Building Clients for OpenID Connect - OAuth 2-based Systems

Explore the intricacies of building clients for OpenID Connect and OAuth 2-based systems in this comprehensive conference talk. Delve into best practices for implementing authentication and API access protocols, addressing challenges such as selecting appropriate protocol flows, secure token storage, and token lifetime management. Learn how to simplify front-end development by eliminating credential handling while navigating the complexities introduced by these protocols. Gain insights into solving common issues for native server applications, client-side applications, browser-based applications, and Single Page Applications (SPAs). Discover the nuances of various flows including Client Credentials, Authorization Code, Hybrid, and Resource Owner Password, as well as modern techniques like Proof-Key for Code Exchange (PKCE) and the "BFF" architecture. Understand the evolution of browser-based clients, the implications of SameSite cookies, and how to effectively use client libraries for seamless integration.