1:15 PM Sunday Room: 8402<p>Authentication is one of the least understood areas in web development -- and there’s a lot to know: how cookies and sessions work, how to properly encrypt user sessions, how to safely log users in and out of a web application, which libraries to use, etc. </p>
<p>In this talk, you will learn how to safely log users into web applications, secure REST APIs, the low-level details that make this possible, and which Node libraries you should be using (and where). </p>
<p>He will cover: </p>
<p>- How HTTP authentication works (form based and API based).
<br />- What are cookies, and how do they work?
<br />- How do sessions work?
<br />- What is the best way to store user state in Node applications?
<br />- What sort of encryption should be used to secure client-side cookies?
<br />- Where does SSL fit into the picture?
<br />- How does HTTP basic authentication work?
<br />- How can you keep your cache secure?
<br />- What libraries are useful?</p>