01:06:25
OpenID Connect & OAuth - Demystifying Cloud Identity
Filip Hanik and Sree Tummidi talk about the OpenID Connect and OAuth 2, sharing their experiences building the CF User Authentication and Account management project, and OpenID Connect implementation.
28:58
Are Your Microservices Naked and Afraid?
Alan Ho and Sandeep Murusupalli discuss the right type of protection (OAuth/Throttling) and monitoring (e.g. bot monitoring) needed to be put in place to properly manage microservices.
40:06
Access and Secret Management in Cloud Services
Ryan Lane talks about the concepts and tooling for wrangling identity, access management, and secrets (passwords, ssl certificates, access tokens, etc.) in cloud services.
36:35
Two-Factor Authentication
Phil Nash takes a look at generating one time passwords, implementing two-factor authentication in web applications and the use cases for QR codes.
26:32
Light and Fluffy APIs in the Cloud
Shiva Narayanaswamy discusses event driven architectures, serverless architectures, identity management and security related to building APIs in the cloud.
01:29:39
Securing Microservices with Spring Cloud Security
Will Tran talks about the authentication and authorization scenarios that one may encounter once he starts building out microservices.
52:52
Privacy is Always a Requirement
Eleanor McHugh shares insights on digital privacy, encouraging others to gather the minimum information possible about their users in order to serve their needs.
40:01
Federating the AWS CLI with an Identity Provider
Paul Moreno shows how to federate AWS IAM permissions, roles, and users with a directory service such as LDAP or Active Directory with an Identity Provider.
30:04
Practical Insights when Designing an API from Scratch
Paul Glavich discusses design decisions to be made when building a new API regarding versioning, hypermedia usage, authentication and other aspects.
01:31:20
Securing Your Grails App - Beyond Authentication & Authorization
Colin Harrington warns that application security is not a concern that we can ignore. Vulnerabilities come from various angles, but it is important to stay aware so we can recognize and thwart threats
01:30:45
Security for Microservices with Spring and OAuth2
David Syer explores the new features in Spring OAuth2, providing guidance on what to use and when, and showing how easy they are to enable quickly.
57:42
Learning Rails for Fun and Nonprofit
Scott Smerchek presents the benefits of using a nonprofit web project to learn Rails and what he learned while building LoveKC.org, introducing various Rails topics.
