We are pleased to have Matt Raible here for both sessions tonight. The first talk will be about The Modern Web Developer, along with the main presentation being Java Web Security.
About Matt Raible:
Matt Raible has been building web applications for most of his adult life. He started tinkering with the web before Netscape 1.0 was even released. For the last 15 years, Matt has helped companies adopt open source technologies (Spring, Hibernate, Apache, Struts, Grails, Bootstrap, jQuery) and use them effectively. Matt has been a speaker at many conferences worldwide, including Devoxx, The Rich Web Experience, Jfokus, No Fluff Just Stuff, and a host of others.
Matt is an author (Spring Live and Pro JSP), and an active "kick-ass technology" evangelist on raibledesigns.com (http://raibledesigns.com/). He is the founder of AppFuse, a project which allows you to get started quickly with Java open source frameworks, as well as a committer on the Apache Roller and Apache Struts projects.
Matt has had quite a ride in the past few years, serving as the Lead UI Architect for LinkedIn, the UI Architect for Evite.com (http://evite.com/) and the Chief Architect of Web Development at Time Warner Cable. He currently consults as a UI Architect for HTML5 apps at Taleo/Oracle.
5:30-6:00: Networking and Food
Food, Soda, Beer and Networking. We are grateful to Cody Powell from TEksystems (http://www.teksystems.com/) for their continued sponsorship of the Food and Soda! Also, thanks to Mike Henninger of BWBacon (http://www.bwbacon.com/) for supplying the beer.
6:10-7:10: The Modern Java Web Developer by Matt Raible
7:20-8:50: Java Web Application Security by Matt Raible
In this session, you'll learn how to implement authentication in your Java web applications using Spring Security, Apache Shiro and good ol' Java EE Container Managed Authentication. You'll also learn how to secure your REST API with OAuth and lock it down with SSL.
After learning how to develop authentication, I'll introduce you to OWASP, the OWASP Top 10, its Testing Guide and its Code Review Guide. From there, I'll discuss using Zed Attack Proxy to verify your app is secure and commercial tools like webapp firewalls and accelerators.
8:50: Door prizes:
Amazon Gift Cards - provided by Lea Holmboe of ECS (http://www.ecsteam.com/)
JetBrains (http://www.jetbrains.com/) IDE License
ZeroTurnaround JRebel (http://zeroturnaround.com/software/jrebel/) License
A couple O'Reilly and Pearson books
Heroku (http://www.heroku.com/) T-shirts and server credits - provided by James Ward of Heroku
9:00: Networking at Ice House Tavern. Very special thanks to Katie Green from ReadyTalk (http://www.readytalk.com/) for their sponsorship of food at this location.