Securing Single Page Apps

Tags: webdev javascript security

Abstract

We've been spending more and more time developing applications that run in the browser, Single Page Applications, SPA's, and more recently Progressive Web Applications, PWA’s. But with more code running client side what changes do we need to make to how we write applications, test applications and secure applications?

So how do we write a secure SPA? What do we do with our security tokens, client-side data, track vulnerabilities in our dependencies or implement trust between the client and server?

In this talk, we'll deep dive into some practical solutions on how to create secure modern web applications.

Duration: 45 minutes

Audience Profile

  • Web Developers
  • JavaScript Developers

Notes

There's a number of interactive demos throughout this talk.

The content of this talk was also used for a Pluralsight course.

Additional Resources