Fernet tokens have been around since Kilo and they're going to replace UUID as the default token provider in Newton. Is your deployment ready to take advantage of them?
In this talk we will cover what Fernet tokens are, how they work, why they're an improvement over other formats, and what you need to do to switch to them. We will start with a deep background on Fernet tokens from some of the guys who wrote the code. Then we will cover the details of what happened in a real world deployment when Fernet was implemented. We will also cover other operations topics like key rotations and deploying the private signing keys.
After this talk, attendees should get enough background to be able to explain Fernet tokens to their teams and begin to switch their environments to Fernet tokens.
Attendees should come away with a good understanding of the Fernet token format and how Fernet tokens work. They will also learn the advantages of Fernet over other formats and understand some of the requirements for operating a cloud using Fernet tokens.
They should also learn how Fernet key rotation works and have some basic strategies for managing keys.