Code PaLOUsa

A Token Walks Into a SPA...

March 28, 2018 in Louisville, Kentucky

Single Page Applications built with frameworks like Angular are all the rage these days, and for good reason. The level of dynamic interactivity as well as developer productivity we can achieve is incredible. But what about securing these applications? Security often tends to take a back seat to speed, animations, and the latest data-binding features. Between cookies, tokens, keeping users authenticated, and handling resource access, security can become quite tricky - you may even feel like you need a second page (gasp!) for your authentication setup!

Worry not. We have the technology to create truly secure single-page applications. In this talk, we’ll walk through securing an Angular application with JSON Web Tokens (JWTs) and accessing protected server side APIs.