JSON Web Tokens

Working with RESTful services, and wondering how to secure them? You aren't alone. No one solution works everywhere, but JSON Web Tokens provide a simple and flexible solution for a lot of use cases. JSON Web Tokens are stateless, do not require cookies in the browser, and do not require CSRF protection. They allow the user to identify themselves upon multiple requests, and can be used as the basis for a number of different authentication and authorization schemes. In this talk, we'll look at JSON Web Tokens and what makes them special. A simple Java application with integrated Spring Security will serve as the backdrop for explaining how to build a solution around JSON Web Tokens and how to use them effectively.

Todd Nussbaum has been a professional software developer/designer/ architect for over 15 years, serving in both consulting and corporate employee roles. He’s currently director of the Java practice at HMB, a consulting firm in Columbus, Ohio. Todd spends his time demonstrating to clients how to solve business problems with technology, mainly in Java, but also in other forms of open source software. Outside of consulting, Todd is a technology tinkerer, tv watcher, and family man, coaching and attending youth sporting events with his wife, two sons, and daughter.

AGENDA

6:00 - Networking & Pizza

6:15 - Introductions

6:30 - JSON Web Tokens, Todd Nussbaum

7:20 - Open Networking

All Indy JUG meetings are open to everyone with an interest in Java development. Pizza & beverages are provided. Thanks to E-gineering for hosting & Moser for providing pizza.