Join Us For an Exclusive Workshop:
Secure Authentication

for Web Applications & APIs

November 9th, 2016 • 9:00am – 4:30pm CST

This event was recorded! Watch Now (Membership Required)

Attend Online

Live and Full HD


Attend In-Person

From: Downtown Minneapolis, MN

Start Learning Today Learn Secure Authentication Money-back Guarantee

Here’s why you should join us!

By coding along with us for this workshop you’ll:

  • Discover what a JSON Web Token (JWT) is and how the JWT spec can be used for adding authentication to an application
  • Discover why authentication with JSON Web Tokens is preferable for single page apps
  • Discover what it means for a user to be authenticated in a single page app with JSON Web Tokens and how it differs from traditional round trip apps
  • Discover how to add a login screen to a single page app and have the server return a JSON Web Token on a successful login
  • Discover what it means to have a client side session with JWTs
  • Discover how to access protected resources in a single page app by making authenticated HTTP requests
  • Discover how to add access control to an application to limit resources to certain users based on their role

Your Co-Instructor

Ryan Chenkie

Ryan is a full stack JavaScript developer who works at Auth0 as a Product Owner. He has a keen interest in authentication and security for modern web apps and contributes to open source in this area with libraries like angular2-jwt.

Your Co-Instructor

Lukas Ruebbelke

Lukas is a developer, hacker, community backer, author and blogger, console logger. Google Developer Expert and Co-founder of Ultimate Angular.

Interact With the Instructor

Online & In-Person

Get Your Questions Answered

Spend the Day Immersed With Leading Web Security Masters

Non-trivial web applications require some form of user authentication. When it comes to implementing authentication in modern single page apps, things can get a bit tricky, and the traditional methods of session and cookie-based auth tend to get in the way.

The JSON Web Token spec offers a much better way of handling authentication in a SPA and comes with many benefits.

The workshop will provide demo apps in Angular 1.x, Angular 2, and React, as well as a complete API written in Node.js. The API will expose endpoints that allow users to sign up, log in, and request protected resources.

In this workshop, Ryan Chenkie and Lukas Ruebbelke will provide instruction on everything you need to know to get authentication going in your single page app. They’ll take you through the anatomy of a JSON Web Token, how to use them to protect backend resources, and how to manage all the tricky parts of authentication in a SPA.

Included with Frontend Masters Membership



Watch Now

How We'll Spend the Day

We've already held over 80 workshops holding thousands attendees in-person and online. In this time we've discovered ways to schedule the day so it goes smoothly and efficiently.

Regardless if you're in-person or participating with us online you'll have the full ability to replay things you missed, get your questions answered LIVE and interact with the teacher throughout the day.

When it comes to implementing authentication in a modern single page application, things can get a bit tricky. SPAs typically communicate with a backend via a REST API, and since these APIs should be stateless, it becomes difficult to mix traditional session and cookie-based methods of authentication in modern apps.

Arguably, the best way to do authentication in a single page app is with JSON Web Tokens. We’ll start this workshop by looking at what a JSON Web Token (JWT) is and why the spec is useful for implementing authentication. We’ll also look at some of the benefits that JWT gives us over traditional session and cookie-based auth.

We’ll spend some time looking at how we can address things like the user’s authentication state, conditionally displaying various UI elements based on that state, and persisting a session after the user logs in. We’ll also see how we can use information in the payload of a JWT to power our application’s views and how we can use the JWT to get access to protected resources on the backend.

By the end of the workshop you’ll be comfortable with managing authentication in a single page app and you’ll have the building blocks in place to implement more advanced flows such as fine-grained access control.

8:30 Tech Check and Hello
9:00 JSON Web Token Basics
9:30 JSON Web Tokens and Single Page Apps
10:00 Implementing Authentication with JSON Web Tokens
10:30 Hacking
11:00 Client Side Sessions
11:30 Hacking
12:00 Lunch and Hacking
1:00pm User Information in the Payload
1:30pm Hacking
2:00pm Protecting Resources
2:30pm Hacking
3:00pm Protecting Routes
3:30pm Hacking
4:00pm Further Reading and Wrap-up

*Note that this is a rough schedule of how each day typically break down, but that this will be adjusted as we go to make sure everyone can follow along.

