WSO2, profile picture
Uploaded byWSO2
PPTX, PDF133 views

WSO2Con 2025 - Building Secure Customer Experience Apps

Creating exceptional customer experiences is essential in today’s digital-first world. This lab session explores building secure, personalized, and innovative customer experience apps using the WSO2 CIAM suite. We will dive into hands-on techniques for building customer experience apps using the Asgardeo SDKs, designing secure user sign-up, and login experiences using AI-driven features like Login Flow AI and Branding AI. We’ll also demonstrate how to apply MFA, passwordless, adaptive authentication, and protecting high-value APIs. This session will include a sneak peek at the WSO2 IAM roadmap and how its evolving capabilities can empower you to stay ahead in the competitive landscape.

Embed presentation

Download to read offline
Building Secure Customer Experience Apps Sagara Gunathunga Head of DevRel IAM WSO2 Jayanga Kaushalya Senior Technical Lead WSO2
1. Challenges in Building Customer Experience Apps 2. Building a Simple Customer Experience App 3. IAM Capabilities for Customer Experience App 4. Preview of WSO2 CIAM Roadmap Overview 2 Hands-on Hands-on
Challenges in Building Customer Experience Apps
Challenges in Building Customer Experience Apps 4 Customer Experience App Secure Personalized Experience User Onboarding Customers Application Developers User Login Access Control Consent Management Self-care Features Branding Credentials Management Account Management
Then … Now … 5 User Onboarding ● A simple HTML form backed by a database ● On-boarding via social channels and state-issued digital ids ● On-boarding via digital wallet and verifiable credentials (VC) ● Identity verification
Then … Now … 6 User Login ● Simple username & password verification ● Password are disappearing ● Identity federation ● MFA and Passwordless ● Risk-based adaptive authentication ● Continuous authentication
Then … Now … 7 Account Management ● Reset forgotten password ● Update passwords ● Reset forgotten password/ Update passwords ● Password policies , expiration and reminders ● Password Recovery Via User-Preferred Notification Channel ● Forced Password Reset ● Automatic Account locking ● Notifications for User Operations ● Account association
Challenges in Building Customer Experience Apps 8 Building Your Own Out-of-the-Box Identity Providers And earlier today . . .
Multi-tenant SaaS IAM Asgardeo is an AI-powered and developer-focused multi- tenant IDaaS solution that provides seamless, secure authentication and user management Powered by WSO2 Identity Server 9 WSO2 Identity Server The Leading Open Source IAM Identity Server is a powerful, modern and highly extensible identity and access management solution for your on-premises or cloud environment A single code-base, multiple deployment options
Access Management Features ✓ Single sign-on ✓ Social ID & federated login ✓ Strong authentication ✓ Passwordless authentication ✓ Risk-adaptive, multi-factor authentication ✓ Flexible login identifiers ✓ Role-based access control ✓ Account takeover protection Identity Administration Features ✓ User registration & onboarding ✓ Progressive profiling ✓ Account management ✓ User self-service ✓ Privacy & consent management ✓ Account provisioning ✓ Identity assurance ✓ Identity bridging System Features ✓ Customizable branding ✓ Integration with popular sales & marketing apps ✓ Analytics, dashboard and reporting WSO2 IAM Features for Customer Experience Apps WSO2 Foundational CIAM Capabilities
Building a Simple Customer Experience App
Identity and Access Management Solution e.g., Avoid wasting time and utilize the existing. Why DIY when you can FLY? 12 Asgardeo React Auth SDK +
● No vendor lock and open source ⦿ Built on OpenID Connect standard protocol ● Secure by design ⦿ Has built in access token secure storage architecture to prevent XSS attacks ● Support for latest React versions ⦿ Tested and used in enterprise applications ● Backend for Frontend (BFF) is not a must ● Rich with OOTB features ⦿ Basic authentication methods, Sign-In, Sign-Out, State management ⦿ Post authentication hooks ⦿ Extended configurations Asgardeo React Auth SDK 13
Try yourself … ● React Quickstart guide ⦿ https://wso2.com/asgardeo/docs/quick-starts/react/ ● Quick start video guide ⦿ https://www.youtube.com/watch?v=MibyiVVEV7Q ● React detailed guide ⦿ https://wso2.com/asgardeo/docs/complete-guides/react/introduction/ ● Sample Repo ⦿ TODO 14 Request : please share your feedback sagara@wso2.com
IAM Capabilities for Customer Experience App
Let’s build the IAM Journey Step by Step 16
➤ Integrate with Asgardeo ➤ Authentication via multiple authentication mechanisms ➤ Self-registration ➤ Connecting to an existing user base without a user migration ➤ Branding ➤ Identity verification ➤ APIs for customization ➤ Custom integrations Managing access for a Single Page Web Application 17
18 Clone the iam-tutorial repo to follow
WSO2 CIAM Roadmap Preview
IAM Roadmap ● IAM for AI agents ⦿ Identity & Access Management at the Core of Enterprise Modernization - Johann Nallathamby ⦿ Meet our team at O2 Bar for a demo ● Data residency with In-Country ⦿ Ensuring IAM Meets EU Regulatory Standards - Godwin Amila ● New protocols (CIBA, DPoP, OAuth 2.0 for FP Applications) ⦿ Connecting the Dots with OAuth: A Guide to New and Upcoming Specifications - Janak Amarasena ● IAM with customer data ⦿ Beyond Conventional CIAM: An Identity-Centric Approach for Personalized Digital Experiences - Omindu Rathnaweera 20
Thank you!

