Intro to JWT

December 01, 2014

1.3k

Intro to JWT

Cookies have been around for decades and have served us well. Nobody questions their usefulness. However, modern apps demand a better approach. This session is all about the natural successor to cookies: using a token-based design with JWTs.

Martin Gontovnikas

December 01, 2014

More Decks by Martin Gontovnikas

See All by Martin Gontovnikas

Make your SPA a maximum security prison - ConFoo Version

mgonto

350

Death To Cookies: Long Live JSON Web Tokens

mgonto

920

Make your SPA a maximum security prison

mgonto

3.2k

Models and Rest APIs on AngularJS with Restangular

mgonto

6.3k

Reactive Angular

mgonto

2.3k

Other Decks in Technology

See All in Technology

UFACTORY Lite 6用リーダーフォロワーシステムの作成

hygradme

120

Multimodal LLMs and foundation models in robotics

keio_smilab

PRO

690

Nuxt DevTools 101

nozomuikuta

350

AWS でのクラウド時代のログ活用

itotsum

130

SREがいない”今いる場所”で「SRE」について聞いて、考えてみた

maimyyym

210

Building Static Websites with Sculpin

opdavies

1.3k

React 19を概念から理解する

uhyo

6.3k

静的解析ツールの刷新に向けた取り組み

suginao

150

現場訪問で変わる毎日の開発

andpad

210

継続性視点での開発生産性マネジメント / Managing Engineering Organization in a Strategic Way

sms_tech

1.7k

Oracle Database Technology Night #79 - Oracle Database 23ai 新機能 Oracle Advanced Cluster File System (ACFS)

oracle4engineer

PRO

140

組織的なクラウド統制のはじめの一歩_20240529

yhana

410

Featured

See All Featured

Optimizing for Happiness

mojombo

372

69k

Large-scale JavaScript Application Architecture

addyosmani

504

110k

Side Projects

sachag

451

41k

Web Components: a chance to create the future

zenorocha

306

41k

Atom: Resistance is Futile

akmur

260

25k

CSS Pre-Processors: Stylus, Less & Sass

bermonpainter

352

28k

Fight the Zombie Pattern Library - RWD Summit 2016

marcelosomers

228

16k

Designing for Performance

lara

603

67k

Let's Do A Bunch of Simple Stuff to Make Websites Faster

chriscoyier

501

140k

Designing Dashboards & Data Visualisations in Web Apps

destraynor

226

51k

ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design

dotmariusz

104

6.7k

Agile that works and the tools we love

rasmusluckow

325

20k

Transcript

Death to Cookies Long Live JSON Web Tokens
Browser Server 1. POST /users/login with username and password 2.
Creates a User session 3. Returns a logged in cookie to the browser 4. Do an authenticated request. Sends the cookie. 5. Check the session based on the cookie and authenticate the user 6. Sends response to the client
A better approach Token-based Authentication JSON Web Tokens https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-30
Demo time! jwt.io
None
None
None
None
None
Browser Server 1. POST /users/login with username and password 2.
Creates a JWT with a secret 3. Returns the JWT to the Browser 4. Sends the JWT on the Authorization Header. 5. Check JWT signature. Get user information from the JWT. 6. Sends response to the client
@mgonto Thanks!

Intro to JWT

Intro to JWT

Martin Gontovnikas

More Decks by Martin Gontovnikas

Other Decks in Technology

Featured

Transcript

Death to Cookies Long Live JSON Web Tokens

Browser Server 1. POST /users/login with username and password 2.

A better approach Token-based Authentication JSON Web Tokens https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-30

Demo time! jwt.io

Browser Server 1. POST /users/login with username and password 2.

@mgonto Thanks!