Session en anglais - Intermédiaire
Javascript Sécurité Services Web
Nowadays many modern web applications are solely relying on JavaScript to render their frontend and only provide an API endpoint at their backend, resulting in a much more fluent and desktop-application-like user experience. But if you want to create mashups, load data from many different places or include external widgets into your site, you are quickly running into boundaries because of browser and security restrictions. In this presentation I will talk about techniques, some older, some brand new which will help you to:
* create rich JavaScript based Web Applications
* make API calls to external domains
* authenticate these calls through OAuth2 without compromising your secrets
* load external content and JavaScript widgets safely
* send JavaScript messages between frames on different domains
* get real-time notifications from your backendand use the browser to store the some of the user's data.
* create rich JavaScript based Web Applications
* make API calls to external domains
* authenticate these calls through OAuth2 without compromising your secrets
* load external content and JavaScript widgets safely
* send JavaScript messages between frames on different domains
* get real-time notifications from your backendand use the browser to store the some of the user's data.
Bastian Hofmann (ResearchGate GmbH) View speaker page
Bastian is a Software Engineer at ResearchGate, the leading social network for scientists, working there on everything API related. Before that he was responsible for the integration of OpenSocial, OAuth, OpenID and other open standards into the largest german based social networks. This, together with his activity in the OpenSocial foundation and as a committer and PMC member for the Apache Shindig project makes him a strong advocate for the vision of an truly open and distributed social web. 
