MalmöJS is a monthly meet-up for front-end web developer passionates who are pleased to share knowledge, problems and ideas with each other.
Authentication, sessions and security is hard. As frontend developers, this is typically something we'd rather leave to others to take care of.
In recent years we've seen a steady progression away from using cookies for sessions in favor of JWT (JSON Web Tokens) and similar strategies. "Private Mode" on iOS is not without it's peculiarities, and in a recent project, supporting it actually increased the risk of making the solution less secure.
Tonight will involve a short history of the cookie, an introduction to the concept of JWT and stateless sessions, and the sharing of some hard-learned lessons.
About the speaker
Björn Rixman is a software engineer at Min Doktor in Malmö. He's been doing web development since the late 90s, starting out as a graphic designer, then gradually shifting focus to development. He is in no way a security expert, but a firm believer in staying curious and asking questions.
We will begin at 17.30 with meet and greet. The program starts at 17.45 - we will have break with something lighter to eat and drink at 18.30-ish.