Talk in English - US at php[tek] 2017
View Slides: https://www.slideshare.net/AdamEnglander/dont-loose-sleep-secure-your-rest-phptek-2017
Short URL: https://joind.in/talk/4fea6 (QR-Code (opens in new window))
Many developers struggle with how to properly secure REST APIs. If you are like me, you followed a process from a trusted provider like Amazon, Google, etc. What if I told you there was a better way? It’s JOSE, a collection of open standards from the IETF that has strong library support. It’s also the basis of OAuth 2.0 and OpenID Connect. Let me show you how to make a highly secure API for today and well into the future built on the framework of JOSE.
Comments are closed.
Fascinating talk. Didn't know this stuff existed. As I'm now writing APIs that will exchange data between some of my own applications, I will definitely incorporate this into the process.
Great overview of JOSE tools and techniques. Glad I attended.
This was a good overview of JOSE. I have more questions now than I had before, but now I have a starting point for building my API with security.
Great overview of Jose
The information was great.
My concern is how well I'll be able to carry this back to my code and implement it. We got into a lot of heavy code.
I'm very glad the slides are provided here to help!
Excellent speaking style, and great content. Adam clearly laid out the need, the solution, and the different role each standard plays. It didn't detract from the talk, but I'd like to hear something of a differentiation of when full OAuth 2 is appropriate versus using JOSE standards like JWT.