The Price

The price for attending this full day workshop is simply the cost of becoming a monthly ($39) member. If you have already attended one, you know this is a tremendous value. If you haven’t, you may be wondering if it’s truly worth becoming a member.

Browse through just a few of the testimonials and you’ll see that people RAVE over these workshops. They’re unique and provide an experience and education you simple cannot find anywhere else.

You’re getting access to some of the brightest, most highly sought after experts in the world, covering topics very few people discuss in detail. Many attendees report learning more in this full day workshop than they did about a particular topics in the past 1-2 years combined.

Combine that with access to thousands of unique, high quality videos in our membership area with 500 hours of in-depth training from world renowned experts and you’ll see why this is a bargain.

  1. These workshops are different from any others you’ve attended. They cover everything, from the basics to advanced material. All of which are available for replay so you can go back and review as your skill grows.

  2. We get a lot of people saying they are scared to join… until it was over. Then they brag about how much of an amazing value they got for the price.

  3. You’re also getting videos of the workshop, plus ALL other workshops we’ve recorded, instantly!

Watch Now

Is This Workshop For Me?

This is for a intermediate developer who is comfortable with high level architectural concepts and has a fundamental grasp on what functional programming tries to achieve. Building applications in a reactive style is a bit of a paradigm shift for a lot of developers but we believe the learning curve is well worth the payoff. We will make every effort to make the examples as approachable as possible and build on them but depending on your skill level, you may have to revisit them as you progress.


A solid grasp of JavaScript and an understanding of design patterns is necessary to understand the code under discussion and keep up with the brisk pace of the class. Prior functional programming knowledge will be helpful but not necessary. It will be necessary that you have Node.js and NPM installed and working on your computer to complete the exercises.

You'll Either LOVE This Workshop Or You Don't Pay. Period.

Our attendees are ecstatic by the high-quality, relevant content they receive at these workshops.

We cover everything in explicit detail (and the things we miss are covered by answers to YOUR questions) from basic to advanced tactics you can start working with the very same day. We don't want you to miss out on this opportunity because you've been to less-than-stellar workshops in the past. We promise you, ours are very unique.

That's why if you attend the workshop and aren't absolutely thrilled with the content… if you don't think it's worth the admission price… We refuse to accept your money. We will more than gladly issue you a full refund, so you risk nothing.

We're very specific about what you're getting here and have ran lots of workshops… so we've almost never have requests for refunds (99.8% satisfaction rate).

MJG Workshop Center • 60 South Sixth Street, Suite 3625, Minneapolis, MN, 55402

What Past Attendees Are Saying

"Superb presentation from a genuine domain expert. I learned a ton today."

Steve Jakubowski

"Keep up the good work. I've attended a lot of online workshops, and they are very shallow and unpractical. Most of the time, online people are treated as second class, but still paying citizens. Here we get all the content and get to participate as well (if only there was a way to get those cookies...)."

Adrian Murillo

"The class was great. It was really cool to get a bunch of links to example code to look at during the presentation and after the class."

Nate Yourchuck

"Good location and facility. Great technology for capture, presentation layout and video streaming. Really excellent being able to view the videos afterwards. It takes away the sense of having to absorb everything immediately or else lose it into the ether. It was fun. What more can you ask for?"

Laurence Bates

"Really well run...loved the communication pre-event. Very impressed with everything...this was my first online conference purchase, but I would definitely consider doing it again."

Jeff Sims

"I really enjoyed the online workshop experience. It is much better than just watching videos. I was able to participate in the conversations and benefit from other folks' questions."

Dana Greenberg

"You guys did a really great job! I cannot say enough good things about the experience."

Richard Ranke

"Everything was first class: excellent instructor, material, video, moderator, audio. Thank you!"

Oscar Pagani

My name is Marc Grabanski I'm the founder of Frontend Masters. I guarantee this workshop will be awesome. Period.

If you don't think it's worth 10x the value, I'm happy to give you back every penny. That's my promise to you!

Marc Grabanski
Founder Frontend Masters