup #114
Time: 2024-05-08 6:30 pm CEST
Place: Packhelp


Contact us: [email protected]


Our social media: http://linktr.ee/warsawjs
http://linktr.ee/confrontjs


----

Sponsors:
➛ Callstack — https://www.callstack.com
➛ CampusAI — https://campusai.pl
➛ Monday.com — https://monday.com
➛ Packhelp — https://packhelp.com
➛ Prowly — https://prowly.com
➛ Xfaang — https://xfaang.com



Media Patronage:
➛ KMag — https://kmag.pl

Partners:
➛ JetBrains — https://jetbrains.com


#warsawjs #javascript #itmeetup