Is the training Qualiopi certified?

Yes, Learni is a Qualiopi-certified training organization. This certification guarantees the quality of our courses and enables funding through OPCO and other mechanisms.

What is the duration of the Training PKCE 2026 - Securing OAuth for Modern Apps training?

The Training PKCE 2026 - Securing OAuth for Modern Apps training takes place over 4 journées. The program is structured in progressive modules for optimal skill development.

How can I fund my training?

Our courses are eligible for OPCO funding. Learni supports you through the funding process. A personalized quote is available upon request.

What are the prerequisites for this training?

The prerequisites for the Training PKCE 2026 - Securing OAuth for Modern Apps training are: Basics of HTTP/HTTPS, knowledge of OAuth 2.0, and JavaScript. A preliminary interview validates your eligibility.

Is the training available in person?

Yes, the Training PKCE 2026 - Securing OAuth for Modern Apps training is available in distanciel. The format can be adapted to your needs (inter, intra, custom).

Training PKCE 2026 - Securing OAuth for Modern Apps | Learni

The story of Learni

Founded by passionate advocates of learning and innovation, Learni set out to make professional training accessible to everyone, everywhere in the world. Our team works in the largest cities such as Paris, Lyon, Marseille, and internationally, to support talents and organizations in their skills development.

Configure your training

Response within 24hNo commitment100% free

8 spots remaining for the next session

FormatParticipantsDateDetails

Which format do you prefer?

Methods, approaches, and teaching resources

The Training PKCE 2026 - Securing OAuth for Modern Apps training is delivered in-person or remotely (blended-learning, e-learning, virtual classroom, remote in-person). At Learni, a Qualiopi-certified training organization, each program is designed to maximize skills acquisition, regardless of the training mode chosen.

The trainer alternates between demonstrative, interrogative, and active methods (through practical exercises and/or real-world scenarios). This pedagogical approach ensures concrete and directly applicable learning in the workplace.

Teaching resources provided

To ensure the quality of the Training PKCE 2026 - Securing OAuth for Modern Apps training, Learni provides the following teaching resources:

Mac or PC computers, high-speed fiber internet, whiteboard or flipchart, video projector or interactive touchscreen (for remote sessions)
Training environments installed on workstations or accessible online
Course materials, practical exercises, and supplementary resources
Post-training access to materials and teaching resources

For in-house training at a location external to Learni, the client ensures and commits to having all necessary teaching materials (IT equipment, internet connection...) for the proper conduct of the training action in accordance with the prerequisites indicated in the communicated training program.

* contact us for remote feasibility** ratio varies depending on the training followed

Assessment methods

The assessment of skills acquired during the Training PKCE 2026 - Securing OAuth for Modern Apps training is carried out through:

During training: case studies, practical exercises, and professional scenarios
At the end of training: self-assessment questionnaire and skills evaluation by the trainer
After training: training completion certificate detailing acquired skills

Training accessibility

Learni is committed to the accessibility of its professional training programs. All our training programs are accessible to people with disabilities. Our teams are available to adapt teaching methods to your specific needs. Do not hesitate to contact us for any accommodation request.

Training access terms and deadlines

Training objectives

Master the fundamentals of PKCE to secure professional OAuth flows

Develop skills in implementing PKCE for certifiable applications

Design secure authentications without client secrets in enterprise environments

Implement PKCE using standard libraries for SPAs and mobile apps

Optimize PKCE 2026 practices against common attacks

Deploy tested PKCE solutions compliant with future standards

Training program

Module 1PKCE 2026 Fundamentals: OAuth Basics and Code Challenge (Initial Tools, Secure Flows)

Discovery of classic OAuth vulnerabilities and introduction to PKCE 2026 for public apps, installation of test environments with Node.js and Postman, generation of code verifier and challenge using SHA-256, practical exercises on Authorization Code flow with PKCE, analysis of real business cases affected by leaks, creation of a first secure prototype with complete documentation.

Module 2PKCE Implementation: Integration in SPAs (Libraries, Secure Hooks)

Hands-on with libraries like Auth0.js and oidc-client to implement PKCE in React or Vanilla JS, dynamic configuration of challenges and S256, simulation of CSRF and interception attacks to test robustness, development of an SPA connected to a mock OAuth provider, collaborative exercises on secure redirection and token exchange, production of a functional deliverable with audit logs.

Module 3PKCE 2026 Best Practices: Validation and Tools (Testing, Enterprise Compliance)

Exploration of PKCE 2026 evolutions for hybrid apps and PKCE+, use of tools like OWASP ZAP and OAuth Toolbox for automated audits, strict validation of parameters and code rotation, practical cases on common production errors, pair workshops to secure a red thread enterprise project, generation of compliance reports and personalized optimization plans.

Module 4PKCE Deployment: Production and Monitoring (CI/CD, Security Alerts)

Deployment of PKCE apps on Vercel or Heroku with secure environment variables, integration into GitHub Actions CI/CD pipelines for automated PKCE tests, monitoring with Sentry to detect OAuth anomalies, simulation of real incidents and rapid remediation, finalization of the red thread project with expert code review, issuance of certificates and resources for enterprise maintenance.