A technical analysis of Quebec's JWT-based proof-of-vaccination QR code, examining its security and data encoding.
Explains the subtle but critical security difference between SMS-based Two Factor Authentication (2FA) and insecure SMS-based account recovery.
Introducing Merced-Express, a Node.js/Express framework with Rails-like CLI tools for generating models, controllers, and auth in a MongoDB project.
A tutorial on implementing user authentication and protected routes in a Next.js application using Supabase's Auth client library.
A tutorial on implementing user authentication in a Next.js application using Supabase, an open-source Firebase alternative.
A guide to securing Azure Functions using API keys, covering different authorization levels and practical verification with Postman.
A technical guide exploring the new 'Temporary Access Pass' feature in Azure AD for passwordless onboarding and MFA recovery.
A guide to inspecting and managing images in a private Docker container registry using the OCI Docker Registry HTTP API V2.
Guide to implementing Jakarta Security (formerly Java EE Security) with Soteria and Exousia on Apache Tomcat 10, covering dependencies and configuration.
OpenIddict 3.0, a .NET OpenID Connect server and validation library, is now generally available with a rewritten, event-oriented architecture.
A technical tutorial on integrating an Instagram feed into a Next.js website using the instagram-web-api npm package, covering authentication and data fetching.
Explains the core concepts of authentication (login/signup) and authorization (sessions vs. JWTs) in web development.
A guide to Django's user authentication and authorization system, covering setup, the User model, and the login process.
Explains the differences between cookies and tokens for API authentication, covering OAuth, JWT, and deployment considerations.
OpenIddict 3.0 RC1 released, focusing on bug fixes and removing error description localization to comply with OAuth 2.0 specs.
A beginner's guide to setting up and deploying your first Firebase Cloud Function, covering initial project configuration and dependencies.
An overview of Django's built-in user authentication system, covering authentication, authorization, and setup.
Explains why Cypress clears cookies between tests and demonstrates how to preserve authentication state using beforeEach hooks.
A tutorial on implementing JWT-based user authentication using a Flask backend with flask-praetorian and a React frontend.
OpenIddict 3.0 beta4 adds Quartz.NET integration for database cleanup and support for 12 languages.
