Tag: JWT
-
Create Versatile Microservices in Golang — Part 4 (Authentication With JWT)
In the previous part in this series, we looked at creating a user service and started storing some users. Now we need to look at making our …
-
How to Protect Your APIs With Self-Contained Access Tokens (JWT)
In a typical enterprise information system, there is a good chance that people will use different types of systems built by different …
-
Security Roundup: JWT This Down
Welcome to this month’s edition of the Security Roundup! Last time I made some terrible Jacques Cousteau puns and talked about Docker …
-
Quick Guide to Sec: Basic Auth, SAML, Keys, OAuth, JWT, and Tokens
Here is what I learned last week about security. If someone wakes me up in the middle of the night and tells me, ‘Houston, we have a …
-
Authenticating SPAs Using JWT
A successful token authentication system requires you to know security details and other authentication credentials. SPA’ are often tied …
-
Securing a Stateless Django Application
Django is a mature web framework for Python. Among its many uses is creating REST APIs (or a standalone backend for that …
-
Using JWT for Sessions
The topic has been discussed many times, on hacker news, Reddit, blogs. And the consensus is – DON’T USE JWT (for user …
-
Stateless Authentication With JSON Web Tokens
Whether you’re writing a public API or an internal microservice, getting authentication right can make or break your API. Let’s take a …
-
Secret Rotation for JWT Tokens
When you are using JSON Web Tokens (JWTs), or any other token technology that requires you to sign or encrypt payload information, it is …
-
Why Enabling SHA256 Support for XML Signatures Breaks JWT Signing
For some time, there have been bug reports to Kentor.AuthServices, IdentityServer3, and System.IdentityModel.Tokens.Jwt about enabling …
-
Building Your First Crystal Web App and Authenticating With JWTs, Part 2
Welcome back! If you missed the first part, you can check it out …
●●●