More Related Content

PDF
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
byWSO2
 
PDF
Navigating Identity and Access Management in the Modern Enterprise
byWSO2
 
PDF
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
byWSO2
 
PPTX
Securing Access to SaaS Apps with WSO2 Identity Server
byWSO2
 
PDF
Benefits of Using Open Source IAM
byWSO2
 
PPTX
Synergies across APIs and IAM
bySagara Gunathunga
 
PDF
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
byProfesia Srl, Lynx Group
 
PDF
Securing the Unsecured: Using SSO and XACML to Protect Your Web Apps
byWSO2
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
byWSO2
 
Navigating Identity and Access Management in the Modern Enterprise
byWSO2
 
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
byWSO2
 
Securing Access to SaaS Apps with WSO2 Identity Server
byWSO2
 
Benefits of Using Open Source IAM
byWSO2
 
Synergies across APIs and IAM
bySagara Gunathunga
 
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
byProfesia Srl, Lynx Group
 
Securing the Unsecured: Using SSO and XACML to Protect Your Web Apps
byWSO2
 

Similar to WSO2Con 2025 - Building Secure Customer Experience Apps

PDF
WSO2 Identity Server - Product Overview
byWSO2
 
PPTX
Setting the Foundation for Digital Transformation Through API Management and ...
byWSO2
 
PDF
API Security Best Practices & Guidelines
byPrabath Siriwardena
 
PPTX
Modernizing the Student Journey with Ethos Identity
byWSO2
 
PDF
[2021 Somos Summit] - Rethinking Identity Access Management and The Rise of t...
byWSO2
 
PPTX
Setting the Foundation for Digital Transformation Through API Management and ...
byWSO2
 
PDF
Developing Secure Mobile Applications
byCA Technologies
 
PDF
CIAM: Conquering the Phygital Battleground with WSO2 Identity Server
byWSO2
 
PDF
[WSO2Con USA 2018] Identity APIs is the New Black
byWSO2
 
PDF
Mobile SSO: Give App Users a Break from Typing Passwords
byCA API Management
 
PPTX
Identity and Access Management in the Era of Digital Transformation
byWSO2
 
PDF
WSO2 App Manager: Managing Application Lifecycles Across Your Enterprise
byWSO2
 
PDF
The Future of Digital IAM
byWSO2
 
PDF
JDD2015: Security in the era of modern applications and services - Bolesław D...
byPROIDEA
 
PDF
Leveraging federation capabilities of identity server for api gateway
byPushpalanka Jayawardhana
 
PDF
[WSO2 Integration Summit Johannesburg 2019] Security in a Distributed Computi...
byWSO2
 
PPTX
Adding Identity Management and Access Control to your Application, Authorization
byFernando Lopez Aguilar
 
