Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn how to implement passwordless authentication in Spring Security using one-time tokens and passkeys in this conference talk from Devoxx. Explore the security challenges of traditional password-based authentication and discover two modern alternatives available since Spring Security version 6.4. Understand the theory behind passkeys and how they leverage device authentication mechanisms like Windows Hello, Apple's FaceID, and Android equivalents for seamless user authentication. See practical demonstrations of integrating one-time token functionality, including magic link generation for email-based login flows that require no additional user account setup. Follow along as the speaker walks through implementing passkey support in an existing application, discussing the specific technical challenges and considerations for each passwordless approach. Gain insights into when and how to move away from traditional password authentication while maintaining user-friendly authentication flows without relying on third-party OpenID Connect providers.
