← Back
Milan Jovanovic February 6, 2026 13m

Don't Ship Server-Sent Events Without Doing This

Summary

The transcript discusses authentication and implementation strategies for Server-Sent Events (SSE) in .NET, focusing on overcoming technical challenges like header limitations and token management. The speaker explores multiple authentication approaches, including using cookies and generating short-lived access tokens with minimal exposure risks. The practical takeaway is demonstrating a secure method for authenticating users with SSE by leveraging in-memory token services and minimizing potential attack surfaces through temporary, randomized access tokens.

View original episode ↗