Protect SPAs with OpenID Connect created with libraries like Angular and React or even just plain javascript.
0:00 Introduction
00:28 Authentication: server-rendered vs. client-rendered
01:18 Why using a BFF is essential
02:11 BFF authentication flow
03:27 User endpoint
04:00 Calling BFF API endpoints
04:14 Calling Remote APIs
04:40 Introducing the demo application
05:25 Code solution overview
06:10 BFF setup
07:13 Setting up API endpoints
08:10 External API endpoints
08:40 Frontend setup
09:20 Accessing a BFF with vanilla javascript
09:36 Anti CSRF header
10:05 Reading the claims
10:29 Calling APIs from the SPA
10:52 Outro
#bff #spa #authentication #react #angular #vuejs #openidconnect
