Theme 1 – Single Page Applications
Our first theme is focused on foundations and core concepts. It provides integrated solutions with SPAs, APIs and the authorization server, and delivers a Final SPA in line with current best practices.
Basic SPA Code Sample
- Overview
- How to Run the Sample
- OAuth Messages
- SPA Coding Key Points
- API Coding Key Points
- JWT Access Token Validation
OAuth Setup
- Initial Authorization Server Setup
- JavaScript Technology Setup
- HTTP Proxy Setup
- SSL Trust Configuration
Design Articles
- User Data Management
- API Authorization Behaviour
- User Authentication Behaviour
- IFrame Access Token Renewal
- Logout
- ID Tokens
Updated SPA Code Sample
Variation – Microsoft Entra ID
Final SPA Code Sample
Theme 2 – API Architecture
In the next theme we focus more deeply on the API architecture. This includes coding aspects related to security and reliability, using design patterns which scale to large API platforms.
Productive API Architecture Design
Supportability
Final Node.js API
Final .NET API
Final Java Spring Boot API
Productivity
Theme 3 – Native Apps
This theme covers solutions for desktop and mobile apps, and uses the recommended OAuth flows. It also provides example apps that can be used as a reference.
Initial Desktop App Code Sample
Final Desktop App Code Sample
Mobile Setup
- Android Setup + AppAuth Sample
- Android HTTPS Debugging
- iOS Setup + AppAuth Sample
- iOS HTTPS Debugging
Android Code Sample
iOS Code Sample
Theme 4 – Cloud Deployment
The final theme covers end-to-end deployment of components to run in the AWS Cloud. Both Serverless and Cloud Native hosting are used, and application code is kept portable, to support both platforms.
OAuth Domain Setup
Modern Web Deployment
Serverless APIs
Cloud Native