Announcing django-denied, a Django package that enforces authorization by denying all views by default for enhanced security.
The author creates a new open-source Django package called 'django-denied' for handling authorization, extracted from a SaaS project.
A comprehensive guide to implementing OAuth 2.0 authorization with multiple providers (Google, GitHub, Amazon) in a Node.js backend using Passport.js.
A comprehensive guide to all OAuth 2.0 grant types, explaining their flows and use cases for secure application authorization.
Jakarta Security 3's major update introduces OpenID Connect authentication, alongside its core API and underlying SPIs for Jakarta EE.
A technical guide explaining how to implement authentication and authorization in any backend language or framework, covering user models, signup/login routes, and session vs JWT auth.
A guide to implementing the OAuth 2.0 PKCE authorization flow for secure access in single-page and mobile applications.
Explains how to customize HTTP responses for failed authorization in ASP.NET Core 5.0 using the IAuthorizationMiddlewareResultHandler interface.
A guide to securing Azure Functions using API keys, covering different authorization levels and practical verification with Postman.
Guide to implementing Jakarta Security (formerly Java EE Security) with Soteria and Exousia on Apache Tomcat 10, covering dependencies and configuration.
Explains the core concepts of authentication (login/signup) and authorization (sessions vs. JWTs) in web development.
A guide to Django's user authentication and authorization system, covering setup, the User model, and the login process.
Explains the differences between cookies and tokens for API authentication, covering OAuth, JWT, and deployment considerations.
A tutorial on implementing endpoint authorization for a GraphQL API built with GraphQL.NET and ASP.NET Core 3.1.
An overview of Django's built-in user authentication system, covering authentication, authorization, and setup.
OpenIddict 3.0 beta6 introduces explicit response type permissions, replacing the old inferred system, and removes the hybrid client type.
OpenIddict 3.0 beta4 adds Quartz.NET integration for database cleanup and support for 12 languages.
A guide to implementing custom authorization policies to secure the Hangfire Dashboard in an ASP.NET Core application.
A tutorial on creating a custom ASP.NET Core Tag Helper to conditionally show or hide UI elements based on user authorization policies.
A beginner-friendly guide to implementing user authentication and authorization in Vapor 4 using sessions and JWTs, written in Swift.