PPTX
WSO2Con USA 2017: Building a Secure Enterprise
byWSO2
 
PPTX
Adding Identity Management and Access Control to your Application
byFernando Lopez Aguilar
 
PDF
FIware Identity Manager
byJoaquín Salvachúa
 
WSO2 Identity Server - Product Overview
byWSO2
 
Setting the Foundation for Digital Transformation Through API Management and ...
byWSO2
 
API Security Best Practices & Guidelines
byPrabath Siriwardena
 
Modernizing the Student Journey with Ethos Identity
byWSO2
 
[2021 Somos Summit] - Rethinking Identity Access Management and The Rise of t...
byWSO2
 
Setting the Foundation for Digital Transformation Through API Management and ...
byWSO2
 
Developing Secure Mobile Applications
byCA Technologies
 
CIAM: Conquering the Phygital Battleground with WSO2 Identity Server
byWSO2
 
[WSO2Con USA 2018] Identity APIs is the New Black
byWSO2
 
Mobile SSO: Give App Users a Break from Typing Passwords
byCA API Management
 
Identity and Access Management in the Era of Digital Transformation
byWSO2
 
WSO2 App Manager: Managing Application Lifecycles Across Your Enterprise
byWSO2
 
The Future of Digital IAM
byWSO2
 
JDD2015: Security in the era of modern applications and services - Bolesław D...
byPROIDEA
 
Leveraging federation capabilities of identity server for api gateway
byPushpalanka Jayawardhana
 
[WSO2 Integration Summit Johannesburg 2019] Security in a Distributed Computi...
byWSO2
 
Adding Identity Management and Access Control to your Application, Authorization
byFernando Lopez Aguilar
 
WSO2Con USA 2017: Building a Secure Enterprise
byWSO2
 
Adding Identity Management and Access Control to your Application
byFernando Lopez Aguilar
 
FIware Identity Manager
byJoaquín Salvachúa
 

More from WSO2

PPTX
WSO2Con 2025 - Building Secure Business Customer and Partner Experience (B2B)...
byWSO2
 
PPTX
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
PDF
Modern Platform Engineering with Choreo - The AI-Native Internal Developer Pl...
byWSO2
 
PDF
Application Modernization with Choreo - The AI-Native Internal Developer Plat...
byWSO2
 
PDF
architecting-ai-in-the-enterprise-apis-and-applications.pdf
byWSO2
 
PDF
Application Modernization with Choreo for the BFSI Sector
byWSO2
 
PDF
Mastering Intelligent Digital Experiences with Platformless Modernization
byWSO2
 
PDF
Build Smarter, Deliver Faster with Choreo - An AI Native Internal Developer P...
byWSO2
 
PDF
Accelerate Enterprise Software Engineering with Platformless
byWSO2
 
PPTX
WSO2Con 2025 - How an Internal Developer Platform Lets Developers Focus on Code
byWSO2
 
PDF
Platformless Modernization with Choreo.pdf
byWSO2
 
PPTX
WSO2Con 2025 - Unified Management of Ingress and Egress Across Multiple API G...
byWSO2
 
PPTX
WSO2Con 2025 - Architecting Cloud-Native Applications
byWSO2
 
PPTX
WSO2Con 2025 - Building AI Applications in the Enterprise (Part 1)
byWSO2
 
PPTX
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
PDF
[Roundtable] Choreo - The AI-Native Internal Developer Platform as a Service
byWSO2
 
PDF
Choreo - The AI-Native Internal Developer Platform as a Service: Overview
byWSO2
 
PDF
Driving Innovation: Scania's API Revolution with WSO2
byWSO2
 
PDF
Demystifying CMS-0057-F - Compliance Made Seamless with WSO2
byWSO2
 
PDF
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
byWSO2
 
WSO2Con 2025 - Building Secure Business Customer and Partner Experience (B2B)...
byWSO2
 
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
Modern Platform Engineering with Choreo - The AI-Native Internal Developer Pl...
byWSO2
 
Application Modernization with Choreo - The AI-Native Internal Developer Plat...
byWSO2
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
byWSO2
 
Application Modernization with Choreo for the BFSI Sector
byWSO2
 
Mastering Intelligent Digital Experiences with Platformless Modernization
byWSO2
 
Build Smarter, Deliver Faster with Choreo - An AI Native Internal Developer P...
byWSO2
 
