Book description
Developers, designers, engineers, and creators can no longer afford to pass responsibility for identity and data security onto others. Web developers who don’t understand how to obscure data in transmission, for instance, can open security flaws on a site without realizing it. With this practical guide, you’ll learn how and why everyone working on a system needs to ensure that users and data are protected. Authors Jonathan LeBlanc and Tim Messerschmidt provide a deep dive into the concepts, technology, and programming methodologies necessary to build a secure interface for data and identity—without compromising usability.
Publisher resources
Table of contents
- Preface
- 1. Introduction
- 2. Password Encryption, Hashing, and Salting
- 3. Identity Security Fundamentals
-
4. Securing the Login with OAuth 2 and OpenID Connect
- The Difference Between Authentication and Authorization
- What Are OAuth and OpenID Connect?
- Security Considerations Between OAuth 2 and OAuth 1.0a
- Building an OAuth 2.0 Server
- Creating the Express Application
- Setting Up Our Server’s Database
- Adding OpenID Connect Functionality to the Server
- Building an OAuth 2 Client
- Adding OpenID Connect Functionality to the Client
- Beyond OAuth 2.0 and OpenID Connect
- 5. Alternate Methods of Identification
- 6. Hardening Web Applications
- 7. Data Transmission Security
- A. GitHub Repositories
- B. Technical Preconditions and Requirements
- Glossary
- Index
Product information
- Title: Identity and Data Security for Web Development
- Author(s):
- Release date: June 2016
- Publisher(s): O'Reilly Media, Inc.
- ISBN: 9781491937013
You might also like
book
Container Security
To facilitate scalability and resilience, many organizations now run applications in cloud native environments using containers …
book
Learning TypeScript
TypeScript has conquered the world of JavaScript: it's one of the world's fastest growing and most …
book
Learning Modern Linux
If you use Linux in development or operations and need a structured approach to help you …
book
ASP.NET Core in Action, Second Edition
ASP.NET Core in Action, Second Edition is a comprehensive guide to creating web applications with ASP.NET …