Practical Auth(entication|orization) for Developers

It's never been easier to launch a website or expose services over HTTP. It's also never been easier to make rookie mistakes in the authentication of those services. This session is designed for the average developer/architect that's struggling to make sense of modern authentication options. You'll learn the differences between OAuth, API Keys, HMAC, JSON Web Tokens (JWT), SAML, and more. Don't worry if those things sound foreign; they'll be explained in a clear, practical way so that you can choose the appropriate tool for your needs without making rookie mistakes.