As APIs and web applications continue to grow in popularity, the need for secure and efficient ways to authenticate and authorize users becomes increasingly important. JSON Web Tokens, or JWTs, have emerged as a popular solution for this purpose, but they can be confusing if you are new to them.

In this talk, I will delve into the ins and outs of JWTs, covering five key concepts that every developer should understand when working with tokens, using lots of demos.

1. What JWTs are, and how they work
2. Different types of tokens
3. How to use them for authentication and authorization
4. How to you prevent token abuse.
5. Security best practices for handling JWTs in your applications

By the end of this talk, you will have a good understanding of JWTs and the confidence to use them to secure your applications.

Target audience: Software developers and architects.

Brand new talk.

Learning Objectives
1:
Gain a solid understanding of the structure and function of JWTs, including how they are created and validated.
2:
How JWTs can be used for both authentication and authorization.
3:
Security best practices for handling JWTs in applications, including how to properly store and refresh them, and common pitfalls to avoid.