This is the first meeting for the new State of the Auth user group. The topics will be revolving around authentication, authorization, and the tools for working with them.

We have ozten (Austin King) from Mozilla giving a talk about Persona!

The space is sponsored by Urban Airship! There will be pizza sponsored by Mozilla!

Mailing list: https://groups.google.com/forum/#!forum/stateoftheauth

The second meeting of State of the Auth user group. The topics will be revolving around authentication, authorization, and the tools for working with them.

We have @aaronpk (Aaron Parecki) giving a talk on OAuth 2.

The space is sponsored by Urban Airship! There will be pizza sponsored by Janrain!

Mailing list: https://groups.google.com/forum/#!forum/stateoftheauth

Portland Linux/Unix Group General Meeting Announcement

Who: Aaron Parecki
What: OAuth 2.0 Simplified
Stream: http://pdxlinux.org/live

The OAuth 2.0 authorization framework has become the industry standard in providing secure access to web APIs. OAuth allows users to grant external applications access to their data, such as profile data, photos, and email, without compromising security. However, OAuth can be intimidating when first starting out. In this talk, Aaron Parecki will break down the various OAuth workflows and provide a simplified overview of the framework, highlighting a few typical use cases.

About Aaron

Aaron Parecki is the editor of the W3C Webmention and Micropub specifications, and maintains oauth.net. He is the co-founder of IndieWebCamp, a yearly worldwide conference on data ownership and online identity. He has spoken at conferences around the world about OAuth, data ownership, quantified self, and even explained why R is a vowel. You can find more about his work at aaronpk.com.

Many will head to the Lucky Lab at 1945 NW Quimby St. after the meeting.

Rideshares to the Lucky Lab available

PLUG is open to everyone and does not tolerate abusive behavior on its mailing lists or at its meetings.

What are the best current practices for building modern, completely standards-based (OIDC) web applications? Which flow should you use? How should you renew expired access tokens? How do you work with multiple resource servers? How do you achieve single-sign on? How can you make logging into your app as seamless as possible? We will demonstrate how simple it is to do all of this using open source libraries maintained by ForgeRock. Together we will deep dive into what these libraries are doing for you behind the scenes: PKCE, service workers, IndexedDB storage, hidden iframes, and more. In the end you will have all the tools at your disposal to easily build your next modern web app with OIDC.

Jake Feasel Developer Experience Lead; Forgerock

Jake has been working in the web platform for 20 years, all the while primarily interested in the use of standards and open source technologies. Jake is currently a senior engineer at ForgeRock, where he has been for the last seven years. He is most recently responsible for improving the ways in which developers interact with the ForgeRock Identity Platform.