As a software developer you want 3 things: you want to code, you want to develop great software... and finally, you want to code great software. Of course, you do understand that security is important as neither the world, nor the internet is a safe place. But if you follow all the guidelines of your CISO, you are handcuffed. The good news: There is a way to write great code AND become your CISOs almost best friend. Enter OpenID Connect, oAuth, API Management and Keycloak. In this live demo, we will show how an entirely unprotected web application can be secured against internal and external threats.