It’s unusual to develop applications that have no identity requirements nowadays. Whether it’s securing access to resources, synchronising data between devices, or providing a customised experience, any new project will soon need that login form.

While you might start out with a simple login form and a backend user directory, these soon grow into their own beasts, when requirements call for multi-factor authentication, or machine-to-machine authorisation functionality.

These requirements and associated maintenance costs are often at odds with the desire to focus on building new features that actually bring your users value, or fixing bugs that currently bring them pain.

In this talk, you will learn about OAuth, OpenID Connect, and JSON Web Tokens; how they work, and how they can simplify your projects. We’ll also cover the ways in which you can run your identity management services and the pros and cons of each.