Accelerate Enterprise Software Engineering with Platformless
byWSO2
 
WSO2Con 2025 - How an Internal Developer Platform Lets Developers Focus on Code
byWSO2
 
Platformless Modernization with Choreo.pdf
byWSO2
 
WSO2Con 2025 - Unified Management of Ingress and Egress Across Multiple API G...
byWSO2
 
WSO2Con 2025 - Architecting Cloud-Native Applications
byWSO2
 
WSO2Con 2025 - Building AI Applications in the Enterprise (Part 1)
byWSO2
 
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
[Roundtable] Choreo - The AI-Native Internal Developer Platform as a Service
byWSO2
 
Choreo - The AI-Native Internal Developer Platform as a Service: Overview
byWSO2
 
Driving Innovation: Scania's API Revolution with WSO2
byWSO2
 
Demystifying CMS-0057-F - Compliance Made Seamless with WSO2
byWSO2
 
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
byWSO2
 

Recently uploaded

PDF
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
PDF
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
PDF
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
PPTX
Pizza Chain Market Data Scraping for Better Insights Report.pptx
byWeb Data Crawler
 
PPTX
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
PDF
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
PDF
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
PDF
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
PPTX
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
PDF
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
PPTX
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
PDF
Ai In Courts Ai in courts AI in court AI in court
byZainKarim7
 
PDF
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
PDF
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
PPT
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
PPTX
Compare and contrast types of attacks.pptx
bysyednaqihassan14
 
PDF
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
PDF
A Brief Introduction About Christopher Elwell Woburn
byChristopher Elwell Woburn
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PPTX
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
Pizza Chain Market Data Scraping for Better Insights Report.pptx
byWeb Data Crawler
 
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
Ai In Courts Ai in courts AI in court AI in court
byZainKarim7
 
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
Compare and contrast types of attacks.pptx
bysyednaqihassan14
 
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
A Brief Introduction About Christopher Elwell Woburn
byChristopher Elwell Woburn
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 

