About this Event
This workshop teaches you how to secure access to your APIs with industry standards and best practices using Open Authorization (OAuth) and OpenID Connect (OIDC).
The workshop will be hands on and you'll be able to complete an assignment after the workshop to consolidate your learning. You'll also receive supporting written material for the concepts taught in the workshop and a copy of the video after completing the workshop. After workshop and the assignment, you'll receive a certificate of completion.
Target audience
This workshop will be useful for
- Python developers who want to learn or improve their knowledge about building API applications.
- Backend developers who want to learn to build APIs with Python.
- Q&A engineers who want to understand how an API is built and how to test it using API testing automation tools.
- Full stack developers who work both with the frontend and the backend and want to understand better how an API server is built, and how to ensure their frontend applications will integrate with the backend.
- Tech Leads, Engineering Managers, VPs of Engineering, and CTOs who want to know which technologies are currently available and how to best use them to build robust APIs with Python.
Why you should send your team to this workshop
If you’re an Engineering Manager, a Tech Lead, or a CTO and you work or are planning to work with APIs, I recommend you encourage your team to attend this workshop. I’ve spent the last ten years working with APIs and microservices. I’ve worked with dozens of teams building both internal and external APIs. In my experience, most developers have a good notion of what an API is and how it should work. However, things fall through when it comes to specific implementation details and the workflow of how to effectively build an API. Everybody can build an API, but building a robust, scalable, and maintainable API requires certain patterns and workflows. This workshop teaches you and your team those patterns and workflows.
Some of the most common questions when working with APIs are how do backend and frontend developers agree on what the API will look like and how it’ll work? How do you document an API? How do you read an API specification? How do you implement an API according to the specification and how do you ensure that the implementation is correct? How do you decouple your service layer from your API layer? How do you decouple your data layer from your API layer?
In this workshop, we’ll address those questions and more. The goal is to learn how to build an API following best practices and patterns, how to test it effectively, and how to deploy it. We’ll work on simple examples at every step of the process while ensuring that we create a solid ground for building great APIs in the future.
What you will learn
? difference between authorization and authentication
? what Open Authorization (OAuth) is, its flows, and best practices
? what OpenID Connect (OIDC) is and how it works
? what JSON Web Tokens (JWTs) are and how to work with them in Python
? how to create middleware in your APIs to authorize user access
? set up your database to link users and resources
? best practices using HTTP status codes for unauthorized access
? using an Identity as a Service Provider
? testing secure access to the API
</ul>About the workshop
Language: English
Where: Online, via Zoom
About José
I'm an independent consultant, author, instructor, and speaker based in London. I'm also the author of Microservice APIs (Manning, 2022) and the founder of microapis.io.
Over the past years, I've worked with businesses from all over the world to help them architect microservices platforms, deliver API integrations, and improve the quality of their software.
I also organise workshops in which I teach how to design and build microservice APIs, how to add authentication and authorization, how to secure them, and how to deploy and operate them at scale.
Event Venue
Online
GBP 150.00 to GBP 600.00