This course offers an in-depth look into the security challenges of modern React applications. This course provides you with secure coding guidelines and advice on deploying security technologies such as Content Security Policy and Trusted Types.
React applications disrupt the traditional web security landscape, and finding reliable security advice is hard. Most React security content is superficial and ignores challenges real-world applications face. This course will help you to truly understand attacks and defenses in a React world.
With a mix of lectures, demos, quizzes, and cheat sheets, participants discover best practices for building secure React applications. We explore what security measures React provides out-of-the-box, along with common mistakes that circumvent these protections. Using concrete examples, we build up a set of best practices to address the security shortcomings of React. Additionally, we discuss how to use modern browser features, such as Content Security Policy and Trusted Types, to apply a defense-in-depth strategy to your React applications. Finally, we investigate how to apply the covered security guidelines in server-side rendering scenarios.
This course offers a deep understanding of vulnerabilities and defenses in modern React applications. At the end of this course, you walk away with practical and immediately applicable security advice to improve the security of your React applications.
This course is fully recorded and all recordings are available on the course platform.
The outline below shows you which topics are covered in this course.
Subscribe to this course, which gives you access to the recordings, slides, quizzes, and code examples.
Save 20% by getting the course bundle, giving you access to this course and the API Security best practices course.
Get the course bundle, plus 2 hours of private consulting with Philippe, scheduled at your convenience.
This course is 100% relevant for anyone involved with building React applications. Concretely, you should follow this course if .
. you want to turn your knowledge level of React Security all the way up to 11.
. you want to learn code hygiene techniques that allow you to apply React secure coding guidelines at scale.
. you are looking for actionable advice that addresses the intricacies of using complex technologies, such as Content Security Policy or Trusted Types, in React applications.
. other security courses failed to meet your expected level of profoundness. This course will help you understand why security issues exist and how defenses work so that you can apply them in any scenario.
This course offers practical and immediately applicable security advice to React developers. Concretely, this course gives you access to:
Dr. Philippe De Ryck
Hi, I'm Philippe, your instructor for this course. I provide professionals like you with the high-quality security knowledge they need to perform at their best.
My PhD in web security has not only given me an exceptionally strong security background, it has also taught me how to methodically explain complex security concepts. This course rigorously translates that knowledge into security best practices for modern applications.
If you want to get an idea of what I have to offer, I recommend checking out my security articles or any of my recorded conference talks.
Finally, these testimonials from previous training participants should tell you everything you need to know.
We hired Phillipe De Ryck for a training on API Security. His mix of content and quizzes kept people well engaged. He was very clearly knowledgeable and patient as he took the time to be sure everyone’s questions were fully answered. Phillipe will definitely be at the top of our short list of people we want to bring back for future trainings.
Shane Gliser, Application Security Specialist, American Century Investments
I needed to provide a deep set of training content to developers at my company, especially around secure authorization flows for modern applications. Philippe delivered a comprehensive series on OIDC and OAuth flows and security of modern apps and API's and I couldn't be more happy with this valuable resource for our developers. Thank you so much Dr. Philippe!
Jet Anderson, Code Doctor, Nike
In a nutshell, you should definitely join this course.