Full Stack Radio

A podcast for developers interested in building great software products. Hosted by Adam Wathan.

98: Ryan Chenkie - Securing Single Page Applications

In this episode Adam talks to Ryan Chenkie of Angularcasts about authentication strategies and security best practices when building client-side applications with frameworks like React, Vue, Angular, or Ember.

Topics include:

  • What JSON Web Tokens are and how to use them to authenticate users
  • Strategies for invalidating stateless API tokens
  • Using cookie and session authentication
  • Using authentication-as-a-service solutions like Auth0
  • Proxying requests to your API to simplify CORS issues
  • Protecting against XSS attacks


  • Cloudinary, sign up and get 300,000 images/videos, 10GB of storage and 20GB of monthly bandwidth for free
  • Rollbar, sign up at https://rollbar.com/fullstackradio to try their Bootstrap Plan free for 90 days