The Modern Java Web Developer and Java Web Application Security

We are pleased to have Matt Raible here for both sessions tonight. The first talk will be about The Modern Web Developer, along with the main presentation being Java Web Security.

About Matt Raible:

Matt Raible has been building web applications for most of his adult life. He started tinkering with the web before Netscape 1.0 was even released. For the last 15 years, Matt has helped companies adopt open source technologies (Spring, Hibernate, Apache, Struts, Grails, Bootstrap, jQuery) and use them effectively. Matt has been a speaker at many conferences worldwide, including Devoxx, The Rich Web Experience, Jfokus, No Fluff Just Stuff, and a host of others.

Matt is an author (Spring Live and Pro JSP), and an active "kick-ass technology" evangelist on raibledesigns.com (http://raibledesigns.com/). He is the founder of AppFuse, a project which allows you to get started quickly with Java open source frameworks, as well as a committer on the Apache Roller and Apache Struts projects.

Matt has had quite a ride in the past few years, serving as the Lead UI Architect for LinkedIn, the UI Architect for Evite.com (http://evite.com/) and the Chief Architect of Web Development at Time Warner Cable. He currently consults as a UI Architect for HTML5 apps at Taleo/Oracle.

5:30-6:00: Networking and Food

Food, Soda, Beer and Networking. We are grateful to Cody Powell from TEksystems (http://www.teksystems.com/) for their continued sponsorship of the Food and Soda! Also, thanks to Mike Henninger of BWBacon (http://www.bwbacon.com/) for supplying the beer.

6:00-6:10: Announcements

6:10-7:10: The Modern Java Web Developer by Matt Raible

HTML5, CSS3, JavaScript, jQuery, Angular JS, Bootstrap, Mobile, CoffeeScript, GitHub, functional programming, Page Speed, Apache, JSON with Jackson, caching, REST, Security, load testing, profiling, Wro4j, Heroku, Cloudbees, AWS. These are just some of the buzzwords that a Java web developer hears on a daily basis. This talk is designed to expose you to a plethora of technologies that you might've heard about, but haven't learned yet. We'll concentrate on the most important web developer skills, as well as UI tips and tricks to make you a better front-end engineer. Some of the most valuable engineers these days have front-end JS/CSS skills, as well as backend Java skills. Come to this session and make yourself more valuable!

7:10-7:20: Break

7:20-8:50: Java Web Application Security by Matt Raible

In this session, you'll learn how to implement authentication in your Java web applications using Spring Security, Apache Shiro and good ol' Java EE Container Managed Authentication. You'll also learn how to secure your REST API with OAuth and lock it down with SSL.

After learning how to develop authentication, I'll introduce you to OWASP, the OWASP Top 10, its Testing Guide and its Code Review Guide. From there, I'll discuss using Zed Attack Proxy to verify your app is secure and commercial tools like webapp firewalls and accelerators.

8:50: Door prizes:

Amazon Gift Cards - provided by Lea Holmboe of ECS (http://www.ecsteam.com/)

JetBrains (http://www.jetbrains.com/) IDE License

ZeroTurnaround JRebel (http://zeroturnaround.com/software/jrebel/) License

A couple O'Reilly and Pearson books

Heroku (http://www.heroku.com/) T-shirts and server credits - provided by James Ward of Heroku

9:00: Networking at Ice House Tavern. Very special thanks to Katie Green from ReadyTalk (http://www.readytalk.com/) for their sponsorship of food at this location.