Brock Allen

security architect; Solliance, Inc.
Currently Brock works for Solliance as an application security architect. He specializes in .NET, web development, and web-based security with over 20 years of industry experience. Brock is the co-author of many security-related open source frameworks including IdentityServer, IdentityModel, and oidc-client-js. He also is a MVP for ASP.NET/IIS, and a contributor to the ASP.NET platform.

Brock's Session

Thursday, June 27
2:35 - 3:00 pm
Securing Web APIs from JavaScript/SPA Applications
Modern web development means that more and more application code is running in the browser as JavaScript. This architectural shift requires us to change how we perform authentication and authorization. Fortunately, using modern protocols such as OpenID Connect and OAuth 2.0 you don’t need to invent your own solution for this new environment. This session will show you the modern approach for browser-based JavaScript applications to authenticate users, and perform secure web API invocations. As you might expect, security is sufficiently complex and so even modern security comes with its own set of challenges. Luckily, we will show off some libraries that help manage this complexity so your application doesn’t have to.

Enter your details to receive email updates from Identiverse