A guide to securing a personal digital life by migrating to a custom domain email, using a password manager, and implementing YubiKey 2FA.
Developer shares their new role as a Developer Advocate at Pomerium, a Zero Trust access control platform, and discusses the company's open-source approach.
A developer updates a SaaS app's signup process, replacing passwords with email-based 'magic links' using django-sesame.
A tutorial on implementing user authentication in React Router 7, including protected routes and fake API integration.
A tutorial on implementing private/protected routes in React Router 7 to control user access based on authentication and authorization.
A technical guide on customizing the Astro Starlight documentation sidebar to dynamically show/hide content based on user authentication status.
Explores the security trade-offs of storing 2FA TOTP codes in a password manager versus a separate authenticator app.
A guide to solving JWT authentication for protected video and image assets in Angular applications, exploring multiple approaches.
A guide to implementing authentication in Playwright tests, covering login sequences, abstraction, and state storage.
Explains the shift from embedded WebViews to system browsers for OAuth flows, as defined in RFC 8252, focusing on security and usability.
A tutorial on building a custom, session-based authentication system in JavaScript and TypeScript, covering secure password handling and session management.
A tutorial on implementing custom authentication in Next.js 15 using App Router, Server Components, and Server Actions.
Analysis of W3C TAG's response to Google delaying third-party cookie removal, discussing privacy, ad tech, and web standards.
Explains synchronous and asynchronous methods to load OpenID configuration in Angular using the Auth OIDC Client library.
Angular Auth OIDC Client v18 adds Signal support for authentication state and user data, simplifying integration in Angular apps.
Analyzes common security flaws in Express.js authentication, focusing on hardcoded secrets and poor cookie configuration, with solutions.
A technical guide on extracting 2FA secrets from the abandoned Authenticator Plus iOS app using SQLCipher and Ruby.
Analyzes the security and implementation of storing access tokens in Cookies vs LocalStorage, providing a technical comparison for developers.
An introduction to middleware in web frameworks, covering its purpose, common use cases like authentication, and practical examples from JavaScript/TypeScript ecosystems.
A technical guide to diagnosing and fixing the 'LogoncertTemplateReady: NO (StateNoTemplate)' error in Windows Hello for Business hybrid deployments.
