Essential Knowledge for Developers – HTTP Authentication

Essential Knowledge for Developers - HTTP Authentication

Authentication is an essential part of building web applications or web servers. Below is a brief introduction to various common methods of HTTP Authentication. Overview •Basic: RFC 2617 (1999) → RFC 7617 (2015)•Digest: RFC 2069 (1997) → RFC 2617 (1999) → RFC 7617 (2015)•OAuth 1.0 (Twitter, 2007)•OAuth 2.0 (2012) •Bearer (OAuth 2.0): RFC 6750 (2012) … Read more

Introduction to Go Project Development (Part 21): HTTP Service Authentication & Authorization

Introduction to Go Project Development (Part 21): HTTP Service Authentication & Authorization

1. Authentication and Authorization Authentication (authn): Used to verify whether a user has permission to access the system. If authentication is successful, the user can access the system (but may not necessarily be able to operate on the system’s resources). Authorization (authz): Used to verify whether a user has permission to operate on a specific … Read more

Essential Knowledge of HTTP

Essential Knowledge of HTTP

This article is sponsored by Yugang Writing Platform with a sponsorship amount of 200 yuan. Original author: Zhu Qiandai. Copyright statement: This article is copyrighted by the WeChat public account Yugang Says. Unauthorized reproduction in any form is prohibited. HTTP is a network application layer protocol that we frequently interact with, and its importance cannot … Read more

Understanding User Authentication in Web Applications

Understanding User Authentication in Web Applications

https://thecopenhagenbook.com/ Server-side tokens A server-side token is any long, random string that is stored on the server. It may be persisted in a database or in-memory data store (e.g. Redis) and is used for authentication and verification. A token can be validated by checking if it exists in storage. Examples include session IDs, email verification … Read more