Developer Day

Alyssa Miller, S&P Global
Ali Spivak, Okta
Sam Julien, Auth0
Matias Woloski, Auth0
Eugenio Pace, Auth0

We’ll kick off Developer Day by celebrating developers like you building for the web, mobile, cloud infrastructure, and everywhere else code runs around the world.

Jessica Temporal, Senior Developer Advocate, Auth0

I like to remember the places I have been and I always liked the idea of having a map of those places, so as any developer would do, I built a web application for that.

In this talk, we will see how you can use Python and Auth0 together to build your very own "Where Have I Been" map! I will walk you through all the steps we will need starting from scratch. From building the first API endpoints, protecting the endpoints that create new markers, all the data manipulation, and even deployment!

Heather Downing, Principal Developer Advocate, Okta

Have you moved into a new house and want to automate *all the things*? Sounds pretty cool, right? Just one tiny concern: how secure is it to use "smart home" devices? Should you create your own software to control your blinds? What about hacking your cameras? The world of IoT (Internet of Things) has so many options to choose from but very little guidance about how secure they are, and how you as a developer can prevent unauthorized access. In this session, we will go over what you can do with existing platforms like Alexa and roll your own DIY projects to lock down who can use them - YOU.

Aaron Parecki, Security Architect Group Manager, Okta
Vittorio Bertocci, Principal Architect, Auth0

OAuth is the foundation of most of modern online security, used everywhere from signing in to mobile apps to protecting your bank accounts. Despite its ubiquity, there are still many misconceptions about OAuth and OpenID Connect in the wild.

In this session you'll learn about the background and original motivations that drove the creation of OAuth, how OAuth and OpenID Connect are used today to provide secure online experiences, as well as the latest developments and future work within the OAuth and OpenID Connect communities.

This session will cover the many new RFCs that have been published since the original draft of OAuth 2.0, which both add and remove functionality from the core spec. These include OAuth 2.0 for Native Apps, Proof Key for Code Exchange, OAuth 2.0 Security Best Current Practice, as well as some in-progress and experimental drafts such as JWT Access Tokens, Rich Authorization Requests, and various Proof of Possession techniques. This session will cover the current status of this ongoing work and what you need to know to be prepared for the future.

Uchi Uchibeke, Director of Developer Relations, Coil

Digital IDs controlled by the users enables users to seamlessly onboard to any web app or platform. With Web Monetization, users can earn freely and spend freely from their digital Identity connected wallets. This talk with highlight two open standards, the Verifiable Credential Standard and the Web Monetization Standard and show how developers can build with them today.

Bharat Bhat, Marketing Lead, Developer Relations, Okta
Vik Gamov, Principal Developer Advocate, Kong
Mike Bilodeau, Product Marketing, Corp Dev, Kong

Learn how to implement powerful new authentication and authorization scenarios with Kong and Okta. In this demo-heavy session, we will show you how to do sophisticated API access and API management flows with OIDC and OAuth - including how to plug in Identity into your CI/CD pipelines.

Jeff Taylor, Senior Product Manager, Developer Experience, Okta
Jeff Fry, Senior Technical Alliances Manager, JFrog

With Okta and JFrog, strengthen your shift-left DevSecOps strategy by validating the security of your application’s REST API endpoints before you release to production and to your customers. Learn how you can use Okta and JFrog to automate the validation of your authentication and authorization policies for your REST APIs.

Milecia McGregor, Senior Software Engineer, Mediavine

There are a number of grant types defined by OAuth, but some are more secure than others. In this talk, we’ll go over how you can add more security to your applications using PKCE. You’ll learn how this builds off of the Authorization Code grant type and we’ll go through a live demo of implementing PKCE in an application.

Cassidy Williams, Startup advisor, Investor, Meme-creator, and Engineer, Netlify

Join us for an exciting afternoon keynote to close out our first annual Developer Day with Cassidy Williams.