OAuth is an important RFC that handles delegated authorization. PKCE (or Proof Key for Code Exchange) is an OAuth 2.0 flow, that can be managed in a frontend application, allowing the user to handle storing tokens in the browser. This eliminates the need to rely on a server-side session making the authorization stateless. PKCE also removes the need for complex session caching, and provides the end user with control over their tokens. To understand PKCE this presentation will look at the history of OAuth, how PKCE fits into current applications, and run through an example. The talk will focus on how this can be done across the major frameworks such as Vue, Angular, and React. With these tools anyone will be able to implement a stateless, secure, and standard way to handle authorization and authentication.