WSO2Con 2025 - Building Secure Customer Experience Apps

  • 1.
    Building Secure Customer Experience Apps SagaraGunathunga Head of DevRel IAM WSO2 Jayanga Kaushalya Senior Technical Lead WSO2
  • 2.
    1. Challenges inBuilding Customer Experience Apps 2. Building a Simple Customer Experience App 3. IAM Capabilities for Customer Experience App 4. Preview of WSO2 CIAM Roadmap Overview 2 Hands-on Hands-on
  • 3.
    Challenges in BuildingCustomer Experience Apps
  • 4.
    Challenges in BuildingCustomer Experience Apps 4 Customer Experience App Secure Personalized Experience User Onboarding Customers Application Developers User Login Access Control Consent Management Self-care Features Branding Credentials Management Account Management
  • 5.
    Then … Now… 5 User Onboarding ● A simple HTML form backed by a database ● On-boarding via social channels and state-issued digital ids ● On-boarding via digital wallet and verifiable credentials (VC) ● Identity verification
  • 6.
    Then … Now… 6 User Login ● Simple username & password verification ● Password are disappearing ● Identity federation ● MFA and Passwordless ● Risk-based adaptive authentication ● Continuous authentication
  • 7.
    Then … Now… 7 Account Management ● Reset forgotten password ● Update passwords ● Reset forgotten password/ Update passwords ● Password policies , expiration and reminders ● Password Recovery Via User-Preferred Notification Channel ● Forced Password Reset ● Automatic Account locking ● Notifications for User Operations ● Account association
  • 8.
    Challenges in BuildingCustomer Experience Apps 8 Building Your Own Out-of-the-Box Identity Providers And earlier today . . .
  • 9.
    Multi-tenant SaaS IAM Asgardeois an AI-powered and developer-focused multi- tenant IDaaS solution that provides seamless, secure authentication and user management Powered by WSO2 Identity Server 9 WSO2 Identity Server The Leading Open Source IAM Identity Server is a powerful, modern and highly extensible identity and access management solution for your on-premises or cloud environment A single code-base, multiple deployment options
  • 10.
    Access Management Features ✓Single sign-on ✓ Social ID & federated login ✓ Strong authentication ✓ Passwordless authentication ✓ Risk-adaptive, multi-factor authentication ✓ Flexible login identifiers ✓ Role-based access control ✓ Account takeover protection Identity Administration Features ✓ User registration & onboarding ✓ Progressive profiling ✓ Account management ✓ User self-service ✓ Privacy & consent management ✓ Account provisioning ✓ Identity assurance ✓ Identity bridging System Features ✓ Customizable branding ✓ Integration with popular sales & marketing apps ✓ Analytics, dashboard and reporting WSO2 IAM Features for Customer Experience Apps WSO2 Foundational CIAM Capabilities
  • 11.
    Building a SimpleCustomer Experience App
  • 12.
    Identity and Access ManagementSolution e.g., Avoid wasting time and utilize the existing. Why DIY when you can FLY? 12 Asgardeo React Auth SDK +
  • 13.
    ● No vendorlock and open source ⦿ Built on OpenID Connect standard protocol ● Secure by design ⦿ Has built in access token secure storage architecture to prevent XSS attacks ● Support for latest React versions ⦿ Tested and used in enterprise applications ● Backend for Frontend (BFF) is not a must ● Rich with OOTB features ⦿ Basic authentication methods, Sign-In, Sign-Out, State management ⦿ Post authentication hooks ⦿ Extended configurations Asgardeo React Auth SDK 13
  • 14.
    Try yourself … ●React Quickstart guide ⦿ https://wso2.com/asgardeo/docs/quick-starts/react/ ● Quick start video guide ⦿ https://www.youtube.com/watch?v=MibyiVVEV7Q ● React detailed guide ⦿ https://wso2.com/asgardeo/docs/complete-guides/react/introduction/ ● Sample Repo ⦿ TODO 14 Request : please share your feedback sagara@wso2.com
  • 15.
    IAM Capabilities forCustomer Experience App
  • 16.
    Let’s build theIAM Journey Step by Step 16
  • 17.
    ➤ Integrate withAsgardeo ➤ Authentication via multiple authentication mechanisms ➤ Self-registration ➤ Connecting to an existing user base without a user migration ➤ Branding ➤ Identity verification ➤ APIs for customization ➤ Custom integrations Managing access for a Single Page Web Application 17
  • 18.
  • 19.
  • 20.
    IAM Roadmap ● IAMfor AI agents ⦿ Identity & Access Management at the Core of Enterprise Modernization - Johann Nallathamby ⦿ Meet our team at O2 Bar for a demo ● Data residency with In-Country ⦿ Ensuring IAM Meets EU Regulatory Standards - Godwin Amila ● New protocols (CIBA, DPoP, OAuth 2.0 for FP Applications) ⦿ Connecting the Dots with OAuth: A Guide to New and Upcoming Specifications - Janak Amarasena ● IAM with customer data ⦿ Beyond Conventional CIAM: An Identity-Centric Approach for Personalized Digital Experiences - Omindu Rathnaweera 20
  • 21.

Editor's Notes

  • #10 Let’s talk about the actual features of the product, from which we obtain all those benefits we just covered. Asgardeo provides the full set of B2C, G2C and B2E CIAM features expected to be in any enterprise-ready solution. The most visible set of features are the Access Management capabilities that face end user customers every time they access your CX. This class of features ensures that the user experience is both low-friction as well as secure–making the experience enjoyable as well as fostering confidence. Equally important are the Identity Administration features that enable end users to sign up, manage their profile and preferences, and so forth. These also give organizations tools to ensure users are who they claim to be, and gives them proper access to what they need. And of course Asgardeo offers organizations straightforward tools to integrate with their branding requirements and IT environment. High availability and strong compliance features ensure smooth, safe operation.
  • #13 Do not need worry about token securing and the authentication protocol. Token signature validation It’s not required to have a BFF or server running for token securing. SDK has built in solution to secure the access token in browser level utilizing web-worker threads Core components are available for Sign-In, Sign-Out, and state managements and to decode authentication response details to simple JSON object And also to secure your Built using React functional components for support latest hooks using the Context-API Idle timeout and session management and endpoints