Andreas Falk has been working in enterprise application development projects for more than twenty years. Currently he is working as managing consultant for Novatec Consulting GmbH located in Germany. In various projects, he has since been around as consultant, architect, coach, developer and tester. His focus is on the agile development of cloud native enterprise java applications using the complete Spring platform. As a member of the Open Web Application Security Project (OWASP), he likes to have a closer look on all aspects of application security as well. Andreas is also a frequent speaker on conferences like Spring I/O, CloudFoundry Summit, JAX and OWASP AppSec Europe.
Have you ever wondered what the heck is OpenID Connect and how it differs from OAuth 2.0?
Are Grant Types, Flows, JOSE, JWT or JWK unknown beings for you?
Then this workshop is a great opportunity for you to get to know all these things by getting your hands dirty in code using Spring Security 5.
After a short introduction to the basic concepts of OAuth 2.0 and OpenID Connect 1.0, we will take an existing sample spring boot application to implement authentication with OpenID Connect (OIDC) in several steps.
During the hands-on part we will cover the following parts:
The workshop will be complemented with current best practices in OIDC & OAuth 2.0 and will end with an outlook on what’s coming with the next Spring Security version.
|Talks by tracks||Talks by session types||List of Speakers||Schedule|