News

At IETF 101 in London, we were presenting the recently suggested RFC to the OAuth working group that will allow developers to secure their SPA in a standardized way. Until now, there hasn’t been a way in OAuth for clients to request user authorization when using scripting languages such as JavaScript.

On March 22nd, Curity will host a half-day workshop on OAuth and OpenID Connect at Nordic APIs and Copenhagen Fintech’s event APIs for Banking and FinTech, in Copenhagen. If you are architecting your APIs, or doing back-end development, then this workshop is for you – previous experience with the technologies is not required to participate.

Curity is the proud organizer behind the Stockholm Java User Group meetup. The next meetup will be hosted together with Computer Futures. The meetup, with the theme Patterns and Performance, will take place at 6 pm on February 20th, at SUP 46’s offices on Regeringsgatan 65 in Stockholm. The meetup is free and we will have three speakers presenting.

We are happy to be attending API Days in Paris on January 30th, where our CEO Travis Spencer will be holding a session on Secure Your APIs with Phantom Tokens.

In his session, Travis will be talking about how it is not sufficient to simply follow the standards to secure your APIs. How do you properly handle PII and other sensitive data inside JWTs and what about of devs depending on the data where changes to the token format breaks the app? The presentation will show how this is resolved using Phantom Tokens in the Curity Identity Server, still being 100% OAuth 2 compliant and benefiting from JWTs in the API backend protected by normal Reverse Proxy.

We are very happy to announce that the Curity Identity Server is now OpenID Connect certified by the OpenID Foundation. Curity is a strong proponent of organizations following the OpenID Connect standard and the for many reasons and we’re proud to pass all test required for certification. The working being done in the OpenID Foundation is in the benefit of the entire Internet community. The conformance profiles are: Basic OP, Implicit OP, Hybrid OP and Config OP.