Engineering the Future of Software
Feb 3–4, 2019: Training
Feb 4–6, 2019: Tutorials & Conference
New York, NY
Please log in

OAuth: When things go wrong (sponsored by Okta)

Aaron Parecki (Okta)
3:50pm–4:40pm Tuesday, February 5, 2019
Location: Sutton North
Average rating: ****.
(4.42, 12 ratings)

Who is this presentation for?

  • Software architects, senior developers, and technical decision makers

Prerequisite knowledge

  • Familiarity with OAuth

What you'll learn

  • Learn common security threats encountered when using OAuth when building microservices


Aaron Parecki discusses common security threats when building microservices using OAuth and how to protect yourself. You’ll learn about high-profile API security breaches related to OAuth; common implementation patterns for mobile apps, browser-based apps, and web server apps (and how to secure them); and the latest best practices around OAuth security being developed by the IETF OAuth working group.

This session is sponsored by Okta.

Photo of Aaron Parecki

Aaron Parecki


Aaron Parecki is the cofounder of IndieWebCamp, a yearly conference on data ownership and online identity, and the editor of the W3C Webmention and Micropubspecifications. He also maintains and wrote OAuth 2.0 Simplified. Aaron has spoken at conferences around the world about OAuth, data ownership, and the quantified self and even explained why R is a vowel. Aaron has tracked his location continuously since 2008 and was the cofounder and CTO of Geoloqi, a location-based software company acquired by Esri. His work has been featured in Wired, Fast Company, and more. He made Inc. magazine’s “30 under 30” list for his work on Geoloqi. Aaron holds a BS in computer science from University of Oregon and lives in Portland, Oregon.

Comments on this page are now closed.


Picture of Aaron Parecki
02/12/2019 2:13pm EST

Here are the slides from the presentation! Thanks everyone for coming to the session!

Iswarya Parupudi | SOFTWARE ENGINEER
02/09/2019 5:50am EST

Learnt a great deal Aaron! Thank you. Could you please upload the slides from the presentation at the conference?