Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta

About this course

Unauthorized use of tokens due to token theft is dangerous and detrimental to our software applications. Single Page Applications (SPA) can be vulnerable to token exfiltration attacks, but your application security depends on legitimate token use to grant access levels appropriately. Leverage the OAuth 2.0 Demonstrating Proof of Possession (DPoP) spec to add an extra protection mechanism on access tokens. DPoP increases identity security for sensitive resources, such as calling Okta management APIs, and is becoming a requirement for specific industries. This lab upgrades a Single Page Application (SPA) using an OAuth 2.0 Bearer access token into a more secure DPoP token.

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session

Event	Date	Spaces left	Actions
Use Possession-proof Tokens to Protect Your Apps with Okta (Nov 6 / AMER-Pacific) (RCT01H) Use Possession-proof Tokens to Protect Your Apps with Okta (Nov 6 / AMER-Pacific) (RCT01H) View Events	Nov. 6, 2025, 7 a.m. - Nov. 6, 2025, 9 a.m. PST Nov. 6, 2025, 7 a.m. - 9 a.m. PST	30	Register

Curriculum

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session
Launch: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session

About this course

Live events

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session

Event	Date	Spaces left	Actions
Use Possession-proof Tokens to Protect Your Apps with Okta (Nov 6 / AMER-Pacific) (RCT01H) Use Possession-proof Tokens to Protect Your Apps with Okta (Nov 6 / AMER-Pacific) (RCT01H) View Events	Nov. 6, 2025, 7 a.m. - Nov. 6, 2025, 9 a.m. PST Nov. 6, 2025, 7 a.m. - 9 a.m. PST	30	Register

Curriculum

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session
Launch: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta

Secure your SPAs from token theft. Learn how to implement DPoP for stronger security in this Live Learning Lab.

About this course

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session

Curriculum

Live Lab: Use Possession-proof Tokens to Protect Your Apps with Okta Live Session