馃挰 Slides Securing APIs has become more standardized with modern solutions like OAuth2, OIDC, JWT and rate limiting. Now, tools like Keycloak and Symfony鈥檚 new features simplify implementing these protocols. As an API developer, you鈥檒l learn to enhance your API鈥檚 security. As an API consumer, you鈥檒l discover how to interact securely with external APIs. Join us to master secure API practices, without the complexity!
馃挰 Slides Via some simple but real scenarios, we will discover the power of the new AccessToken Authenticator shipped in Symfony 6.2. For example, we are developing a SaaS product, which exposes a private API. Our users can register many applications into their accounts, for each one we will generate an API Token that users must inject in their requests. Now, with a pinch of YAML and a dash of PHP, we will be able to authenticate users from their API Token. In this talk, I will show you how it also works with JWT and some other exotic tokens!