Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Offline logout
Search
Igor Wojda
March 26, 2018
Technology
2
340
Offline logout
Interesting logout use case.
Igor Wojda
March 26, 2018
Tweet
Share
More Decks by Igor Wojda
See All by Igor Wojda
Harmonizing Kotlin codebase with Konsist
igorwojda
2
220
Droidcon 2020. Why We Need Clean Architecture
igorwojda
4
1.6k
Modern, maintainable and coRRRect project
igorwojda
0
180
Why do we need Clean Architecture
igorwojda
23
8.8k
Other Decks in Technology
See All in Technology
分析画面のクリック操作をそのままコード化 ! エンジニアとビジネスユーザーが共存するAI-ReadyなBI基盤
ikumi
1
190
SREが向き合う大規模リアーキテクチャ 〜信頼性とアジリティの両立〜
zepprix
0
380
マーケットプレイス版Oracle WebCenter Content For OCI
oracle4engineer
PRO
5
1.5k
今日から始める Amazon Bedrock AgentCore
har1101
4
380
フルカイテン株式会社 エンジニア向け採用資料
fullkaiten
0
10k
プロポーザルに込める段取り八分
shoheimitani
0
140
Introduction to Bill One Development Engineer
sansan33
PRO
0
360
AI時代、1年目エンジニアの悩み
jin4
1
160
Context Engineeringが企業で不可欠になる理由
hirosatogamo
PRO
2
120
usermode linux without MMU - fosdem2026 kernel devroom
thehajime
0
210
ZOZOにおけるAI活用の現在 ~開発組織全体での取り組みと試行錯誤~
zozotech
PRO
4
4.7k
モダンUIでフルサーバーレスなAIエージェントをAmplifyとCDKでサクッとデプロイしよう
minorun365
1
100
Featured
See All Featured
Neural Spatial Audio Processing for Sound Field Analysis and Control
skoyamalab
0
160
Digital Ethics as a Driver of Design Innovation
axbom
PRO
1
170
The Power of CSS Pseudo Elements
geoffreycrofte
80
6.1k
Building a Modern Day E-commerce SEO Strategy
aleyda
45
8.6k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
32
2.8k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
49
3.3k
Code Reviewing Like a Champion
maltzj
527
40k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
31
9.9k
Marketing Yourself as an Engineer | Alaka | Gurzu
gurzu
0
120
世界の人気アプリ100個を分析して見えたペイウォール設計の心得
akihiro_kokubo
PRO
66
36k
The Impact of AI in SEO - AI Overviews June 2024 Edition
aleyda
5
720
Exploring the relationship between traditional SERPs and Gen AI search
raygrieselhuber
PRO
2
3.6k
Transcript
Solving offline logout By Igor Wojda @igorwojda
Not so long long time ago...
Username & password Login request Other request Other request
Why this is not very secure?
Username & password
Solution?
Token 209eb9bb-2f6c-40d6-a9b9-912257492b61
Token
Token Renewal Timeout
Token per client
Token invalidate
Online Logout
Online logout Logout Request Additional operations
Offline Logout
Offline logout Logout Request X No network
Option 1 – delete device token instantly Logout Request X
No network
Option 2 – delete device token device when online Logout
Request X No network
Logout user latter using the token Remove token instantly Goals
Solution?
Token Logout token Authentication token
Token Press logout Is online? Delete authentication token Logout (hit
logout endpoint sending logout token) Job scheduler runs logout job Invalidate both tokens Unregister device from receiving notifications NO Schedule logout Job YES Is online? YES
• https://android.jlelse.eu/solving -offline-logout-problem- f3b50da49e7eTable salt • https://www.owasp.org/index.p hp/Session_Management_Cheat _Sheet#Session_Expiration •
https://security.stackexchange. com/questions/29988/what-is- certificate-pinning Materials Worth reading
Thanks! ANY QUESTIONS? You can find me at @igorwojda
[email protected]
igorwojda
ikumi
zepprix
oracle4engineer
har1101
fullkaiten
shoheimitani
sansan33
jin4
hirosatogamo
thehajime
zozotech
minorun365
skoyamalab
axbom
geoffreycrofte
aleyda
bluesmoon
tammyeverts
maltzj
eileencodes
gurzu
akihiro_kokubo
raygrieselhuber
![Thanks! ANY QUESTIONS? You can find me at @igorwojda [email protected]](https://files.speakerdeck.com/presentations/b8c4a9c8ad104b868ad42c65731a8a6a/slide_22.jpg){kind=link}