Berlin Meetup Michele Angioni Token based Authentication

Authentication is often one of the most critical parts of modern applications, even and often especially in bigger ones. Much has changed in the last years and many applications moved from a traditional cookiesessionbased to a more modern tokenbased approach. But this opened a new class of challenges and threats. Together we will take a look at the main features of authentication tokens, with the security threats coming from XSS and CSRF attacks and how to mitigate them. Some code samples will also be given on how to securely exchange tokens between a NodeJs server and a VueJs based client.