Node Night Tech Talks!
Hosted by Toronto JavaScript
Details
This month we have two special speakers from out of town: Joel Chen from WalmartLabs, and Myles Borins from Google.
The NodeDay Toronto conference is on May 2. It's a conference for enterprise leaders, and we're doing a Tech Talks night that same evening, focusing on technical content for the Node and JS communities.
If your manager or company leadership is interested in NodeDay we worked out a deal to sponsor 20 attendees at a 50% discount, use this link to register: https://ti.to/nearform/node-day-toronto/discount/TORONTOJS
Special thanks to Telus for providing event space.
SCHEDULE
6:00pm - Doors open. Grab something to eat and network with attendees.
6:30pm - Opening announcements. News and information about the Toronto JavaScript community and upcoming events.
6:45pm - Myles Borins (Google): The hilarious misadventures of being a platform downstream from your language. (Details below)
7:45pm - Joel Chen (WalmartLabs): Stateless CSRF protection with JWT tokens in Electrode (Details below).
8:30pm - Goodbyes, and give us a hand cleaning up the space!
TALK DETAILS
Myles Borins (Google): The hilarious misadventures of being a platform downstream from your language.
There is a group called tc39, they work on a standard called ecma262. The standard is for a language called JavaScript. This language is implemented by various vendors, generally companies who make browsers. Google has V8, Mozilla has SpiderMonkey, Microsoft has Chakra, and Apple has JSCore.
So there is this platform called Node.js. It has a small core philosophy and prides itself on offering a stable ecosystem.
Here is where things get weird; What happens when new language features are specified and they land in the VM you embed? What happens when the VM you embed updates their compiler? What happens when you have a community that doesn't neccessarily want things to change?
**Joel Chen (WalmartLabs): Stateless CSRF protection with JWT tokens in Electrode **
CSRF protection is an important web security feature, but in systems which don’t have backend sessions, validation is tricky. In this talk Joel will give an overview of the Electrode platform at WalmartLabs, and then discuss one of its Node modules that supports a stateless CSRF protection similar to the double submit cookie prevention technique. He will focus on the inner workings of this technique, its weakness and strengths, and its usage in production.
Interested in speaking or sponsoring?
Please email us at team@torontojs.com for more information. All skill levels are welcome for talks!
Join us on Slack: http://slack.torontojs.com/
Follow us on Twitter: https://twitter.com/torontojs
See you there!